6880 bootstrap integration test of vaultFactory with smart wallet #7021
Conversation
turadg
force-pushed
the
6880-vaultFactory-wallets
branch
5 times, most recently
from
18998f8 to
137a8af
Compare
turadg
changed the title
| * @param {(message: *) => void} [log] | ||
| */ | ||
| const load = async (rootPath, targetName, log = console.debug) => { | ||
| targetName ||= pathAmbient.basename(rootPath, '.js'); |
There was a problem hiding this comment.
the ||= is why this PR is stacked on #7073
@dckc I know you'll have thoughts about pathAmbient. It was a hassle to wire it through the functions and they don't have types so that would be lost. I figure the module is like a closure in which an authority is available so this is not a violation of ocap.
I figure at some point we'll have things like Node's path not importable. Until then this feels pragmatic.
There was a problem hiding this comment.
It was a hassle to wire it through the functions ...
Adding basename to readPowers isn't straightforward?
I figure the module is like a closure in which an authority is available so this is not a violation of ocap.
Hm. Exporting functions that close over ambient authority such as path.basename is one of the few crisp prohibitions we have managed to articulate (or... I thought we had managed...):
No modules should export powerful objects (for example, objects that close over
fsorprocess.env).
-- OCap Discipline
There was a problem hiding this comment.
Adding basename to readPowers isn't straightforward?
Adding it to makeReadPowers isn't because that's in Endo. This works,
const readPowers = {
...makeReadPowers({ fs, url, crypto }),
basename: fs.basename,
};But it's confusing the makeReadPowers doesn't make readPowers. And the type information is lost. The net cost of repeating every fs function that we need strikes me as greater than its benefit.
No modules should export powerful objects (for example, objects that close over fs or process.env).
I don't think we fully follow that edict. A search of process.env shows 77 results in 40 files. Not all are functions closing over it but I see 10-20 that are.
I'll remove pathAmbient to get this PR in but I think the ocap coding guidelines could use some refinement.
There was a problem hiding this comment.
No modules should export powerful objects (for example, objects that close over fs or process.env).
I don't think we fully follow that edict.
Indeed; #2160 represents the technical-debt to clean that up.
And the type information is lost.
That seems straightforward to address.
The net cost of repeating every
fsfunction that we need strikes me as greater than its benefit.
It is unfortunate that node's fs API is awkward w.r.t. the principle of least authority. I hope we can use something shaped like this more widely...
agoric-sdk/packages/SwingSet/tools/bundleTool.js
Lines 9 to 31 in 010105a
There was a problem hiding this comment.
Adding it to
makeReadPowersisn't because that's in Endo.
Ah... I missed that point earlier. Now I appreciate why it's awkward.
Here's hoping I can sync up with endo on POLA-shaped IO soonish. Thanks for ef90a4f meanwhile.
turadg
force-pushed
the
6880-vaultFactory-wallets
branch
from
137a8af to
ef90a4f
Compare
|
Since these integrate bootstrap I'm wondering if the tests should be in 'packages/vats' instead. At least the supports module. In some way "vats" is the product and these are functional tests of user flows so it makes sense for them to be there. |
|
|
||
| async function getBundle(desc, mode, nameToBundle) { | ||
| if (mode === 'bundle') { | ||
| const bundleCache = await (config.bundleCachePath |
| /** | ||
| * | ||
| * @param {Map<*, *>} state | ||
| */ |
There was a problem hiding this comment.
| /** | |
| * | |
| * @param {Map<*, *>} state | |
| */ | |
| /** @param {Map<*, *>} state */ |
is that type not inferred?
There was a problem hiding this comment.
good point, this doesn't add anything. removed.
| @@ -71,6 +86,10 @@ const kmarshal = makeMarshal(krefOf, kslot, { | |||
|
|
|||
| export const kser = value => kmarshal.serialize(harden(value)); | |||
|
|
|||
| /** | |||
| * @param {import('@endo/marshal').CapData<any>} serializedValue | |||
There was a problem hiding this comment.
I think kernel slots are strings...
| * @param {import('@endo/marshal').CapData<any>} serializedValue | |
| * @param {import('@endo/marshal').CapData<string>} serializedValue |
| import { buildManualTimer } from '../tools/manual-timer.js'; | ||
| import { makePassableEncoding } from '../tools/passableEncoding.js'; |
There was a problem hiding this comment.
something to consider for this file:
agoric-sdk/packages/vats/test/upgrading/test-upgrade-vats.js
Lines 66 to 94 in c0af2a6
| const wd = await factoryDriver.provideSmartWallet('agoric1open'); | ||
|
|
||
| const { agoricNamesRemotes } = t.context; | ||
| await wd.executeOffer({ |
There was a problem hiding this comment.
static typechecking this big offer expression would be nifty
There was a problem hiding this comment.
it checks the types of the properties, but for some reason it doesn't check the top level properties. gonna punt on that.
| status: { id: 'open-vault', numWantsSatisfied: 1 }, | ||
| }); | ||
|
|
||
| // try giving more than is available in the purse/vbank |
|
|
||
| Generated by [AVA](https://avajs.dev). | ||
|
|
||
| ## makeAgoricNamesRemotesFromFakeStorage |
There was a problem hiding this comment.
It would be great to promote this to https://docs.agoric.com/
cut build time from 60s to 10s on my machine
Co-Authored-By: Dan Connolly <dckc@madmode.com>
turadg
force-pushed
the
6880-vaultFactory-wallets
branch
from
5ebd303 to
38cd282
Compare
turadg
added
the
automerge:no-update
| async function buildSwingset( | ||
| /** | ||
| * @param {Map<*, *>} mailboxStorage | ||
| * @param {*} bridgeOutbound | ||
| * @param {SwingStoreKernelStorage} kernelStorage | ||
| * @param {string} vatconfig absolute path | ||
| * @param {Record<string, any>} argv XXX argv should be an array but it's being called with object | ||
| * @param {{ ROLE: string }} env | ||
| * @param {*} options | ||
| */ | ||
| export async function buildSwingset( |
There was a problem hiding this comment.
I really wasn't expecting this to be exported, and to stay an internal concern.
There was a problem hiding this comment.
I'm not clear on what the intent of this comment is. Do you want it to be factored differently? If so, how?
There was a problem hiding this comment.
I just have 3 pending PRs that are now failing/conflicting because of this change. I'm not sure if there is a better way to factor this, haven't looked closely yet. It's more of a process question, I wish I had known about this change coming.
I hope this will be compatible with the bridge changes in #6741 Edit: confirmed to be compatible! |
closes: #6880
Description
Tests Vault Factory integration with Smart Wallet, using a new kind of Swingset test.
vs contract tests:
decentral-test-vaults-config.jsonas testnetvs chain tests:
localinstead ofxs-workerso it's faster (e.g. xs about 50% slower than Node in local dev) and enables use of the Node debuggerSecurity Considerations
Scaling Considerations
Documentation Considerations
Testing Considerations