a764c3b247
## Issue Addressed
NA
## Problem this PR addresses
There's an issue where Lighthouse is banning a lot of peers due to the following sequence of events:
1. Gossip block 0xabc arrives ~200ms early
- It is propagated across the network, with respect to [`MAXIMUM_GOSSIP_CLOCK_DISPARITY`](https://github.com/ethereum/eth2.0-specs/blob/v1.0.0/specs/phase0/p2p-interface.md#why-is-there-maximum_gossip_clock_disparity-when-validating-slot-ranges-of-messages-in-gossip-subnets).
- However, it is not imported to our database since the block is early.
2. Attestations for 0xabc arrive, but the block was not imported.
- The peer that sent the attestation is down-voted.
- Each unknown-block attestation causes a score loss of 1, the peer is banned at -100.
- When the peer is on an attestation subnet there can be hundreds of attestations, so the peer is banned quickly (before the missed block can be obtained via rpc).
## Potential solutions
I can think of three solutions to this:
1. Wait for attestation-queuing (#635) to arrive and solve this.
- Easy
- Not immediate fix.
- Whilst this would work, I don't think it's a perfect solution for this particular issue, rather (3) is better.
1. Allow importing blocks with a tolerance of `MAXIMUM_GOSSIP_CLOCK_DISPARITY`.
- Easy
- ~~I have implemented this, for now.~~
1. If a block is verified for gossip propagation (i.e., signature verified) and it's within `MAXIMUM_GOSSIP_CLOCK_DISPARITY`, then queue it to be processed at the start of the appropriate slot.
- More difficult
- Feels like the best solution, I will try to implement this.
**This PR takes approach (3).**
## Changes included
- Implement the `block_delay_queue`, based upon a [`DelayQueue`](https://docs.rs/tokio-util/0.6.3/tokio_util/time/delay_queue/struct.DelayQueue.html) which can store blocks until it's time to import them.
- Add a new `DelayedImportBlock` variant to the `beacon_processor::WorkEvent` enum to handle this new event.
- In the `BeaconProcessor`, refactor a `tokio::select!` to a struct with an explicit `Stream` implementation. I experienced some issues with `tokio::select!` in the block delay queue and I also found it hard to debug. I think this explicit implementation is nicer and functionally equivalent (apart from the fact that `tokio::select!` randomly chooses futures to poll, whereas now we're deterministic).
- Add a testing framework to the `beacon_processor` module that tests this new block delay logic. I also tested a handful of other operations in the beacon processor (attns, slashings, exits) since it was super easy to copy-pasta the code from the `http_api` tester.
- To implement these tests I added the concept of an optional `work_journal_tx` to the `BeaconProcessor` which will spit out a log of events. I used this in the tests to ensure that things were happening as I expect.
- The tests are a little racey, but it's hard to avoid that when testing timing-based code. If we see CI failures I can revise. I haven't observed *any* failures due to races on my machine or on CI yet.
- To assist with testing I allowed for directly setting the time on the `ManualSlotClock`.
- I gave the `beacon_processor::Worker` a `Toolbox` for two reasons; (a) it avoids changing tons of function sigs when you want to pass a new object to the worker and (b) it seemed cute.
362 lines
12 KiB
Rust
362 lines
12 KiB
Rust
use super::SlotClock;
|
|
use parking_lot::RwLock;
|
|
use std::convert::TryInto;
|
|
use std::time::Duration;
|
|
use types::Slot;
|
|
|
|
/// Determines the present slot based upon a manually-incremented UNIX timestamp.
|
|
pub struct ManualSlotClock {
|
|
genesis_slot: Slot,
|
|
/// Duration from UNIX epoch to genesis.
|
|
genesis_duration: Duration,
|
|
/// Duration from UNIX epoch to right now.
|
|
current_time: RwLock<Duration>,
|
|
/// The length of each slot.
|
|
slot_duration: Duration,
|
|
}
|
|
|
|
impl Clone for ManualSlotClock {
|
|
fn clone(&self) -> Self {
|
|
ManualSlotClock {
|
|
genesis_slot: self.genesis_slot,
|
|
genesis_duration: self.genesis_duration,
|
|
current_time: RwLock::new(*self.current_time.read()),
|
|
slot_duration: self.slot_duration,
|
|
}
|
|
}
|
|
}
|
|
|
|
impl ManualSlotClock {
|
|
pub fn set_slot(&self, slot: u64) {
|
|
let slots_since_genesis = slot
|
|
.checked_sub(self.genesis_slot.as_u64())
|
|
.expect("slot must be post-genesis")
|
|
.try_into()
|
|
.expect("slot must fit within a u32");
|
|
*self.current_time.write() =
|
|
self.genesis_duration + self.slot_duration * slots_since_genesis;
|
|
}
|
|
|
|
pub fn set_current_time(&self, duration: Duration) {
|
|
*self.current_time.write() = duration;
|
|
}
|
|
|
|
pub fn advance_slot(&self) {
|
|
self.set_slot(self.now().unwrap().as_u64() + 1)
|
|
}
|
|
|
|
pub fn genesis_duration(&self) -> &Duration {
|
|
&self.genesis_duration
|
|
}
|
|
|
|
/// Returns the duration from `now` until the start of `slot`.
|
|
///
|
|
/// Will return `None` if `now` is later than the start of `slot`.
|
|
pub fn duration_to_slot(&self, slot: Slot, now: Duration) -> Option<Duration> {
|
|
self.start_of(slot)?.checked_sub(now)
|
|
}
|
|
|
|
/// Returns the duration between `now` and the start of the next slot.
|
|
pub fn duration_to_next_slot_from(&self, now: Duration) -> Option<Duration> {
|
|
if now < self.genesis_duration {
|
|
self.genesis_duration.checked_sub(now)
|
|
} else {
|
|
self.duration_to_slot(self.slot_of(now)? + 1, now)
|
|
}
|
|
}
|
|
|
|
/// Returns the duration between `now` and the start of the next epoch.
|
|
pub fn duration_to_next_epoch_from(
|
|
&self,
|
|
now: Duration,
|
|
slots_per_epoch: u64,
|
|
) -> Option<Duration> {
|
|
if now < self.genesis_duration {
|
|
self.genesis_duration.checked_sub(now)
|
|
} else {
|
|
let next_epoch_start_slot =
|
|
(self.slot_of(now)?.epoch(slots_per_epoch) + 1).start_slot(slots_per_epoch);
|
|
|
|
self.duration_to_slot(next_epoch_start_slot, now)
|
|
}
|
|
}
|
|
}
|
|
|
|
impl SlotClock for ManualSlotClock {
|
|
fn new(genesis_slot: Slot, genesis_duration: Duration, slot_duration: Duration) -> Self {
|
|
if slot_duration.as_millis() == 0 {
|
|
panic!("ManualSlotClock cannot have a < 1ms slot duration");
|
|
}
|
|
|
|
Self {
|
|
genesis_slot,
|
|
current_time: RwLock::new(genesis_duration),
|
|
genesis_duration,
|
|
slot_duration,
|
|
}
|
|
}
|
|
|
|
fn now(&self) -> Option<Slot> {
|
|
self.slot_of(*self.current_time.read())
|
|
}
|
|
|
|
fn is_prior_to_genesis(&self) -> Option<bool> {
|
|
Some(*self.current_time.read() < self.genesis_duration)
|
|
}
|
|
|
|
fn now_duration(&self) -> Option<Duration> {
|
|
Some(*self.current_time.read())
|
|
}
|
|
|
|
fn slot_of(&self, now: Duration) -> Option<Slot> {
|
|
let genesis = self.genesis_duration;
|
|
|
|
if now >= genesis {
|
|
let since_genesis = now
|
|
.checked_sub(genesis)
|
|
.expect("Control flow ensures now is greater than or equal to genesis");
|
|
let slot =
|
|
Slot::from((since_genesis.as_millis() / self.slot_duration.as_millis()) as u64);
|
|
Some(slot + self.genesis_slot)
|
|
} else {
|
|
None
|
|
}
|
|
}
|
|
|
|
fn duration_to_next_slot(&self) -> Option<Duration> {
|
|
self.duration_to_next_slot_from(*self.current_time.read())
|
|
}
|
|
|
|
fn duration_to_next_epoch(&self, slots_per_epoch: u64) -> Option<Duration> {
|
|
self.duration_to_next_epoch_from(*self.current_time.read(), slots_per_epoch)
|
|
}
|
|
|
|
fn slot_duration(&self) -> Duration {
|
|
self.slot_duration
|
|
}
|
|
|
|
fn duration_to_slot(&self, slot: Slot) -> Option<Duration> {
|
|
self.duration_to_slot(slot, *self.current_time.read())
|
|
}
|
|
|
|
/// Returns the duration between UNIX epoch and the start of `slot`.
|
|
fn start_of(&self, slot: Slot) -> Option<Duration> {
|
|
let slot = slot
|
|
.as_u64()
|
|
.checked_sub(self.genesis_slot.as_u64())?
|
|
.try_into()
|
|
.ok()?;
|
|
let unadjusted_slot_duration = self.slot_duration.checked_mul(slot)?;
|
|
|
|
self.genesis_duration.checked_add(unadjusted_slot_duration)
|
|
}
|
|
|
|
fn genesis_slot(&self) -> Slot {
|
|
self.genesis_slot
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::*;
|
|
|
|
#[test]
|
|
fn test_slot_now() {
|
|
let clock = ManualSlotClock::new(
|
|
Slot::new(10),
|
|
Duration::from_secs(0),
|
|
Duration::from_secs(1),
|
|
);
|
|
assert_eq!(clock.now(), Some(Slot::new(10)));
|
|
clock.set_slot(123);
|
|
assert_eq!(clock.now(), Some(Slot::new(123)));
|
|
}
|
|
|
|
#[test]
|
|
fn test_is_prior_to_genesis() {
|
|
let genesis_secs = 1;
|
|
|
|
let clock = ManualSlotClock::new(
|
|
Slot::new(0),
|
|
Duration::from_secs(genesis_secs),
|
|
Duration::from_secs(1),
|
|
);
|
|
|
|
*clock.current_time.write() = Duration::from_secs(genesis_secs - 1);
|
|
assert!(clock.is_prior_to_genesis().unwrap(), "prior to genesis");
|
|
|
|
*clock.current_time.write() = Duration::from_secs(genesis_secs);
|
|
assert!(!clock.is_prior_to_genesis().unwrap(), "at genesis");
|
|
|
|
*clock.current_time.write() = Duration::from_secs(genesis_secs + 1);
|
|
assert!(!clock.is_prior_to_genesis().unwrap(), "after genesis");
|
|
}
|
|
|
|
#[test]
|
|
fn start_of() {
|
|
// Genesis slot and genesis duration 0.
|
|
let clock =
|
|
ManualSlotClock::new(Slot::new(0), Duration::from_secs(0), Duration::from_secs(1));
|
|
assert_eq!(clock.start_of(Slot::new(0)), Some(Duration::from_secs(0)));
|
|
assert_eq!(clock.start_of(Slot::new(1)), Some(Duration::from_secs(1)));
|
|
assert_eq!(clock.start_of(Slot::new(2)), Some(Duration::from_secs(2)));
|
|
|
|
// Genesis slot 1 and genesis duration 10.
|
|
let clock = ManualSlotClock::new(
|
|
Slot::new(0),
|
|
Duration::from_secs(10),
|
|
Duration::from_secs(1),
|
|
);
|
|
assert_eq!(clock.start_of(Slot::new(0)), Some(Duration::from_secs(10)));
|
|
assert_eq!(clock.start_of(Slot::new(1)), Some(Duration::from_secs(11)));
|
|
assert_eq!(clock.start_of(Slot::new(2)), Some(Duration::from_secs(12)));
|
|
|
|
// Genesis slot 1 and genesis duration 0.
|
|
let clock =
|
|
ManualSlotClock::new(Slot::new(1), Duration::from_secs(0), Duration::from_secs(1));
|
|
assert_eq!(clock.start_of(Slot::new(0)), None);
|
|
assert_eq!(clock.start_of(Slot::new(1)), Some(Duration::from_secs(0)));
|
|
assert_eq!(clock.start_of(Slot::new(2)), Some(Duration::from_secs(1)));
|
|
|
|
// Genesis slot 1 and genesis duration 10.
|
|
let clock = ManualSlotClock::new(
|
|
Slot::new(1),
|
|
Duration::from_secs(10),
|
|
Duration::from_secs(1),
|
|
);
|
|
assert_eq!(clock.start_of(Slot::new(0)), None);
|
|
assert_eq!(clock.start_of(Slot::new(1)), Some(Duration::from_secs(10)));
|
|
assert_eq!(clock.start_of(Slot::new(2)), Some(Duration::from_secs(11)));
|
|
}
|
|
|
|
#[test]
|
|
fn test_duration_to_next_slot() {
|
|
let slot_duration = Duration::from_secs(1);
|
|
|
|
// Genesis time is now.
|
|
let clock = ManualSlotClock::new(Slot::new(0), Duration::from_secs(0), slot_duration);
|
|
*clock.current_time.write() = Duration::from_secs(0);
|
|
assert_eq!(clock.duration_to_next_slot(), Some(Duration::from_secs(1)));
|
|
|
|
// Genesis time is in the future.
|
|
let clock = ManualSlotClock::new(Slot::new(0), Duration::from_secs(10), slot_duration);
|
|
*clock.current_time.write() = Duration::from_secs(0);
|
|
assert_eq!(clock.duration_to_next_slot(), Some(Duration::from_secs(10)));
|
|
|
|
// Genesis time is in the past.
|
|
let clock = ManualSlotClock::new(Slot::new(0), Duration::from_secs(0), slot_duration);
|
|
*clock.current_time.write() = Duration::from_secs(10);
|
|
assert_eq!(clock.duration_to_next_slot(), Some(Duration::from_secs(1)));
|
|
}
|
|
|
|
#[test]
|
|
fn test_duration_to_next_epoch() {
|
|
let slot_duration = Duration::from_secs(1);
|
|
let slots_per_epoch = 32;
|
|
|
|
// Genesis time is now.
|
|
let clock = ManualSlotClock::new(Slot::new(0), Duration::from_secs(0), slot_duration);
|
|
*clock.current_time.write() = Duration::from_secs(0);
|
|
assert_eq!(
|
|
clock.duration_to_next_epoch(slots_per_epoch),
|
|
Some(Duration::from_secs(32))
|
|
);
|
|
|
|
// Genesis time is in the future.
|
|
let clock = ManualSlotClock::new(Slot::new(0), Duration::from_secs(10), slot_duration);
|
|
*clock.current_time.write() = Duration::from_secs(0);
|
|
assert_eq!(
|
|
clock.duration_to_next_epoch(slots_per_epoch),
|
|
Some(Duration::from_secs(10))
|
|
);
|
|
|
|
// Genesis time is in the past.
|
|
let clock = ManualSlotClock::new(Slot::new(0), Duration::from_secs(0), slot_duration);
|
|
*clock.current_time.write() = Duration::from_secs(10);
|
|
assert_eq!(
|
|
clock.duration_to_next_epoch(slots_per_epoch),
|
|
Some(Duration::from_secs(22))
|
|
);
|
|
|
|
// Genesis time is in the past.
|
|
let clock = ManualSlotClock::new(
|
|
Slot::new(0),
|
|
Duration::from_secs(0),
|
|
Duration::from_secs(12),
|
|
);
|
|
*clock.current_time.write() = Duration::from_secs(72_333);
|
|
assert!(clock.duration_to_next_epoch(slots_per_epoch).is_some(),);
|
|
}
|
|
|
|
#[test]
|
|
fn test_tolerance() {
|
|
let clock = ManualSlotClock::new(
|
|
Slot::new(0),
|
|
Duration::from_secs(10),
|
|
Duration::from_secs(1),
|
|
);
|
|
|
|
// Set clock to the 0'th slot.
|
|
*clock.current_time.write() = Duration::from_secs(10);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_future_tolerance(Duration::from_secs(0))
|
|
.unwrap(),
|
|
Slot::new(0),
|
|
"future tolerance of zero should return current slot"
|
|
);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_past_tolerance(Duration::from_secs(0))
|
|
.unwrap(),
|
|
Slot::new(0),
|
|
"past tolerance of zero should return current slot"
|
|
);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_future_tolerance(Duration::from_millis(10))
|
|
.unwrap(),
|
|
Slot::new(0),
|
|
"insignificant future tolerance should return current slot"
|
|
);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_past_tolerance(Duration::from_millis(10))
|
|
.unwrap(),
|
|
Slot::new(0),
|
|
"past tolerance that precedes genesis should return genesis slot"
|
|
);
|
|
|
|
// Set clock to part-way through the 1st slot.
|
|
*clock.current_time.write() = Duration::from_millis(11_200);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_future_tolerance(Duration::from_secs(0))
|
|
.unwrap(),
|
|
Slot::new(1),
|
|
"future tolerance of zero should return current slot"
|
|
);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_past_tolerance(Duration::from_secs(0))
|
|
.unwrap(),
|
|
Slot::new(1),
|
|
"past tolerance of zero should return current slot"
|
|
);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_future_tolerance(Duration::from_millis(800))
|
|
.unwrap(),
|
|
Slot::new(2),
|
|
"significant future tolerance should return next slot"
|
|
);
|
|
assert_eq!(
|
|
clock
|
|
.now_with_past_tolerance(Duration::from_millis(201))
|
|
.unwrap(),
|
|
Slot::new(0),
|
|
"significant past tolerance should return previous slot"
|
|
);
|
|
}
|
|
}
|