Add worker pool to WASM capability

[cedric-cordenier]

• Add a worker pool to the wasm capability; previously there was no upper bound on the number of WASM instances that could be spun up at a given time. This adds a worker pool to limit concurrency and sets a conservative limit of 3 workers.
• Incorporate some config optimizations from common
• Shallow copy the request: since the binary can easily be 30 megabytes, this reduces the amount of copying we need to do.
• Add a step-level timeout to replace the one provided by ExecuteSync in the engine, which has since been removed.

[github-actions]

I see you updated files related to core. Please run pnpm changeset in the root directory to add a changeset as well as in the text include at least one of the following tags:

• #added For any new functionality added.
• #breaking_change For any functionality that requires manual action for the node to boot.
• #bugfix For bug fixes.
• #changed For any change to the existing functionality.
• #db_update For any feature that introduces updates to database schema.
• #deprecation_notice For any upcoming deprecation functionality.
• #internal For changesets that need to be excluded from the final changelog.
• #nops For any feature that is NOP facing and needs to be in the official Release Notes for the release.
• #removed For any functionality/config that is removed.
• #updated For any functionality that is updated.
• #wip For any change that is not ready yet and external communication about it should be held off till it is feature complete.

🎖️ No JIRA issue number found in: PR title, commit message, or branch name. Please include the issue ID in one of these.

[github-actions]

AER Report: CI Core ran successfully ✅

aer_workflow , commit

AER Report: Operator UI CI ran successfully ✅

aer_workflow , commit

[nolag]

Do we need to worry about the capability timing out in the engine if this queue gets too long?

[cedric-cordenier]

We do -- this is why I added the step-level timeout; we'll wait for a maximum of 2 minutes (which is incredibly generous) before interrupting a step (and 10 minutes for the whole workflow).

[nolag]

Sorry, I'll be more precise, I'm not convinced the timer in the engine should start until it's running. Users shouldn't be penalized if other tasks can block them. I'm worried that I can DoS the compute capability by making N compute steps that have infinite loops and intentionally time out.

For now, maybe this is ok, we can re-evaluate before we open compute for general use...

[cedric-cordenier]

I'm worried that I can DoS the compute capability by making N compute steps that have infinite loops and intentionally time out.

This shouldn't be possible because we apply a lower-level timeout to the individual WASM call; the default setting for this is 2s. I set the step-level timeout to be very large partly as an attempt to compensate for this.

What solution would you propose? We could ignore the engine timeout I suppose, but that feels dangerous IMO.

[nolag]

I was thinking of ignoring the engine timeout for this capability. For now, we don't need to block on this. We can think it out more later.

[nolag]

I was thinking of ignoring the engine timeout for this capability. For now, we don't need to block on this. We can think it out more later.

[nolag]

Should the queue be non-blocking?

[cedric-cordenier]

I left this as non-blocking so that we backpressure onto the engine itself; if we don't succeed after 2 minutes we'll interrupt the request altogether.

[nolag]

I'm worried about how low this is. We should be able to run a lot more. I don't get what takes so much memory. I'm not going to block the PR for now, since it'll fix some OOMs, but we need to get to the bottom of it...

[cedric-cordenier]

As discussed offline, we agree to revisit WASM performance generally once we've hit the external audit.