Skip to content
This repository has been archived by the owner on Nov 15, 2023. It is now read-only.

Avoid Unstable Sort #12455

Merged
merged 3 commits into from
Oct 11, 2022
Merged

Avoid Unstable Sort #12455

merged 3 commits into from
Oct 11, 2022

Conversation

shawntabrizi
Copy link
Member

Following the norm set by: #6754

Undoes regressions caused by: #11154 (comment)

@shawntabrizi shawntabrizi added B0-silent Changes should not be mentioned in any release notes C1-low PR touches the given topic and has a low impact on builders. D3-trivial 🧸 PR contains trivial changes in a runtime directory that do not require an audit labels Oct 9, 2022
@github-actions github-actions bot added the A0-please_review Pull request needs code review. label Oct 9, 2022
@bkchr
Copy link
Member

bkchr commented Oct 9, 2022

Nothing you changed here is in any way consensus critical. The only place that is used on chain is in contracts and that has a comment above the code that explains why it is safe.

@mrcnski
Copy link

mrcnski commented Oct 9, 2022

Was this the offending lint? Might want to set it to allow.

clippy::stable_sort_primitive
https://rust-lang.github.io/rust-clippy/master/index.html

@shawntabrizi
Copy link
Member Author

Nothing you changed here is in any way consensus critical. The only place that is used on chain is in contracts and that has a comment above the code that explains why it is safe.

Understood, but as a rule, we should just not have it in the code base. If anything, we can put rules to explicit and easily audit for it. Else, someone needs to check each one each time to make sure it is not consensus critical.

@ordian
Copy link
Member

ordian commented Oct 10, 2022

Unstable sorting is indistinguishable from stable sorting when sorting primitive integers

Doesn't that lint apply only to a vec of primitive types? In that case, it's safe to use even in consensus-critical code.

Besides that, sort_unstable is deterministic, so it could only cause consensus problems if there are validators with native and (native or wasm) runtimes compiled with different versions of stdlib with different behavior (e.g. different seeds).
With the removal of the native runtime, I don't see how it could be a problem in the future. Maybe best not to cargo-cult some rules.

That being said, I do agree a ban for now is warranted as the risks outweigh the potential benefits.

@shawntabrizi
Copy link
Member Author

Besides that, sort_unstable is deterministic

It is deterministic, but not between rust versions, which is the problem we ran into.

There was some optimization made, and it changed the final order between rust versions.

@shawntabrizi
Copy link
Member Author

bot merge

@paritytech-processbot paritytech-processbot bot merged commit ccc8f6c into master Oct 11, 2022
@paritytech-processbot paritytech-processbot bot deleted the shawntabrizi-avoid-unstable-sort branch October 11, 2022 18:41
@athei
Copy link
Member

athei commented Oct 11, 2022
edited
Loading

It is deterministic, but not between rust versions, which is the problem we ran into.

But why does this matter if the state transition function is defined as wasm? It was about the native runtime?

@bkchr
Copy link
Member

bkchr commented Oct 12, 2022

AFAIR, we had this report about unstable_sort at some point, but we never had any problem on a live network because of it.

It was about the native runtime?

As always ;)

What @shawntabrizi probably means is this: https://medium.com/polkadot-network/a-polkadot-postmortem-24-05-2021-e96b25c184db and this was about binary_search_by.

But yeah, if we got the native runtime removed it should be easier. However, I could still imagine that host code is may leading to a consensus problem, but it would be much harder to provoke.

@jasl jasl mentioned this pull request Nov 7, 2022
Merged
@aurexav aurexav mentioned this pull request Jan 10, 2023
Closed
ark0f pushed a commit to gear-tech/substrate that referenced this pull request Feb 27, 2023
@shawntabrizi @ark0f
Avoid Unstable Sort (paritytech#12455)
42ee227 
* dont use unstable sort

* remove comment

* add clippy rule
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@bkchr bkchr bkchr approved these changes

@kianenigma kianenigma kianenigma approved these changes

@KiChjang KiChjang KiChjang approved these changes

@athei athei athei approved these changes

Assignees
No one assigned
Labels
A0-please_review Pull request needs code review. B0-silent Changes should not be mentioned in any release notes C1-low PR touches the given topic and has a low impact on builders. D3-trivial 🧸 PR contains trivial changes in a runtime directory that do not require an audit
Projects
Runtime / FRAME
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@shawntabrizi @bkchr @mrcnski @ordian @athei @KiChjang @kianenigma