- L-1:
js_evalis not implemented for queries - L-2: Contract address derivation does not include
input_data - R-1: Flush
LimitedWriterafter use
According to the documentation (online and in-line #1,#2), the js_eval(...) method should be available in queries (only in queries because it's non-deterministic). However, it's actually not implemented in the chain-extension.
fn js_eval(&self, _codes: Vec<JsCode>, _args: Vec<String>) -> Result<JsValue, Self::Error> {
Ok(JsValue::Exception("No Js Runtime".into()))
}Pink's contact address derivation overrides the one of pallet-contracts as follows.
fn contract_address(
deploying_address: &AccountIdOf<T>,
code_hash: &HashOf<T>,
_input_data: &[u8], // @audit _input_data ignored
salt: &[u8],
) -> AccountIdOf<T> {
let cluster_id = <ClusterId<T>>::get();
let buf = phala_types::contract::contract_id_preimage(
deploying_address.as_ref(),
code_hash.as_ref(),
cluster_id.as_ref(),
salt,
);
UncheckedFrom::unchecked_from(<T as frame_system::Config>::Hashing::hash(&buf))
}Although compatibility with pallet contracts v9 is ensured, it's not in line with the latest address derivation.
Consequence: Multiple instances of the same contract with different arguments/input_data cannot be created as expected failing with a DuplicateContract error. It requires to explicitly alter the salt in order to obtain distinct addresses in such a case.
The async_http_request(...) method uses the LimitedWriter to write the body chunk by chunk from the HTTP response.
...
let mut writer = LimitedWriter::new(&mut body, MAX_BODY_SIZE);
while let Some(chunk) = response
.chunk()
.await
.or(Err(HttpRequestError::NetworkError))?
{
writer
.write_all(&chunk)
.or(Err(HttpRequestError::ResponseTooLarge))?;
}
...However, the LimitedWriter is never flushed.
Recommendation: Add writer.flush().or(Err(HttpRequestError::ResponseTooLarge))?; below the above snipppet to ensure that the writer is correctly flushed.