2022-03-11 05:58:22 -08:00
|
|
|
//! [`tower::Service`]s for Zebra's cached chain state.
|
|
|
|
|
//!
|
|
|
|
|
//! Zebra provides cached state access via two main services:
|
|
|
|
|
//! - [`StateService`]: a read-write service that waits for queued blocks.
|
|
|
|
|
//! - [`ReadStateService`]: a read-only service that answers from the most recent committed block.
|
|
|
|
|
//!
|
|
|
|
|
//! Most users should prefer [`ReadStateService`], unless they need to wait for
|
|
|
|
|
//! verified blocks to be committed. (For example, the syncer and mempool tasks.)
|
|
|
|
|
//!
|
|
|
|
|
//! Zebra also provides access to the best chain tip via:
|
|
|
|
|
//! - [`LatestChainTip`]: a read-only channel that contains the latest committed tip.
|
|
|
|
|
//! - [`ChainTipChange`]: a read-only channel that can asynchronously await chain tip changes.
|
|
|
|
|
|
2020-09-09 17:13:58 -07:00
|
|
|
use std::{
|
|
|
|
|
future::Future,
|
|
|
|
|
pin::Pin,
|
2020-09-09 23:07:47 -07:00
|
|
|
sync::Arc,
|
2020-09-09 17:13:58 -07:00
|
|
|
task::{Context, Poll},
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
time::{Duration, Instant},
|
2020-09-09 17:13:58 -07:00
|
|
|
};
|
2020-09-09 21:15:08 -07:00
|
|
|
|
2022-03-10 12:40:48 -08:00
|
|
|
use futures::future::FutureExt;
|
2022-03-11 05:58:22 -08:00
|
|
|
use tokio::sync::{oneshot, watch};
|
2022-03-10 12:40:48 -08:00
|
|
|
use tower::{util::BoxService, Service};
|
2020-10-07 20:07:32 -07:00
|
|
|
use tracing::instrument;
|
2021-08-26 18:34:33 -07:00
|
|
|
|
|
|
|
|
#[cfg(any(test, feature = "proptest-impl"))]
|
|
|
|
|
use tower::buffer::Buffer;
|
|
|
|
|
|
2020-09-09 23:07:47 -07:00
|
|
|
use zebra_chain::{
|
|
|
|
|
block::{self, Block},
|
2021-06-28 22:03:51 -07:00
|
|
|
parameters::{Network, NetworkUpgrade},
|
2020-11-01 10:49:34 -08:00
|
|
|
transaction,
|
|
|
|
|
transaction::Transaction,
|
|
|
|
|
transparent,
|
2020-09-09 23:07:47 -07:00
|
|
|
};
|
2020-09-09 17:13:58 -07:00
|
|
|
|
2020-10-09 01:37:24 -07:00
|
|
|
use crate::{
|
2022-03-11 05:58:22 -08:00
|
|
|
request::HashOrHeight,
|
|
|
|
|
service::{
|
|
|
|
|
chain_tip::{ChainTipBlock, ChainTipChange, ChainTipSender, LatestChainTip},
|
2022-03-11 12:23:32 -08:00
|
|
|
finalized_state::{FinalizedState, ZebraDb},
|
2022-03-11 05:58:22 -08:00
|
|
|
non_finalized_state::{Chain, NonFinalizedState, QueuedBlocks},
|
|
|
|
|
pending_utxos::PendingUtxos,
|
|
|
|
|
},
|
|
|
|
|
BoxError, CloneError, CommitBlockError, Config, FinalizedBlock, PreparedBlock, Request,
|
|
|
|
|
Response, ValidateContextError,
|
2021-08-26 18:34:33 -07:00
|
|
|
};
|
|
|
|
|
|
2022-03-10 12:40:48 -08:00
|
|
|
pub mod block_iter;
|
2021-08-26 18:34:33 -07:00
|
|
|
pub mod chain_tip;
|
2022-03-10 12:40:48 -08:00
|
|
|
|
2021-07-28 21:23:50 -07:00
|
|
|
pub(crate) mod check;
|
2022-03-10 12:40:48 -08:00
|
|
|
|
2020-11-16 16:05:35 -08:00
|
|
|
mod finalized_state;
|
|
|
|
|
mod non_finalized_state;
|
2020-11-23 12:54:27 -08:00
|
|
|
mod pending_utxos;
|
2022-03-15 12:50:28 -07:00
|
|
|
mod read;
|
2021-07-28 21:23:50 -07:00
|
|
|
|
|
|
|
|
#[cfg(any(test, feature = "proptest-impl"))]
|
|
|
|
|
pub mod arbitrary;
|
|
|
|
|
|
2020-11-13 10:19:47 -08:00
|
|
|
#[cfg(test)]
|
|
|
|
|
mod tests;
|
2020-11-23 12:54:27 -08:00
|
|
|
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
pub type QueuedBlock = (
|
|
|
|
|
PreparedBlock,
|
|
|
|
|
oneshot::Sender<Result<block::Hash, BoxError>>,
|
|
|
|
|
);
|
|
|
|
|
pub type QueuedFinalized = (
|
|
|
|
|
FinalizedBlock,
|
|
|
|
|
oneshot::Sender<Result<block::Hash, BoxError>>,
|
|
|
|
|
);
|
2020-09-09 23:07:47 -07:00
|
|
|
|
2022-03-10 12:40:48 -08:00
|
|
|
/// A read-write service for Zebra's cached blockchain state.
|
|
|
|
|
///
|
|
|
|
|
/// This service modifies and provides access to:
|
|
|
|
|
/// - the non-finalized state: the ~100 most recent blocks.
|
|
|
|
|
/// Zebra allows chain forks in the non-finalized state,
|
|
|
|
|
/// stores it in memory, and re-downloads it when restarted.
|
|
|
|
|
/// - the finalized state: older blocks that have many confirmations.
|
|
|
|
|
/// Zebra stores the single best chain in the finalized state,
|
|
|
|
|
/// and re-loads it from disk when restarted.
|
2022-03-11 05:58:22 -08:00
|
|
|
///
|
|
|
|
|
/// Requests to this service are processed in series,
|
|
|
|
|
/// so read requests wait for all queued write requests to complete,
|
|
|
|
|
/// then return their answers.
|
|
|
|
|
///
|
|
|
|
|
/// This behaviour is implicitly used by Zebra's syncer,
|
2022-03-13 14:48:47 -07:00
|
|
|
/// to delay the next ObtainTips until all queued blocks have been committed.
|
2022-03-11 05:58:22 -08:00
|
|
|
///
|
|
|
|
|
/// But most state users can ignore any queued blocks, and get faster read responses
|
|
|
|
|
/// using the [`ReadOnlyStateService`].
|
|
|
|
|
#[derive(Debug)]
|
2021-07-27 17:01:19 -07:00
|
|
|
pub(crate) struct StateService {
|
2022-03-11 05:58:22 -08:00
|
|
|
/// The finalized chain state, including its on-disk database.
|
2021-07-27 17:01:19 -07:00
|
|
|
pub(crate) disk: FinalizedState,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// The non-finalized chain state, including its in-memory chain forks.
|
2020-10-07 20:07:32 -07:00
|
|
|
mem: NonFinalizedState,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// The configured Zcash network.
|
|
|
|
|
network: Network,
|
|
|
|
|
|
2020-10-07 20:07:32 -07:00
|
|
|
/// Blocks awaiting their parent blocks for contextual verification.
|
|
|
|
|
queued_blocks: QueuedBlocks,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// The set of outpoints with pending requests for their associated transparent::Output.
|
2020-11-23 12:54:27 -08:00
|
|
|
pending_utxos: PendingUtxos,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// Instant tracking the last time `pending_utxos` was pruned.
|
2020-10-14 14:06:32 -07:00
|
|
|
last_prune: Instant,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// A sender channel for the current best chain tip.
|
2021-08-26 18:34:33 -07:00
|
|
|
chain_tip_sender: ChainTipSender,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// A sender channel for the current best non-finalized chain.
|
|
|
|
|
best_chain_sender: watch::Sender<Option<Arc<Chain>>>,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// A read-only service for accessing Zebra's cached blockchain state.
|
|
|
|
|
///
|
|
|
|
|
/// This service provides read-only access to:
|
|
|
|
|
/// - the non-finalized state: the ~100 most recent blocks.
|
|
|
|
|
/// - the finalized state: older blocks that have many confirmations.
|
|
|
|
|
///
|
|
|
|
|
/// Requests to this service are processed in parallel,
|
|
|
|
|
/// ignoring any blocks queued by the read-write [`StateService`].
|
|
|
|
|
///
|
|
|
|
|
/// This quick response behavior is better for most state users.
|
|
|
|
|
#[allow(dead_code)]
|
|
|
|
|
#[derive(Clone, Debug)]
|
|
|
|
|
pub struct ReadStateService {
|
|
|
|
|
/// The shared inner on-disk database for the finalized state.
|
|
|
|
|
///
|
2022-03-11 12:23:32 -08:00
|
|
|
/// RocksDB allows reads and writes via a shared reference,
|
|
|
|
|
/// but [`ZebraDb`] doesn't expose any write methods or types.
|
2022-03-11 05:58:22 -08:00
|
|
|
///
|
|
|
|
|
/// This chain is updated concurrently with requests,
|
|
|
|
|
/// so it might include some block data that is also in `best_mem`.
|
2022-03-11 12:23:32 -08:00
|
|
|
db: ZebraDb,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// A watch channel for the current best in-memory chain.
|
|
|
|
|
///
|
|
|
|
|
/// This chain is only updated between requests,
|
|
|
|
|
/// so it might include some block data that is also on `disk`.
|
2022-03-11 12:23:32 -08:00
|
|
|
best_chain_receiver: watch::Receiver<Option<Arc<Chain>>>,
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
/// The configured Zcash network.
|
|
|
|
|
network: Network,
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
2020-09-09 17:13:58 -07:00
|
|
|
impl StateService {
|
2020-10-14 14:06:32 -07:00
|
|
|
const PRUNE_INTERVAL: Duration = Duration::from_secs(30);
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
/// Create a new read-write state service.
|
|
|
|
|
/// Returns the read-write and read-only state services,
|
|
|
|
|
/// and read-only watch channels for its best chain tip.
|
|
|
|
|
pub fn new(
|
|
|
|
|
config: Config,
|
|
|
|
|
network: Network,
|
|
|
|
|
) -> (Self, ReadStateService, LatestChainTip, ChainTipChange) {
|
2020-11-17 15:26:21 -08:00
|
|
|
let disk = FinalizedState::new(&config, network);
|
2021-08-29 19:38:41 -07:00
|
|
|
let initial_tip = disk
|
2022-03-11 12:23:32 -08:00
|
|
|
.db()
|
2021-08-29 19:38:41 -07:00
|
|
|
.tip_block()
|
|
|
|
|
.map(FinalizedBlock::from)
|
|
|
|
|
.map(ChainTipBlock::from);
|
2021-09-01 15:31:16 -07:00
|
|
|
let (chain_tip_sender, latest_chain_tip, chain_tip_change) =
|
2021-09-01 19:25:42 -07:00
|
|
|
ChainTipSender::new(initial_tip, network);
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
|
2021-07-14 15:23:54 -07:00
|
|
|
let mem = NonFinalizedState::new(network);
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
let (read_only_service, best_chain_sender) = ReadStateService::new(&disk);
|
|
|
|
|
|
2020-10-07 20:07:32 -07:00
|
|
|
let queued_blocks = QueuedBlocks::default();
|
2020-11-23 12:54:27 -08:00
|
|
|
let pending_utxos = PendingUtxos::default();
|
2020-10-07 20:07:32 -07:00
|
|
|
|
2021-06-28 22:03:51 -07:00
|
|
|
let state = Self {
|
2020-11-17 15:26:21 -08:00
|
|
|
disk,
|
2020-10-07 20:07:32 -07:00
|
|
|
mem,
|
|
|
|
|
queued_blocks,
|
2020-10-14 14:06:32 -07:00
|
|
|
pending_utxos,
|
2020-11-15 21:46:16 -08:00
|
|
|
network,
|
2020-10-14 14:06:32 -07:00
|
|
|
last_prune: Instant::now(),
|
2021-08-26 18:34:33 -07:00
|
|
|
chain_tip_sender,
|
2022-03-11 05:58:22 -08:00
|
|
|
best_chain_sender,
|
2021-06-28 22:03:51 -07:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
tracing::info!("starting legacy chain check");
|
|
|
|
|
if let Some(tip) = state.best_tip() {
|
|
|
|
|
if let Some(nu5_activation_height) = NetworkUpgrade::Nu5.activation_height(network) {
|
2022-03-10 12:40:48 -08:00
|
|
|
if check::legacy_chain(
|
2021-06-28 22:03:51 -07:00
|
|
|
nu5_activation_height,
|
|
|
|
|
state.any_ancestor_blocks(tip.1),
|
|
|
|
|
state.network,
|
|
|
|
|
)
|
|
|
|
|
.is_err()
|
|
|
|
|
{
|
|
|
|
|
let legacy_db_path = Some(state.disk.path().to_path_buf());
|
|
|
|
|
panic!(
|
|
|
|
|
"Cached state contains a legacy chain. \
|
|
|
|
|
An outdated Zebra version did not know about a recent network upgrade, \
|
|
|
|
|
so it followed a legacy chain using outdated rules. \
|
|
|
|
|
Hint: Delete your database, and restart Zebra to do a full sync. \
|
|
|
|
|
Database path: {:?}",
|
|
|
|
|
legacy_db_path,
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
2021-06-28 22:03:51 -07:00
|
|
|
tracing::info!("no legacy chain found");
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
(state, read_only_service, latest_chain_tip, chain_tip_change)
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Queue a finalized block for verification and storage in the finalized state.
|
|
|
|
|
fn queue_and_commit_finalized(
|
|
|
|
|
&mut self,
|
|
|
|
|
finalized: FinalizedBlock,
|
|
|
|
|
) -> oneshot::Receiver<Result<block::Hash, BoxError>> {
|
|
|
|
|
let (rsp_tx, rsp_rx) = oneshot::channel();
|
|
|
|
|
|
2021-08-29 19:38:41 -07:00
|
|
|
let tip_block = self
|
|
|
|
|
.disk
|
|
|
|
|
.queue_and_commit_finalized((finalized, rsp_tx))
|
|
|
|
|
.map(ChainTipBlock::from);
|
|
|
|
|
self.chain_tip_sender.set_finalized_tip(tip_block);
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
|
|
|
|
|
rsp_rx
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Queue a non finalized block for verification and check if any queued
|
|
|
|
|
/// blocks are ready to be verified and committed to the state.
|
|
|
|
|
///
|
|
|
|
|
/// This function encodes the logic for [committing non-finalized blocks][1]
|
|
|
|
|
/// in RFC0005.
|
|
|
|
|
///
|
|
|
|
|
/// [1]: https://zebra.zfnd.org/dev/rfcs/0005-state-updates.html#committing-non-finalized-blocks
|
2020-11-21 10:41:53 -08:00
|
|
|
#[instrument(level = "debug", skip(self, prepared))]
|
2020-11-20 19:52:44 -08:00
|
|
|
fn queue_and_commit_non_finalized(
|
2020-10-26 13:54:19 -07:00
|
|
|
&mut self,
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
prepared: PreparedBlock,
|
2020-10-26 13:54:19 -07:00
|
|
|
) -> oneshot::Receiver<Result<block::Hash, BoxError>> {
|
2020-11-21 10:41:53 -08:00
|
|
|
tracing::debug!(block = %prepared.block, "queueing block for contextual verification");
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
let parent_hash = prepared.block.header.previous_block_hash;
|
2020-10-07 20:07:32 -07:00
|
|
|
|
2022-03-11 12:23:32 -08:00
|
|
|
if self.mem.any_chain_contains(&prepared.hash)
|
|
|
|
|
|| self.disk.db().hash(prepared.height).is_some()
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
{
|
2020-10-26 13:54:19 -07:00
|
|
|
let (rsp_tx, rsp_rx) = oneshot::channel();
|
2020-11-12 11:43:17 -08:00
|
|
|
let _ = rsp_tx.send(Err("block is already committed to the state".into()));
|
2020-10-26 13:54:19 -07:00
|
|
|
return rsp_rx;
|
|
|
|
|
}
|
|
|
|
|
|
2020-11-12 11:43:17 -08:00
|
|
|
// Request::CommitBlock contract: a request to commit a block which has
|
|
|
|
|
// been queued but not yet committed to the state fails the older
|
|
|
|
|
// request and replaces it with the newer request.
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
let rsp_rx = if let Some((_, old_rsp_tx)) = self.queued_blocks.get_mut(&prepared.hash) {
|
2020-11-20 19:58:07 -08:00
|
|
|
tracing::debug!("replacing older queued request with new request");
|
2020-10-26 13:54:19 -07:00
|
|
|
let (mut rsp_tx, rsp_rx) = oneshot::channel();
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
std::mem::swap(old_rsp_tx, &mut rsp_tx);
|
2020-11-12 11:43:17 -08:00
|
|
|
let _ = rsp_tx.send(Err("replaced by newer request".into()));
|
2020-10-26 13:54:19 -07:00
|
|
|
rsp_rx
|
|
|
|
|
} else {
|
|
|
|
|
let (rsp_tx, rsp_rx) = oneshot::channel();
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
self.queued_blocks.queue((prepared, rsp_tx));
|
2020-10-26 13:54:19 -07:00
|
|
|
rsp_rx
|
|
|
|
|
};
|
2020-10-07 20:07:32 -07:00
|
|
|
|
|
|
|
|
if !self.can_fork_chain_at(&parent_hash) {
|
2020-11-20 19:58:07 -08:00
|
|
|
tracing::trace!("unready to verify, returning early");
|
2020-10-26 13:54:19 -07:00
|
|
|
return rsp_rx;
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
self.process_queued(parent_hash);
|
|
|
|
|
|
|
|
|
|
while self.mem.best_chain_len() > crate::constants::MAX_BLOCK_REORG_HEIGHT {
|
2020-11-20 19:58:07 -08:00
|
|
|
tracing::trace!("finalizing block past the reorg limit");
|
2020-10-07 20:07:32 -07:00
|
|
|
let finalized = self.mem.finalize();
|
2020-11-17 15:26:21 -08:00
|
|
|
self.disk
|
2021-07-09 05:47:09 -07:00
|
|
|
.commit_finalized_direct(finalized, "best non-finalized chain root")
|
2021-08-05 06:02:37 -07:00
|
|
|
.expect(
|
|
|
|
|
"expected that errors would not occur when writing to disk or updating note commitment and history trees",
|
|
|
|
|
);
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
2022-03-11 12:23:32 -08:00
|
|
|
let finalized_tip_height = self.disk.db().finalized_tip_height().expect(
|
2020-10-07 20:07:32 -07:00
|
|
|
"Finalized state must have at least one block before committing non-finalized state",
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
);
|
|
|
|
|
self.queued_blocks.prune_by_height(finalized_tip_height);
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
let best_chain = self.mem.best_chain();
|
|
|
|
|
let tip_block = best_chain
|
|
|
|
|
.and_then(|chain| chain.tip_block())
|
|
|
|
|
.cloned()
|
|
|
|
|
.map(ChainTipBlock::from);
|
2021-10-07 06:42:38 -07:00
|
|
|
|
|
|
|
|
// update metrics using the best non-finalized tip
|
|
|
|
|
if let Some(tip_block) = tip_block.as_ref() {
|
|
|
|
|
metrics::gauge!(
|
|
|
|
|
"state.full_verifier.committed.block.height",
|
|
|
|
|
tip_block.height.0 as _
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// This height gauge is updated for both fully verified and checkpoint blocks.
|
|
|
|
|
// These updates can't conflict, because the state makes sure that blocks
|
|
|
|
|
// are committed in order.
|
|
|
|
|
metrics::gauge!("zcash.chain.verified.block.height", tip_block.height.0 as _);
|
|
|
|
|
}
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
// update the chain watch channels
|
|
|
|
|
|
|
|
|
|
if self.best_chain_sender.receiver_count() > 0 {
|
|
|
|
|
// If the final receiver was just dropped, ignore the error.
|
|
|
|
|
let _ = self.best_chain_sender.send(best_chain.cloned());
|
|
|
|
|
}
|
|
|
|
|
|
2021-08-29 19:38:41 -07:00
|
|
|
self.chain_tip_sender.set_best_non_finalized_tip(tip_block);
|
2020-10-26 13:54:19 -07:00
|
|
|
|
2020-11-20 19:58:07 -08:00
|
|
|
tracing::trace!("finished processing queued block");
|
2020-10-26 13:54:19 -07:00
|
|
|
rsp_rx
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
/// Run contextual validation on the prepared block and add it to the
|
|
|
|
|
/// non-finalized state if it is contextually valid.
|
2021-11-30 08:05:35 -08:00
|
|
|
#[tracing::instrument(level = "debug", skip(self, prepared))]
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
fn validate_and_commit(&mut self, prepared: PreparedBlock) -> Result<(), CommitBlockError> {
|
|
|
|
|
self.check_contextual_validity(&prepared)?;
|
|
|
|
|
let parent_hash = prepared.block.header.previous_block_hash;
|
2020-10-07 20:07:32 -07:00
|
|
|
|
2022-03-11 12:23:32 -08:00
|
|
|
if self.disk.db().finalized_tip_hash() == parent_hash {
|
|
|
|
|
self.mem.commit_new_chain(prepared, self.disk.db())?;
|
2020-10-07 20:07:32 -07:00
|
|
|
} else {
|
2022-03-11 12:23:32 -08:00
|
|
|
self.mem.commit_block(prepared, self.disk.db())?;
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Ok(())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns `true` if `hash` is a valid previous block hash for new non-finalized blocks.
|
|
|
|
|
fn can_fork_chain_at(&self, hash: &block::Hash) -> bool {
|
2022-03-11 12:23:32 -08:00
|
|
|
self.mem.any_chain_contains(hash) || &self.disk.db().finalized_tip_hash() == hash
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Attempt to validate and commit all queued blocks whose parents have
|
|
|
|
|
/// recently arrived starting from `new_parent`, in breadth-first ordering.
|
2021-11-30 08:05:35 -08:00
|
|
|
#[tracing::instrument(level = "debug", skip(self, new_parent))]
|
2020-10-07 20:07:32 -07:00
|
|
|
fn process_queued(&mut self, new_parent: block::Hash) {
|
2021-07-13 16:12:46 -07:00
|
|
|
let mut new_parents: Vec<(block::Hash, Result<(), CloneError>)> =
|
|
|
|
|
vec![(new_parent, Ok(()))];
|
2020-10-07 20:07:32 -07:00
|
|
|
|
2021-07-13 16:12:46 -07:00
|
|
|
while let Some((parent_hash, parent_result)) = new_parents.pop() {
|
2020-11-20 19:54:57 -08:00
|
|
|
let queued_children = self.queued_blocks.dequeue_children(parent_hash);
|
2020-10-07 20:07:32 -07:00
|
|
|
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
for (child, rsp_tx) in queued_children {
|
2020-11-22 19:38:25 -08:00
|
|
|
let child_hash = child.hash;
|
2021-07-13 16:12:46 -07:00
|
|
|
let result;
|
|
|
|
|
|
|
|
|
|
// If the block is invalid, reject any descendant blocks.
|
|
|
|
|
//
|
|
|
|
|
// At this point, we know that the block and all its descendants
|
|
|
|
|
// are invalid, because we checked all the consensus rules before
|
|
|
|
|
// committing the block to the non-finalized state.
|
|
|
|
|
// (These checks also bind the transaction data to the block
|
|
|
|
|
// header, using the transaction merkle tree and authorizing data
|
|
|
|
|
// commitment.)
|
|
|
|
|
if let Err(ref parent_error) = parent_result {
|
|
|
|
|
tracing::trace!(
|
|
|
|
|
?child_hash,
|
|
|
|
|
?parent_error,
|
|
|
|
|
"rejecting queued child due to parent error"
|
|
|
|
|
);
|
|
|
|
|
result = Err(parent_error.clone());
|
|
|
|
|
} else {
|
|
|
|
|
tracing::trace!(?child_hash, "validating queued child");
|
|
|
|
|
result = self.validate_and_commit(child).map_err(CloneError::from);
|
2021-10-07 06:42:38 -07:00
|
|
|
if result.is_ok() {
|
|
|
|
|
// Update the metrics if semantic and contextual validation passes
|
|
|
|
|
metrics::counter!("state.full_verifier.committed.block.count", 1);
|
|
|
|
|
metrics::counter!("zcash.chain.verified.block.total", 1);
|
|
|
|
|
}
|
2021-07-13 16:12:46 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let _ = rsp_tx.send(result.clone().map(|()| child_hash).map_err(BoxError::from));
|
|
|
|
|
new_parents.push((child_hash, result));
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
/// Check that the prepared block is contextually valid for the configured
|
|
|
|
|
/// network, based on the committed finalized and non-finalized state.
|
2021-07-19 06:52:32 -07:00
|
|
|
///
|
|
|
|
|
/// Note: some additional contextual validity checks are performed by the
|
|
|
|
|
/// non-finalized [`Chain`].
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
fn check_contextual_validity(
|
|
|
|
|
&mut self,
|
|
|
|
|
prepared: &PreparedBlock,
|
|
|
|
|
) -> Result<(), ValidateContextError> {
|
2020-12-10 16:23:26 -08:00
|
|
|
let relevant_chain = self.any_ancestor_blocks(prepared.block.header.previous_block_hash);
|
2020-11-22 17:56:38 -08:00
|
|
|
|
2021-07-14 05:06:43 -07:00
|
|
|
// Security: check proof of work before any other checks
|
2021-08-17 07:49:27 -07:00
|
|
|
check::block_is_valid_for_recent_chain(
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
prepared,
|
2020-11-16 16:55:24 -08:00
|
|
|
self.network,
|
2022-03-11 12:23:32 -08:00
|
|
|
self.disk.db().finalized_tip_height(),
|
2020-11-22 17:56:38 -08:00
|
|
|
relevant_chain,
|
2020-11-16 16:55:24 -08:00
|
|
|
)?;
|
2020-11-15 21:46:16 -08:00
|
|
|
|
2022-03-11 12:23:32 -08:00
|
|
|
check::nullifier::no_duplicates_in_finalized_chain(prepared, self.disk.db())?;
|
2021-07-14 05:06:43 -07:00
|
|
|
|
2020-10-07 20:07:32 -07:00
|
|
|
Ok(())
|
2020-09-09 17:13:58 -07:00
|
|
|
}
|
2020-11-01 10:49:34 -08:00
|
|
|
|
|
|
|
|
/// Create a block locator for the current best chain.
|
|
|
|
|
fn block_locator(&self) -> Option<Vec<block::Hash>> {
|
2020-12-10 16:23:26 -08:00
|
|
|
let tip_height = self.best_tip()?.0;
|
2020-11-01 10:49:34 -08:00
|
|
|
|
|
|
|
|
let heights = crate::util::block_locator_heights(tip_height);
|
|
|
|
|
let mut hashes = Vec::with_capacity(heights.len());
|
|
|
|
|
|
|
|
|
|
for height in heights {
|
2020-11-30 13:30:37 -08:00
|
|
|
if let Some(hash) = self.best_hash(height) {
|
2020-11-01 10:49:34 -08:00
|
|
|
hashes.push(hash);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Some(hashes)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return the tip of the current best chain.
|
2020-12-10 16:23:26 -08:00
|
|
|
pub fn best_tip(&self) -> Option<(block::Height, block::Hash)> {
|
2022-03-11 12:23:32 -08:00
|
|
|
self.mem.best_tip().or_else(|| self.disk.db().tip())
|
2020-11-01 10:49:34 -08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return the depth of block `hash` in the current best chain.
|
2020-12-10 16:23:26 -08:00
|
|
|
pub fn best_depth(&self, hash: block::Hash) -> Option<u32> {
|
|
|
|
|
let tip = self.best_tip()?.0;
|
2020-11-30 13:30:37 -08:00
|
|
|
let height = self
|
|
|
|
|
.mem
|
|
|
|
|
.best_height_by_hash(hash)
|
2022-03-11 12:23:32 -08:00
|
|
|
.or_else(|| self.disk.db().height(hash))?;
|
2020-11-01 10:49:34 -08:00
|
|
|
|
|
|
|
|
Some(tip.0 - height.0)
|
|
|
|
|
}
|
|
|
|
|
|
2022-03-15 12:50:28 -07:00
|
|
|
/// Return the block identified by either its `height` or `hash`,
|
|
|
|
|
/// if it exists in the current best chain.
|
2020-11-30 13:30:37 -08:00
|
|
|
pub fn best_block(&self, hash_or_height: HashOrHeight) -> Option<Arc<Block>> {
|
2022-03-15 12:50:28 -07:00
|
|
|
read::block(self.mem.best_chain(), self.disk.db(), hash_or_height)
|
2020-11-01 10:49:34 -08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return the transaction identified by `hash` if it exists in the current
|
|
|
|
|
/// best chain.
|
2020-12-10 16:23:26 -08:00
|
|
|
pub fn best_transaction(&self, hash: transaction::Hash) -> Option<Arc<Transaction>> {
|
2020-11-01 10:49:34 -08:00
|
|
|
self.mem
|
2020-12-10 16:23:26 -08:00
|
|
|
.best_transaction(hash)
|
2022-03-11 12:23:32 -08:00
|
|
|
.or_else(|| self.disk.db().transaction(hash))
|
2020-11-01 10:49:34 -08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return the hash for the block at `height` in the current best chain.
|
2020-11-30 13:30:37 -08:00
|
|
|
pub fn best_hash(&self, height: block::Height) -> Option<block::Hash> {
|
|
|
|
|
self.mem
|
|
|
|
|
.best_hash(height)
|
2022-03-11 12:23:32 -08:00
|
|
|
.or_else(|| self.disk.db().hash(height))
|
2020-11-30 13:30:37 -08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return true if `hash` is in the current best chain.
|
|
|
|
|
pub fn best_chain_contains(&self, hash: block::Hash) -> bool {
|
|
|
|
|
self.best_height_by_hash(hash).is_some()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Return the height for the block at `hash`, if `hash` is in the best chain.
|
|
|
|
|
pub fn best_height_by_hash(&self, hash: block::Hash) -> Option<block::Height> {
|
|
|
|
|
self.mem
|
|
|
|
|
.best_height_by_hash(hash)
|
2022-03-11 12:23:32 -08:00
|
|
|
.or_else(|| self.disk.db().height(hash))
|
2020-11-01 10:49:34 -08:00
|
|
|
}
|
|
|
|
|
|
2020-11-15 18:22:53 -08:00
|
|
|
/// Return the height for the block at `hash` in any chain.
|
2020-11-30 13:30:37 -08:00
|
|
|
pub fn any_height_by_hash(&self, hash: block::Hash) -> Option<block::Height> {
|
2020-11-15 18:22:53 -08:00
|
|
|
self.mem
|
2020-11-30 13:30:37 -08:00
|
|
|
.any_height_by_hash(hash)
|
2022-03-11 12:23:32 -08:00
|
|
|
.or_else(|| self.disk.db().height(hash))
|
2020-11-15 18:22:53 -08:00
|
|
|
}
|
|
|
|
|
|
2020-11-23 12:02:57 -08:00
|
|
|
/// Return the [`Utxo`] pointed to by `outpoint` if it exists in any chain.
|
2021-07-11 19:49:33 -07:00
|
|
|
pub fn any_utxo(&self, outpoint: &transparent::OutPoint) -> Option<transparent::Utxo> {
|
2020-11-20 22:50:09 -08:00
|
|
|
self.mem
|
2020-12-10 16:23:26 -08:00
|
|
|
.any_utxo(outpoint)
|
2020-11-20 22:50:09 -08:00
|
|
|
.or_else(|| self.queued_blocks.utxo(outpoint))
|
2022-03-11 12:23:32 -08:00
|
|
|
.or_else(|| self.disk.db().utxo(outpoint))
|
2020-11-01 10:49:34 -08:00
|
|
|
}
|
2020-11-15 18:22:53 -08:00
|
|
|
|
|
|
|
|
/// Return an iterator over the relevant chain of the block identified by
|
2021-07-01 16:21:22 -07:00
|
|
|
/// `hash`, in order from the largest height to the genesis block.
|
2020-11-15 18:22:53 -08:00
|
|
|
///
|
|
|
|
|
/// The block identified by `hash` is included in the chain of blocks yielded
|
2020-12-10 16:23:26 -08:00
|
|
|
/// by the iterator. `hash` can come from any chain.
|
2022-03-10 12:40:48 -08:00
|
|
|
pub fn any_ancestor_blocks(&self, hash: block::Hash) -> block_iter::Iter<'_> {
|
|
|
|
|
block_iter::Iter {
|
2020-11-15 18:22:53 -08:00
|
|
|
service: self,
|
2022-03-10 12:40:48 -08:00
|
|
|
state: block_iter::IterState::NonFinalized(hash),
|
2020-11-15 18:22:53 -08:00
|
|
|
}
|
|
|
|
|
}
|
2020-11-30 13:30:37 -08:00
|
|
|
|
|
|
|
|
/// Find the first hash that's in the peer's `known_blocks` and the local best chain.
|
|
|
|
|
///
|
|
|
|
|
/// Returns `None` if:
|
|
|
|
|
/// * there is no matching hash in the best chain, or
|
|
|
|
|
/// * the state is empty.
|
2020-12-10 16:23:26 -08:00
|
|
|
fn find_best_chain_intersection(&self, known_blocks: Vec<block::Hash>) -> Option<block::Hash> {
|
2020-11-30 13:30:37 -08:00
|
|
|
// We can get a block locator request before we have downloaded the genesis block
|
2020-12-10 16:23:26 -08:00
|
|
|
self.best_tip()?;
|
2020-11-30 13:30:37 -08:00
|
|
|
|
|
|
|
|
known_blocks
|
|
|
|
|
.iter()
|
|
|
|
|
.find(|&&hash| self.best_chain_contains(hash))
|
|
|
|
|
.cloned()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Returns a list of block hashes in the best chain, following the `intersection` with the best
|
|
|
|
|
/// chain. If there is no intersection with the best chain, starts from the genesis hash.
|
|
|
|
|
///
|
|
|
|
|
/// Includes finalized and non-finalized blocks.
|
|
|
|
|
///
|
|
|
|
|
/// Stops the list of hashes after:
|
|
|
|
|
/// * adding the best tip,
|
|
|
|
|
/// * adding the `stop` hash to the list, if it is in the best chain, or
|
|
|
|
|
/// * adding `max_len` hashes to the list.
|
|
|
|
|
///
|
2021-09-27 15:43:05 -07:00
|
|
|
/// Returns an empty list if the state is empty,
|
|
|
|
|
/// or if the `intersection` is the best chain tip.
|
2020-12-10 16:23:26 -08:00
|
|
|
pub fn collect_best_chain_hashes(
|
2020-11-30 13:30:37 -08:00
|
|
|
&self,
|
|
|
|
|
intersection: Option<block::Hash>,
|
|
|
|
|
stop: Option<block::Hash>,
|
|
|
|
|
max_len: usize,
|
|
|
|
|
) -> Vec<block::Hash> {
|
|
|
|
|
assert!(max_len > 0, "max_len must be at least 1");
|
|
|
|
|
|
|
|
|
|
// We can get a block locator request before we have downloaded the genesis block
|
2020-12-10 16:23:26 -08:00
|
|
|
let chain_tip_height = if let Some((height, _)) = self.best_tip() {
|
2020-11-30 13:30:37 -08:00
|
|
|
height
|
|
|
|
|
} else {
|
2021-10-21 19:11:09 -07:00
|
|
|
tracing::debug!(
|
2021-09-27 15:43:05 -07:00
|
|
|
response_len = ?0,
|
|
|
|
|
"responding to peer GetBlocks or GetHeaders with empty state",
|
|
|
|
|
);
|
|
|
|
|
|
2020-11-30 13:30:37 -08:00
|
|
|
return Vec::new();
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
let intersection_height = intersection.map(|hash| {
|
|
|
|
|
self.best_height_by_hash(hash)
|
|
|
|
|
.expect("the intersection hash must be in the best chain")
|
|
|
|
|
});
|
|
|
|
|
let max_len_height = if let Some(intersection_height) = intersection_height {
|
2022-01-27 06:34:15 -08:00
|
|
|
let max_len = i32::try_from(max_len).expect("max_len fits in i32");
|
|
|
|
|
|
2020-11-30 13:30:37 -08:00
|
|
|
// start after the intersection_height, and return max_len hashes
|
2022-01-27 06:34:15 -08:00
|
|
|
(intersection_height + max_len)
|
2020-11-30 13:30:37 -08:00
|
|
|
.expect("the Find response height does not exceed Height::MAX")
|
|
|
|
|
} else {
|
2022-01-27 06:34:15 -08:00
|
|
|
let max_len = u32::try_from(max_len).expect("max_len fits in u32");
|
|
|
|
|
let max_height = block::Height(max_len);
|
|
|
|
|
|
2020-11-30 13:30:37 -08:00
|
|
|
// start at genesis, and return max_len hashes
|
2022-01-27 06:34:15 -08:00
|
|
|
(max_height - 1).expect("max_len is at least 1, and does not exceed Height::MAX + 1")
|
2020-11-30 13:30:37 -08:00
|
|
|
};
|
|
|
|
|
|
2021-12-09 06:19:14 -08:00
|
|
|
let stop_height = stop.and_then(|hash| self.best_height_by_hash(hash));
|
2020-11-30 13:30:37 -08:00
|
|
|
|
|
|
|
|
// Compute the final height, making sure it is:
|
|
|
|
|
// * at or below our chain tip, and
|
|
|
|
|
// * at or below the height of the stop hash.
|
|
|
|
|
let final_height = std::cmp::min(max_len_height, chain_tip_height);
|
|
|
|
|
let final_height = stop_height
|
|
|
|
|
.map(|stop_height| std::cmp::min(final_height, stop_height))
|
|
|
|
|
.unwrap_or(final_height);
|
|
|
|
|
let final_hash = self
|
|
|
|
|
.best_hash(final_height)
|
|
|
|
|
.expect("final height must have a hash");
|
|
|
|
|
|
|
|
|
|
// We can use an "any chain" method here, because `final_hash` is in the best chain
|
|
|
|
|
let mut res: Vec<_> = self
|
2020-12-10 16:23:26 -08:00
|
|
|
.any_ancestor_blocks(final_hash)
|
2020-11-30 13:30:37 -08:00
|
|
|
.map(|block| block.hash())
|
|
|
|
|
.take_while(|&hash| Some(hash) != intersection)
|
|
|
|
|
.inspect(|hash| {
|
|
|
|
|
tracing::trace!(
|
|
|
|
|
?hash,
|
|
|
|
|
height = ?self.best_height_by_hash(*hash)
|
|
|
|
|
.expect("if hash is in the state then it should have an associated height"),
|
|
|
|
|
"adding hash to peer Find response",
|
|
|
|
|
)
|
|
|
|
|
})
|
|
|
|
|
.collect();
|
|
|
|
|
res.reverse();
|
|
|
|
|
|
2021-11-07 14:21:51 -08:00
|
|
|
tracing::debug!(
|
2020-11-30 13:30:37 -08:00
|
|
|
?final_height,
|
|
|
|
|
response_len = ?res.len(),
|
|
|
|
|
?chain_tip_height,
|
|
|
|
|
?stop_height,
|
|
|
|
|
?intersection_height,
|
|
|
|
|
"responding to peer GetBlocks or GetHeaders",
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// Check the function implements the Find protocol
|
|
|
|
|
assert!(
|
|
|
|
|
res.len() <= max_len,
|
|
|
|
|
"a Find response must not exceed the maximum response length"
|
|
|
|
|
);
|
|
|
|
|
assert!(
|
|
|
|
|
intersection
|
|
|
|
|
.map(|hash| !res.contains(&hash))
|
|
|
|
|
.unwrap_or(true),
|
|
|
|
|
"the list must not contain the intersection hash"
|
|
|
|
|
);
|
2021-09-27 15:43:05 -07:00
|
|
|
if let (Some(stop), Some((_, res_except_last))) = (stop, res.split_last()) {
|
|
|
|
|
assert!(
|
|
|
|
|
!res_except_last.contains(&stop),
|
|
|
|
|
"if the stop hash is in the list, it must be the final hash"
|
|
|
|
|
);
|
|
|
|
|
}
|
2020-11-30 13:30:37 -08:00
|
|
|
|
|
|
|
|
res
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Finds the first hash that's in the peer's `known_blocks` and the local best chain.
|
|
|
|
|
/// Returns a list of hashes that follow that intersection, from the best chain.
|
|
|
|
|
///
|
|
|
|
|
/// Starts from the first matching hash in the best chain, ignoring all other hashes in
|
|
|
|
|
/// `known_blocks`. If there is no matching hash in the best chain, starts from the genesis
|
|
|
|
|
/// hash.
|
|
|
|
|
///
|
|
|
|
|
/// Includes finalized and non-finalized blocks.
|
|
|
|
|
///
|
|
|
|
|
/// Stops the list of hashes after:
|
|
|
|
|
/// * adding the best tip,
|
|
|
|
|
/// * adding the `stop` hash to the list, if it is in the best chain, or
|
|
|
|
|
/// * adding 500 hashes to the list.
|
|
|
|
|
///
|
|
|
|
|
/// Returns an empty list if the state is empty.
|
2020-12-10 16:23:26 -08:00
|
|
|
pub fn find_best_chain_hashes(
|
2020-11-30 13:30:37 -08:00
|
|
|
&self,
|
|
|
|
|
known_blocks: Vec<block::Hash>,
|
|
|
|
|
stop: Option<block::Hash>,
|
|
|
|
|
max_len: usize,
|
|
|
|
|
) -> Vec<block::Hash> {
|
2020-12-10 16:23:26 -08:00
|
|
|
let intersection = self.find_best_chain_intersection(known_blocks);
|
|
|
|
|
self.collect_best_chain_hashes(intersection, stop, max_len)
|
2020-11-30 13:30:37 -08:00
|
|
|
}
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
|
|
|
|
|
/// Assert some assumptions about the prepared `block` before it is validated.
|
|
|
|
|
fn assert_block_can_be_validated(&self, block: &PreparedBlock) {
|
|
|
|
|
// required by validate_and_commit, moved here to make testing easier
|
|
|
|
|
assert!(
|
|
|
|
|
block.height > self.network.mandatory_checkpoint_height(),
|
|
|
|
|
"invalid non-finalized block height: the canopy checkpoint is mandatory, pre-canopy \
|
|
|
|
|
blocks, and the canopy activation block, must be committed to the state as finalized \
|
|
|
|
|
blocks"
|
|
|
|
|
);
|
|
|
|
|
}
|
2020-11-15 18:22:53 -08:00
|
|
|
}
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
impl ReadStateService {
|
|
|
|
|
/// Creates a new read-only state service, using the provided finalized state.
|
|
|
|
|
///
|
|
|
|
|
/// Returns the newly created service,
|
|
|
|
|
/// and a watch channel for updating its best non-finalized chain.
|
|
|
|
|
pub(crate) fn new(disk: &FinalizedState) -> (Self, watch::Sender<Option<Arc<Chain>>>) {
|
|
|
|
|
let (best_chain_sender, best_chain_receiver) = watch::channel(None);
|
|
|
|
|
|
|
|
|
|
let read_only_service = Self {
|
2022-03-11 12:23:32 -08:00
|
|
|
db: disk.db().clone(),
|
|
|
|
|
best_chain_receiver,
|
2022-03-11 05:58:22 -08:00
|
|
|
network: disk.network(),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
tracing::info!("created new read-only state service");
|
|
|
|
|
|
|
|
|
|
(read_only_service, best_chain_sender)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-09 17:13:58 -07:00
|
|
|
impl Service<Request> for StateService {
|
|
|
|
|
type Response = Response;
|
|
|
|
|
type Error = BoxError;
|
|
|
|
|
type Future =
|
|
|
|
|
Pin<Box<dyn Future<Output = Result<Self::Response, Self::Error>> + Send + 'static>>;
|
|
|
|
|
|
|
|
|
|
fn poll_ready(&mut self, _: &mut Context<'_>) -> Poll<Result<(), Self::Error>> {
|
2020-10-14 14:06:32 -07:00
|
|
|
let now = Instant::now();
|
|
|
|
|
|
|
|
|
|
if self.last_prune + Self::PRUNE_INTERVAL < now {
|
2020-12-10 16:23:26 -08:00
|
|
|
let tip = self.best_tip();
|
2020-11-25 23:26:10 -08:00
|
|
|
let old_len = self.pending_utxos.len();
|
|
|
|
|
|
2020-10-14 14:06:32 -07:00
|
|
|
self.pending_utxos.prune();
|
|
|
|
|
self.last_prune = now;
|
2020-11-25 23:26:10 -08:00
|
|
|
|
|
|
|
|
let new_len = self.pending_utxos.len();
|
|
|
|
|
let prune_count = old_len
|
|
|
|
|
.checked_sub(new_len)
|
|
|
|
|
.expect("prune does not add any utxo requests");
|
|
|
|
|
if prune_count > 0 {
|
2022-01-28 14:12:19 -08:00
|
|
|
tracing::debug!(
|
2020-11-25 23:26:10 -08:00
|
|
|
?old_len,
|
|
|
|
|
?new_len,
|
|
|
|
|
?prune_count,
|
|
|
|
|
?tip,
|
|
|
|
|
"pruned utxo requests"
|
|
|
|
|
);
|
|
|
|
|
} else {
|
|
|
|
|
tracing::debug!(len = ?old_len, ?tip, "no utxo requests needed pruning");
|
|
|
|
|
}
|
2020-10-14 14:06:32 -07:00
|
|
|
}
|
|
|
|
|
|
2020-09-09 17:13:58 -07:00
|
|
|
Poll::Ready(Ok(()))
|
|
|
|
|
}
|
|
|
|
|
|
2020-11-20 15:12:30 -08:00
|
|
|
#[instrument(name = "state", skip(self, req))]
|
2020-09-09 17:13:58 -07:00
|
|
|
fn call(&mut self, req: Request) -> Self::Future {
|
|
|
|
|
match req {
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
Request::CommitBlock(prepared) => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "commit_block");
|
|
|
|
|
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
self.assert_block_can_be_validated(&prepared);
|
|
|
|
|
|
2021-07-19 06:52:32 -07:00
|
|
|
self.pending_utxos
|
|
|
|
|
.check_against_ordered(&prepared.new_outputs);
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
let rsp_rx = self.queue_and_commit_non_finalized(prepared);
|
2020-10-07 20:07:32 -07:00
|
|
|
|
|
|
|
|
async move {
|
|
|
|
|
rsp_rx
|
|
|
|
|
.await
|
2020-10-09 01:37:24 -07:00
|
|
|
.expect("sender is not dropped")
|
2020-10-07 20:07:32 -07:00
|
|
|
.map(Response::Committed)
|
2020-10-09 01:37:24 -07:00
|
|
|
.map_err(Into::into)
|
2020-10-07 20:07:32 -07:00
|
|
|
}
|
|
|
|
|
.boxed()
|
|
|
|
|
}
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
Request::CommitFinalizedBlock(finalized) => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "commit_finalized_block");
|
|
|
|
|
|
2020-11-23 12:02:57 -08:00
|
|
|
self.pending_utxos.check_against(&finalized.new_outputs);
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
let rsp_rx = self.queue_and_commit_finalized(finalized);
|
2020-09-09 21:15:08 -07:00
|
|
|
|
2020-09-09 23:07:47 -07:00
|
|
|
async move {
|
|
|
|
|
rsp_rx
|
|
|
|
|
.await
|
2020-10-09 01:37:24 -07:00
|
|
|
.expect("sender is not dropped")
|
2020-09-10 10:52:51 -07:00
|
|
|
.map(Response::Committed)
|
2020-10-09 01:37:24 -07:00
|
|
|
.map_err(Into::into)
|
2020-09-09 23:07:47 -07:00
|
|
|
}
|
|
|
|
|
.boxed()
|
2020-09-09 21:15:08 -07:00
|
|
|
}
|
|
|
|
|
Request::Depth(hash) => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "depth");
|
2020-12-10 16:23:26 -08:00
|
|
|
let rsp = Ok(self.best_depth(hash)).map(Response::Depth);
|
2020-10-24 17:09:50 -07:00
|
|
|
async move { rsp }.boxed()
|
2020-09-09 21:15:08 -07:00
|
|
|
}
|
|
|
|
|
Request::Tip => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "tip");
|
2020-12-10 16:23:26 -08:00
|
|
|
let rsp = Ok(self.best_tip()).map(Response::Tip);
|
2020-10-24 17:09:50 -07:00
|
|
|
async move { rsp }.boxed()
|
2020-09-09 21:15:08 -07:00
|
|
|
}
|
|
|
|
|
Request::BlockLocator => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "block_locator");
|
2020-11-01 10:49:34 -08:00
|
|
|
let rsp = Ok(self.block_locator().unwrap_or_default()).map(Response::BlockLocator);
|
|
|
|
|
async move { rsp }.boxed()
|
|
|
|
|
}
|
|
|
|
|
Request::Transaction(hash) => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "transaction");
|
2020-12-10 16:23:26 -08:00
|
|
|
let rsp = Ok(self.best_transaction(hash)).map(Response::Transaction);
|
2020-10-24 17:09:50 -07:00
|
|
|
async move { rsp }.boxed()
|
2020-09-09 21:15:08 -07:00
|
|
|
}
|
2020-09-10 10:19:45 -07:00
|
|
|
Request::Block(hash_or_height) => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "block");
|
2020-11-30 13:30:37 -08:00
|
|
|
let rsp = Ok(self.best_block(hash_or_height)).map(Response::Block);
|
2020-10-24 17:09:50 -07:00
|
|
|
async move { rsp }.boxed()
|
2020-09-10 10:19:45 -07:00
|
|
|
}
|
2020-10-14 14:06:32 -07:00
|
|
|
Request::AwaitUtxo(outpoint) => {
|
2020-11-20 13:27:57 -08:00
|
|
|
metrics::counter!("state.requests", 1, "type" => "await_utxo");
|
|
|
|
|
|
2020-10-14 14:06:32 -07:00
|
|
|
let fut = self.pending_utxos.queue(outpoint);
|
|
|
|
|
|
2020-12-10 16:23:26 -08:00
|
|
|
if let Some(utxo) = self.any_utxo(&outpoint) {
|
state: introduce PreparedBlock, FinalizedBlock
This change introduces two new types:
- `PreparedBlock`, representing a block which has undergone semantic
validation and has been prepared for contextual validation;
- `FinalizedBlock`, representing a block which is ready to be finalized
immediately;
and changes the `Request::CommitBlock`,`Request::CommitFinalizedBlock`
variants to use these types instead of their previous fields.
This change solves the problem of passing data between semantic
validation and contextual validation, and cleans up the state code by
allowing it to pass around a bundle of data. Previously, the state code
just passed around an `Arc<Block>`, which forced it to needlessly
recompute block hashes and other data, and was incompatible with the
already-known but not-yet-implemented data transfer requirements, namely
passing in the Sprout and Sapling anchors computed during contextual
validation.
This commit propagates the `PreparedBlock` and `FinalizedBlock` types
through the state code but only uses their data opportunistically, e.g.,
changing .hash() computations to use the precomputed hash. In the
future, these structures can be extended to pass data through the
verification pipeline for reuse as appropriate. For instance, these
changes allow the sprout and sapling anchors to be propagated through
the state.
2020-11-21 01:16:14 -08:00
|
|
|
self.pending_utxos.respond(&outpoint, utxo);
|
2020-10-14 14:06:32 -07:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
fut.boxed()
|
|
|
|
|
}
|
2020-11-30 13:30:37 -08:00
|
|
|
Request::FindBlockHashes { known_blocks, stop } => {
|
|
|
|
|
const MAX_FIND_BLOCK_HASHES_RESULTS: usize = 500;
|
2020-12-10 16:23:26 -08:00
|
|
|
let res =
|
|
|
|
|
self.find_best_chain_hashes(known_blocks, stop, MAX_FIND_BLOCK_HASHES_RESULTS);
|
2020-11-30 13:30:37 -08:00
|
|
|
async move { Ok(Response::BlockHashes(res)) }.boxed()
|
|
|
|
|
}
|
|
|
|
|
Request::FindBlockHeaders { known_blocks, stop } => {
|
|
|
|
|
const MAX_FIND_BLOCK_HEADERS_RESULTS: usize = 160;
|
state: dodge a bug in zcashd
Zcashd will blindly request more block headers as long as it got 160
block headers in response to a previous query, EVEN IF THOSE HEADERS ARE
ALREADY KNOWN. To dodge this behavior, return slightly fewer than the
maximum, to get it to go away.
https://github.com/zcash/zcash/blob/0ccc885371e01d844ebeced7babe45826623d9c2/src/main.cpp#L6274-L6280
Without this change, communication between a partially-synced `zebrad`
and fully-synced `zcashd` looked like this:
1. `zebrad` connects to `zcashd`, which sends an initial `getheaders`
request;
2. `zebrad` correctly computes the intersection of the provided block
locator with the node's current chain and returns 160 following
headers;
3. `zcashd` does not check whether it already has those headers and
assumes that any provided headers are new and re-validates them;
4. `zcashd` assumes that because `zebrad` responded with 160 headers,
the `zebrad` node is ahead of it, and requests the next 160 headers.
5. Because block locators are sparse, the intersection between the
`zcashd` and `zebrad` chains is likely well behind the `zebrad` tip,
so this process continues for thousands of blocks.
To avoid this problem, we return slightly fewer than the protocol
maximum (158 rather than 160, to guard against off-by-one errors in
zcashd). This does not interfere with use of the returned headers by
peers that check the headers, but does prevent `zcashd` from trying to
download thousands of block headers it already has.
This problem does not occur in the `zcashd<->zcashd` case only because
`zcashd` does not respond to `getheaders` messages while it is syncing.
However, implementing this behavior in Zebra would be more complicated,
because we don't have a distinct "initial block sync" state (we do
poll-based syncing continuously) and we don't have shared global
variables to modify to set that state.
Relevant links (thanks @str4d):
- The PR that introduced this behavior: https://github.com/bitcoin/bitcoin/pull/4468/files#r17026905
- https://github.com/bitcoin/bitcoin/issues/6861
- https://github.com/bitcoin/bitcoin/issues/6755
- https://github.com/bitcoin/bitcoin/pull/8306#issuecomment-614916454
2020-12-02 12:08:47 -08:00
|
|
|
// Zcashd will blindly request more block headers as long as it
|
|
|
|
|
// got 160 block headers in response to a previous query, EVEN
|
|
|
|
|
// IF THOSE HEADERS ARE ALREADY KNOWN. To dodge this behavior,
|
|
|
|
|
// return slightly fewer than the maximum, to get it to go away.
|
|
|
|
|
//
|
|
|
|
|
// https://github.com/bitcoin/bitcoin/pull/4468/files#r17026905
|
|
|
|
|
let count = MAX_FIND_BLOCK_HEADERS_RESULTS - 2;
|
2020-12-10 16:23:26 -08:00
|
|
|
let res = self.find_best_chain_hashes(known_blocks, stop, count);
|
2020-11-30 13:30:37 -08:00
|
|
|
let res: Vec<_> = res
|
|
|
|
|
.iter()
|
|
|
|
|
.map(|&hash| {
|
2020-12-01 15:52:09 -08:00
|
|
|
let block = self
|
|
|
|
|
.best_block(hash.into())
|
|
|
|
|
.expect("block for found hash is in the best chain");
|
|
|
|
|
block::CountedHeader {
|
2021-11-05 11:24:24 -07:00
|
|
|
transaction_count: block
|
|
|
|
|
.transactions
|
|
|
|
|
.len()
|
|
|
|
|
.try_into()
|
|
|
|
|
.expect("transaction count has already been validated"),
|
2020-12-01 15:52:09 -08:00
|
|
|
header: block.header,
|
|
|
|
|
}
|
2020-11-30 13:30:37 -08:00
|
|
|
})
|
|
|
|
|
.collect();
|
|
|
|
|
async move { Ok(Response::BlockHeaders(res)) }.boxed()
|
|
|
|
|
}
|
2020-09-09 17:13:58 -07:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
impl Service<Request> for ReadStateService {
|
|
|
|
|
type Response = Response;
|
|
|
|
|
type Error = BoxError;
|
|
|
|
|
type Future =
|
|
|
|
|
Pin<Box<dyn Future<Output = Result<Self::Response, Self::Error>> + Send + 'static>>;
|
|
|
|
|
|
|
|
|
|
fn poll_ready(&mut self, _: &mut Context<'_>) -> Poll<Result<(), Self::Error>> {
|
|
|
|
|
Poll::Ready(Ok(()))
|
|
|
|
|
}
|
|
|
|
|
|
2022-03-15 12:50:28 -07:00
|
|
|
#[instrument(name = "read_state", skip(self))]
|
2022-03-11 05:58:22 -08:00
|
|
|
fn call(&mut self, req: Request) -> Self::Future {
|
|
|
|
|
match req {
|
|
|
|
|
// Used by get_block RPC.
|
2022-03-15 12:50:28 -07:00
|
|
|
Request::Block(hash_or_height) => {
|
|
|
|
|
let state = self.clone();
|
|
|
|
|
|
|
|
|
|
async move {
|
|
|
|
|
Ok(read::block(
|
|
|
|
|
state.best_chain_receiver.borrow().clone().as_ref(),
|
|
|
|
|
&state.db,
|
|
|
|
|
hash_or_height,
|
|
|
|
|
))
|
|
|
|
|
.map(Response::Block)
|
|
|
|
|
}
|
|
|
|
|
.boxed()
|
|
|
|
|
}
|
2022-03-11 05:58:22 -08:00
|
|
|
|
|
|
|
|
// TODO: implement for lightwalletd as part of these tickets
|
|
|
|
|
|
|
|
|
|
// get_raw_transaction (#3145)
|
|
|
|
|
Request::Transaction(_hash) => {
|
|
|
|
|
unimplemented!("ReadStateService doesn't Transaction yet")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TODO: split the Request enum, then implement these new ReadRequests for lightwalletd
|
|
|
|
|
// as part of these tickets
|
|
|
|
|
|
|
|
|
|
// z_get_tree_state (#3156)
|
|
|
|
|
|
|
|
|
|
// depends on transparent address indexes (#3150)
|
|
|
|
|
// get_address_tx_ids (#3147)
|
|
|
|
|
// get_address_balance (#3157)
|
|
|
|
|
// get_address_utxos (#3158)
|
|
|
|
|
|
|
|
|
|
// Out of Scope
|
|
|
|
|
// TODO: delete when splitting the Request enum
|
|
|
|
|
|
2022-03-15 21:01:59 -07:00
|
|
|
// Use ChainTip instead.
|
|
|
|
|
Request::Tip => unreachable!("ReadStateService doesn't need to Tip"),
|
|
|
|
|
|
2022-03-11 05:58:22 -08:00
|
|
|
// These requests don't need better performance at the moment.
|
|
|
|
|
Request::FindBlockHashes {
|
|
|
|
|
known_blocks: _,
|
|
|
|
|
stop: _,
|
|
|
|
|
} => {
|
|
|
|
|
unreachable!("ReadStateService doesn't need to FindBlockHashes")
|
|
|
|
|
}
|
|
|
|
|
Request::FindBlockHeaders {
|
|
|
|
|
known_blocks: _,
|
|
|
|
|
stop: _,
|
|
|
|
|
} => {
|
|
|
|
|
unreachable!("ReadStateService doesn't need to FindBlockHeaders")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Some callers of this request need to wait for queued blocks.
|
|
|
|
|
Request::Depth(_hash) => unreachable!("ReadStateService could change depth behaviour"),
|
|
|
|
|
|
|
|
|
|
// This request needs to wait for queued blocks.
|
|
|
|
|
Request::BlockLocator => {
|
|
|
|
|
unreachable!("ReadStateService should not be used for block locators")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Impossible Requests
|
|
|
|
|
|
|
|
|
|
// The read-only service doesn't have the shared internal state
|
|
|
|
|
// needed to await UTXOs.
|
|
|
|
|
Request::AwaitUtxo(_outpoint) => unreachable!("ReadStateService can't await UTXOs"),
|
|
|
|
|
|
|
|
|
|
// The read-only service can't write.
|
|
|
|
|
Request::CommitBlock(_prepared) => unreachable!("ReadStateService can't commit blocks"),
|
|
|
|
|
Request::CommitFinalizedBlock(_finalized) => {
|
|
|
|
|
unreachable!("ReadStateService can't commit blocks")
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-09-09 17:51:08 -07:00
|
|
|
/// Initialize a state service from the provided [`Config`].
|
2022-03-11 05:58:22 -08:00
|
|
|
/// Returns a boxed state service, a read-only state service,
|
|
|
|
|
/// and receivers for state chain tip updates.
|
2020-09-09 17:13:58 -07:00
|
|
|
///
|
2020-11-17 15:26:21 -08:00
|
|
|
/// Each `network` has its own separate on-disk database.
|
2020-09-09 17:13:58 -07:00
|
|
|
///
|
2022-03-11 05:58:22 -08:00
|
|
|
/// To share access to the state, wrap the returned service in a `Buffer`,
|
|
|
|
|
/// or clone the returned [`ReadStateService`].
|
|
|
|
|
///
|
|
|
|
|
/// It's possible to construct multiple state services in the same application (as
|
2020-10-21 21:56:18 -07:00
|
|
|
/// long as they, e.g., use different storage locations), but doing so is
|
|
|
|
|
/// probably not what you want.
|
Reject connections from outdated peers (#2519)
* Simplify state service initialization in test
Use the test helper function to remove redundant code.
* Create `BestTipHeight` helper type
This type abstracts away the calculation of the best tip height based on
the finalized block height and the best non-finalized chain's tip.
* Add `best_tip_height` field to `StateService`
The receiver endpoint is currently ignored.
* Return receiver endpoint from service constructor
Make it available so that the best tip height can be watched.
* Update finalized height after finalizing blocks
After blocks from the queue are finalized and committed to disk, update
the finalized block height.
* Update best non-finalized height after validation
Update the value of the best non-finalized chain tip block height after
a new block is committed to the non-finalized state.
* Update finalized height after loading from disk
When `FinalizedState` is first created, it loads the state from
persistent storage, and the finalized tip height is updated. Therefore,
the `best_tip_height` must be notified of the initial value.
* Update the finalized height on checkpoint commit
When a checkpointed block is commited, it bypasses the non-finalized
state, so there's an extra place where the finalized height has to be
updated.
* Add `best_tip_height` to `Handshake` service
It can be configured using the `Builder::with_best_tip_height`. It's
currently not used, but it will be used to determine if a connection to
a remote peer should be rejected or not based on that peer's protocol
version.
* Require best tip height to init. `zebra_network`
Without it the handshake service can't properly enforce the minimum
network protocol version from peers. Zebrad obtains the best tip height
endpoint from `zebra_state`, and the test vectors simply use a dummy
endpoint that's fixed at the genesis height.
* Pass `best_tip_height` to proto. ver. negotiation
The protocol version negotiation code will reject connections to peers
if they are using an old protocol version. An old version is determined
based on the current known best chain tip height.
* Handle an optional height in `Version`
Fallback to the genesis height in `None` is specified.
* Reject connections to peers on old proto. versions
Avoid connecting to peers that are on protocol versions that don't
recognize a network update.
* Document why peers on old versions are rejected
Describe why it's a security issue above the check.
* Test if `BestTipHeight` starts with `None`
Check if initially there is no best tip height.
* Test if best tip height is max. of latest values
After applying a list of random updates where each one either sets the
finalized height or the non-finalized height, check that the best tip
height is the maximum of the most recently set finalized height and the
most recently set non-finalized height.
* Add `queue_and_commit_finalized` method
A small refactor to make testing easier. The handling of requests for
committing non-finalized and finalized blocks is now more consistent.
* Add `assert_block_can_be_validated` helper
Refactor to move into a separate method some assertions that are done
before a block is validated. This is to allow moving these assertions
more easily to simplify testing.
* Remove redundant PoW block assertion
It's also checked in
`zebra_state::service::check::block_is_contextually_valid`, and it was
getting in the way of tests that received a gossiped block before
finalizing enough blocks.
* Create a test strategy for test vector chain
Splits a chain loaded from the test vectors in two parts, containing the
blocks to finalize and the blocks to keep in the non-finalized state.
* Test committing blocks update best tip height
Create a mock blockchain state, with a chain of finalized blocks and a
chain of non-finalized blocks. Commit all the blocks appropriately, and
verify that the best tip height is updated.
Co-authored-by: teor <teor@riseup.net>
2021-08-08 16:52:52 -07:00
|
|
|
pub fn init(
|
|
|
|
|
config: Config,
|
|
|
|
|
network: Network,
|
2021-09-01 15:31:16 -07:00
|
|
|
) -> (
|
|
|
|
|
BoxService<Request, Response, BoxError>,
|
2022-03-11 05:58:22 -08:00
|
|
|
ReadStateService,
|
2021-09-01 15:31:16 -07:00
|
|
|
LatestChainTip,
|
|
|
|
|
ChainTipChange,
|
|
|
|
|
) {
|
2022-03-11 05:58:22 -08:00
|
|
|
let (state_service, read_only_state_service, latest_chain_tip, chain_tip_change) =
|
|
|
|
|
StateService::new(config, network);
|
2021-09-01 15:31:16 -07:00
|
|
|
|
|
|
|
|
(
|
|
|
|
|
BoxService::new(state_service),
|
2022-03-11 05:58:22 -08:00
|
|
|
read_only_state_service,
|
2021-09-01 15:31:16 -07:00
|
|
|
latest_chain_tip,
|
|
|
|
|
chain_tip_change,
|
|
|
|
|
)
|
2020-09-09 17:13:58 -07:00
|
|
|
}
|
2021-06-28 22:03:51 -07:00
|
|
|
|
2021-07-28 16:55:01 -07:00
|
|
|
/// Initialize a state service with an ephemeral [`Config`] and a buffer with a single slot.
|
|
|
|
|
///
|
|
|
|
|
/// This can be used to create a state service for testing. See also [`init`].
|
|
|
|
|
#[cfg(any(test, feature = "proptest-impl"))]
|
|
|
|
|
pub fn init_test(network: Network) -> Buffer<BoxService<Request, Response, BoxError>, Request> {
|
2022-03-11 05:58:22 -08:00
|
|
|
let (state_service, _, _, _) = StateService::new(Config::ephemeral(), network);
|
2021-07-28 16:55:01 -07:00
|
|
|
|
|
|
|
|
Buffer::new(BoxService::new(state_service), 1)
|
|
|
|
|
}
|
