sui_package_management/
lib.rs

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
// Copyright (c) Mysten Labs, Inc.
// SPDX-License-Identifier: Apache-2.0

use anyhow::{bail, Context};
use std::collections::HashMap;
use std::fs::File;
use std::path::{Path, PathBuf};
use std::str::FromStr;

use move_core_types::account_address::AccountAddress;
use move_package::{
    lock_file::{self, schema::ManagedPackage, LockFile},
    resolution::resolution_graph::Package,
    source_package::layout::SourcePackageLayout,
};
use move_symbol_pool::Symbol;
use sui_json_rpc_types::{get_new_package_obj_from_response, SuiTransactionBlockResponse};
use sui_sdk::wallet_context::WalletContext;
use sui_types::base_types::ObjectID;

pub mod system_package_versions;

const PUBLISHED_AT_MANIFEST_FIELD: &str = "published-at";

pub enum LockCommand {
    Publish,
    Upgrade,
}

#[derive(thiserror::Error, Debug, Clone)]
pub enum PublishedAtError {
    #[error("The 'published-at' field in Move.toml or Move.lock is invalid: {0:?}")]
    Invalid(String),

    #[error("The 'published-at' field is not present in Move.toml or Move.lock")]
    NotPresent,

    #[error(
        "Conflicting 'published-at' addresses between Move.toml -- {id_manifest} -- and \
         Move.lock -- {id_lock}"
    )]
    Conflict {
        id_lock: ObjectID,
        id_manifest: ObjectID,
    },
}

/// Update the `Move.lock` file with automated address management info.
/// Expects a wallet context, the publish or upgrade command, its response.
/// The `Move.lock` principally file records the published address (i.e., package ID) of
/// a package under an environment determined by the wallet context config. See the
/// `ManagedPackage` type in the lock file for a complete spec.
pub async fn update_lock_file(
    context: &WalletContext,
    command: LockCommand,
    install_dir: Option<PathBuf>,
    lock_file: Option<PathBuf>,
    response: &SuiTransactionBlockResponse,
) -> Result<(), anyhow::Error> {
    let chain_identifier = context
        .get_client()
        .await
        .context("Network issue: couldn't use client to connect to chain when updating Move.lock")?
        .read_api()
        .get_chain_identifier()
        .await
        .context("Network issue: couldn't determine chain identifier for updating Move.lock")?;

    let (original_id, version, _) = get_new_package_obj_from_response(response).context(
        "Expected a valid published package response but didn't see \
         one when attempting to update the `Move.lock`.",
    )?;
    let Some(lock_file) = lock_file else {
        bail!(
            "Expected a `Move.lock` file to exist after publishing \
             package, but none found. Consider running `sui move build` to \
             generate the `Move.lock` file in the package directory."
        )
    };
    let install_dir = install_dir.unwrap_or(PathBuf::from("."));
    let env = context.config.get_active_env().context(
        "Could not resolve environment from active wallet context. \
         Try ensure `sui client active-env` is valid.",
    )?;

    let mut lock = LockFile::from(install_dir.clone(), &lock_file)?;
    match command {
        LockCommand::Publish => lock_file::schema::update_managed_address(
            &mut lock,
            &env.alias,
            lock_file::schema::ManagedAddressUpdate::Published {
                chain_id: chain_identifier,
                original_id: original_id.to_string(),
            },
        ),
        LockCommand::Upgrade => lock_file::schema::update_managed_address(
            &mut lock,
            &env.alias,
            lock_file::schema::ManagedAddressUpdate::Upgraded {
                latest_id: original_id.to_string(),
                version: version.into(),
            },
        ),
    }?;
    lock.commit(lock_file)?;
    Ok(())
}

/// Sets the `original-published-id` in the Move.lock to the given `id`. This function
/// provides a utility to manipulate the `original-published-id` during a package upgrade.
/// For instance, we require graph resolution to resolve a `0x0` address for module names
/// in the package to-be-upgraded, and the `Move.lock` value can be explicitly set to `0x0`
/// in such cases (and reset otherwise).
/// The function returns the existing `original-published-id`, if any.
pub fn set_package_id(
    package_path: &Path,
    install_dir: Option<PathBuf>,
    chain_id: &String,
    id: AccountAddress,
) -> Result<Option<AccountAddress>, anyhow::Error> {
    let lock_file_path = package_path.join(SourcePackageLayout::Lock.path());
    let Ok(mut lock_file) = File::open(lock_file_path.clone()) else {
        return Ok(None);
    };
    let managed_package = ManagedPackage::read(&mut lock_file)
        .ok()
        .and_then(|m| m.into_iter().find(|(_, v)| v.chain_id == *chain_id));
    let Some((env, v)) = managed_package else {
        return Ok(None);
    };
    let install_dir = install_dir.unwrap_or(PathBuf::from("."));
    let lock_for_update = LockFile::from(install_dir.clone(), &lock_file_path);
    let Ok(mut lock_for_update) = lock_for_update else {
        return Ok(None);
    };
    lock_file::schema::set_original_id(&mut lock_for_update, &env, &id.to_canonical_string(true))?;
    lock_for_update.commit(lock_file_path)?;
    let id = AccountAddress::from_str(&v.original_published_id)?;
    Ok(Some(id))
}

/// Find the published on-chain ID in the `Move.lock` or `Move.toml` file.
/// A chain ID of `None` means that we will only try to resolve a published ID from the Move.toml.
/// The published ID is resolved from the `Move.toml` if the Move.lock does not exist.
/// Else, we resolve from the `Move.lock`, where addresses are automatically
/// managed. If conflicting IDs are found in the `Move.lock` vs. `Move.toml`, a
/// "Conflict" error message returns.
pub fn resolve_published_id(
    package: &Package,
    chain_id: Option<String>,
) -> Result<ObjectID, PublishedAtError> {
    // Look up a valid `published-at` in the `Move.toml` first, which we'll
    // return if the Move.lock does not manage addresses.
    let published_id_in_manifest = manifest_published_at(package);

    match published_id_in_manifest {
        Ok(_) | Err(PublishedAtError::NotPresent) => { /* nop */ }
        Err(e) => {
            return Err(e);
        }
    }

    let lock = package.package_path.join(SourcePackageLayout::Lock.path());
    let Ok(mut lock_file) = File::open(lock.clone()) else {
        return published_id_in_manifest;
    };

    // Find the environment and ManagedPackage data for this chain_id.
    let id_in_lock_for_chain_id =
        lock_published_at(ManagedPackage::read(&mut lock_file).ok(), chain_id.as_ref());

    match (id_in_lock_for_chain_id, published_id_in_manifest) {
        (Ok(id_lock), Ok(id_manifest)) if id_lock != id_manifest => {
            Err(PublishedAtError::Conflict {
                id_lock,
                id_manifest,
            })
        }

        (Ok(id), _) | (_, Ok(id)) => Ok(id),

        // We return early (above) if we failed to read the ID from the manifest for some reason
        // other than it not being present, so at this point, we can defer to whatever error came
        // from the lock file (Ok case is handled above).
        (from_lock, Err(_)) => from_lock,
    }
}

fn manifest_published_at(package: &Package) -> Result<ObjectID, PublishedAtError> {
    let Some(value) = package
        .source_package
        .package
        .custom_properties
        .get(&Symbol::from(PUBLISHED_AT_MANIFEST_FIELD))
    else {
        return Err(PublishedAtError::NotPresent);
    };

    let id =
        ObjectID::from_str(value.as_str()).map_err(|_| PublishedAtError::Invalid(value.clone()))?;

    if id == ObjectID::ZERO {
        Err(PublishedAtError::NotPresent)
    } else {
        Ok(id)
    }
}

fn lock_published_at(
    lock: Option<HashMap<String, ManagedPackage>>,
    chain_id: Option<&String>,
) -> Result<ObjectID, PublishedAtError> {
    let (Some(lock), Some(chain_id)) = (lock, chain_id) else {
        return Err(PublishedAtError::NotPresent);
    };

    let managed_package = lock
        .into_values()
        .find(|v| v.chain_id == *chain_id)
        .ok_or(PublishedAtError::NotPresent)?;

    let id = ObjectID::from_str(managed_package.latest_published_id.as_str())
        .map_err(|_| PublishedAtError::Invalid(managed_package.latest_published_id.clone()))?;

    if id == ObjectID::ZERO {
        Err(PublishedAtError::NotPresent)
    } else {
        Ok(id)
    }
}