Merge pull request #6107 from filecoin-project/feat/checkpoint-sync

feat: allow checkpointing to forks
2021-04-29 16:30:52 -07:00 · 2021-04-29 16:30:52 -07:00 · eb10918470
commit eb10918470
parent 4db800473f 8f309b214b
6 changed files with 271 additions and 91 deletions
--- a/chain/checkpoint.go
+++ b/chain/checkpoint.go
@ -1,81 +1,57 @@
 package chain

 import (
-	"encoding/json"
+	"context"

 	"github.com/filecoin-project/lotus/chain/types"

-	"github.com/filecoin-project/lotus/node/modules/dtypes"
-	"github.com/ipfs/go-datastore"
 	"golang.org/x/xerrors"
 )

-var CheckpointKey = datastore.NewKey("/chain/checks")
-
-func loadCheckpoint(ds dtypes.MetadataDS) (types.TipSetKey, error) {
-	haveChks, err := ds.Has(CheckpointKey)
-	if err != nil {
-		return types.EmptyTSK, err
-	}
-
-	if !haveChks {
-		return types.EmptyTSK, nil
-	}
-
-	tskBytes, err := ds.Get(CheckpointKey)
-	if err != nil {
-		return types.EmptyTSK, err
-	}
-
-	var tsk types.TipSetKey
-	err = json.Unmarshal(tskBytes, &tsk)
-	if err != nil {
-		return types.EmptyTSK, err
-	}
-
-	return tsk, err
-}
-
-func (syncer *Syncer) SetCheckpoint(tsk types.TipSetKey) error {
+func (syncer *Syncer) SyncCheckpoint(ctx context.Context, tsk types.TipSetKey) error {
 	if tsk == types.EmptyTSK {
 		return xerrors.Errorf("called with empty tsk")
 	}

-	syncer.checkptLk.Lock()
-	defer syncer.checkptLk.Unlock()
-
 	ts, err := syncer.ChainStore().LoadTipSet(tsk)
 	if err != nil {
-		return xerrors.Errorf("cannot find tipset: %w", err)
+		tss, err := syncer.Exchange.GetBlocks(ctx, tsk, 1)
+		if err != nil {
+			return xerrors.Errorf("failed to fetch tipset: %w", err)
+		} else if len(tss) != 1 {
+			return xerrors.Errorf("expected 1 tipset, got %d", len(tss))
+		}
+		ts = tss[0]
 	}

-	hts := syncer.ChainStore().GetHeaviestTipSet()
-	anc, err := syncer.ChainStore().IsAncestorOf(ts, hts)
-	if err != nil {
-		return xerrors.Errorf("cannot determine whether checkpoint tipset is in main-chain: %w", err)
+	if err := syncer.switchChain(ctx, ts); err != nil {
+		return xerrors.Errorf("failed to switch chain when syncing checkpoint: %w", err)
 	}

-	if !hts.Equals(ts) && !anc {
-		return xerrors.Errorf("cannot mark tipset as checkpoint, since it isn't in the main-chain: %w", err)
+	if err := syncer.ChainStore().SetCheckpoint(ts); err != nil {
+		return xerrors.Errorf("failed to set the chain checkpoint: %w", err)
 	}

-	tskBytes, err := json.Marshal(tsk)
-	if err != nil {
-		return err
-	}
-
-	err = syncer.ds.Put(CheckpointKey, tskBytes)
-	if err != nil {
-		return err
-	}
-
-	syncer.checkpt = tsk
-
 	return nil
 }

-func (syncer *Syncer) GetCheckpoint() types.TipSetKey {
-	syncer.checkptLk.Lock()
-	defer syncer.checkptLk.Unlock()
-	return syncer.checkpt
+func (syncer *Syncer) switchChain(ctx context.Context, ts *types.TipSet) error {
+	hts := syncer.ChainStore().GetHeaviestTipSet()
+	if hts.Equals(ts) {
+		return nil
+	}
+
+	if anc, err := syncer.store.IsAncestorOf(ts, hts); err == nil && anc {
+		return nil
+	}
+
+	// Otherwise, sync the chain and set the head.
+	if err := syncer.collectChain(ctx, ts, hts, true); err != nil {
+		return xerrors.Errorf("failed to collect chain for checkpoint: %w", err)
+	}
+
+	if err := syncer.ChainStore().SetHead(ts); err != nil {
+		return xerrors.Errorf("failed to set the chain head: %w", err)
+	}
+	return nil
 }
--- a/chain/store/checkpoint_test.go
+++ b/chain/store/checkpoint_test.go
@ -0,0 +1,89 @@
+package store_test
+
+import (
+	"context"
+	"testing"
+
+	"github.com/stretchr/testify/require"
+
+	"github.com/filecoin-project/lotus/chain/gen"
+)
+
+func TestChainCheckpoint(t *testing.T) {
+	cg, err := gen.NewGenerator()
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	// Let the first miner mine some blocks.
+	last := cg.CurTipset.TipSet()
+	for i := 0; i < 4; i++ {
+		ts, err := cg.NextTipSetFromMiners(last, cg.Miners[:1])
+		require.NoError(t, err)
+
+		last = ts.TipSet.TipSet()
+	}
+
+	cs := cg.ChainStore()
+
+	checkpoint := last
+	checkpointParents, err := cs.GetTipSetFromKey(checkpoint.Parents())
+	require.NoError(t, err)
+
+	// Set the head to the block before the checkpoint.
+	err = cs.SetHead(checkpointParents)
+	require.NoError(t, err)
+
+	// Verify it worked.
+	head := cs.GetHeaviestTipSet()
+	require.True(t, head.Equals(checkpointParents))
+
+	// Try to set the checkpoint in the future, it should fail.
+	err = cs.SetCheckpoint(checkpoint)
+	require.Error(t, err)
+
+	// Then move the head back.
+	err = cs.SetHead(checkpoint)
+	require.NoError(t, err)
+
+	// Verify it worked.
+	head = cs.GetHeaviestTipSet()
+	require.True(t, head.Equals(checkpoint))
+
+	// And checkpoint it.
+	err = cs.SetCheckpoint(checkpoint)
+	require.NoError(t, err)
+
+	// Let the second miner miner mine a fork
+	last = checkpointParents
+	for i := 0; i < 4; i++ {
+		ts, err := cg.NextTipSetFromMiners(last, cg.Miners[1:])
+		require.NoError(t, err)
+
+		last = ts.TipSet.TipSet()
+	}
+
+	// See if the chain will take the fork, it shouldn't.
+	err = cs.MaybeTakeHeavierTipSet(context.Background(), last)
+	require.NoError(t, err)
+	head = cs.GetHeaviestTipSet()
+	require.True(t, head.Equals(checkpoint))
+
+	// Remove the checkpoint.
+	err = cs.RemoveCheckpoint()
+	require.NoError(t, err)
+
+	// Now switch to the other fork.
+	err = cs.MaybeTakeHeavierTipSet(context.Background(), last)
+	require.NoError(t, err)
+	head = cs.GetHeaviestTipSet()
+	require.True(t, head.Equals(last))
+
+	// Setting a checkpoint on the other fork should fail.
+	err = cs.SetCheckpoint(checkpoint)
+	require.Error(t, err)
+
+	// Setting a checkpoint on this fork should succeed.
+	err = cs.SetCheckpoint(checkpointParents)
+	require.NoError(t, err)
+}
--- a/chain/store/store.go
+++ b/chain/store/store.go
@ -54,8 +54,11 @@ import (

 var log = logging.Logger("chainstore")

-var chainHeadKey = dstore.NewKey("head")
-var blockValidationCacheKeyPrefix = dstore.NewKey("blockValidation")
+var (
+	chainHeadKey                  = dstore.NewKey("head")
+	checkpointKey                 = dstore.NewKey("/chain/checks")
+	blockValidationCacheKeyPrefix = dstore.NewKey("blockValidation")
+)

 var DefaultTipSetCacheSize = 8192
 var DefaultMsgMetaCacheSize = 2048
@ -115,6 +118,7 @@ type ChainStore struct {

 	heaviestLk sync.RWMutex
 	heaviest   *types.TipSet
+	checkpoint *types.TipSet

 	bestTips *pubsub.PubSub
 	pubLk    sync.Mutex
@ -215,6 +219,15 @@ func (cs *ChainStore) Close() error {
 }

 func (cs *ChainStore) Load() error {
+	if err := cs.loadHead(); err != nil {
+		return err
+	}
+	if err := cs.loadCheckpoint(); err != nil {
+		return err
+	}
+	return nil
+}
+func (cs *ChainStore) loadHead() error {
 	head, err := cs.metadataDs.Get(chainHeadKey)
 	if err == dstore.ErrNotFound {
 		log.Warn("no previous chain state found")
@ -239,6 +252,31 @@ func (cs *ChainStore) Load() error {
 	return nil
 }

+func (cs *ChainStore) loadCheckpoint() error {
+	tskBytes, err := cs.metadataDs.Get(checkpointKey)
+	if err == dstore.ErrNotFound {
+		return nil
+	}
+	if err != nil {
+		return xerrors.Errorf("failed to load checkpoint from datastore: %w", err)
+	}
+
+	var tsk types.TipSetKey
+	err = json.Unmarshal(tskBytes, &tsk)
+	if err != nil {
+		return err
+	}
+
+	ts, err := cs.LoadTipSet(tsk)
+	if err != nil {
+		return xerrors.Errorf("loading tipset: %w", err)
+	}
+
+	cs.checkpoint = ts
+
+	return nil
+}
+
 func (cs *ChainStore) writeHead(ts *types.TipSet) error {
 	data, err := json.Marshal(ts.Cids())
 	if err != nil {
@ -439,6 +477,11 @@ func (cs *ChainStore) exceedsForkLength(synced, external *types.TipSet) (bool, e
 			return false, nil
 		}

+		// Now check to see if we've walked back to the checkpoint.
+		if synced.Equals(cs.checkpoint) {
+			return true, nil
+		}
+
 		// If we didn't, go back *one* tipset on the `synced` side (incrementing
 		// the `forkLength`).
 		if synced.Height() == 0 {
@ -467,6 +510,9 @@ func (cs *ChainStore) ForceHeadSilent(_ context.Context, ts *types.TipSet) error

 	cs.heaviestLk.Lock()
 	defer cs.heaviestLk.Unlock()
+	if err := cs.removeCheckpoint(); err != nil {
+		return err
+	}
 	cs.heaviest = ts

 	err := cs.writeHead(ts)
@ -642,13 +688,80 @@ func FlushValidationCache(ds datastore.Batching) error {
 }

 // SetHead sets the chainstores current 'best' head node.
-// This should only be called if something is broken and needs fixing
+// This should only be called if something is broken and needs fixing.
+//
+// This function will bypass and remove any checkpoints.
 func (cs *ChainStore) SetHead(ts *types.TipSet) error {
 	cs.heaviestLk.Lock()
 	defer cs.heaviestLk.Unlock()
+	if err := cs.removeCheckpoint(); err != nil {
+		return err
+	}
 	return cs.takeHeaviestTipSet(context.TODO(), ts)
 }

+// RemoveCheckpoint removes the current checkpoint.
+func (cs *ChainStore) RemoveCheckpoint() error {
+	cs.heaviestLk.Lock()
+	defer cs.heaviestLk.Unlock()
+	return cs.removeCheckpoint()
+}
+
+func (cs *ChainStore) removeCheckpoint() error {
+	if err := cs.metadataDs.Delete(checkpointKey); err != nil {
+		return err
+	}
+	cs.checkpoint = nil
+	return nil
+}
+
+// SetCheckpoint will set a checkpoint past which the chainstore will not allow forks.
+//
+// NOTE: Checkpoints cannot be set beyond ForkLengthThreshold epochs in the past.
+func (cs *ChainStore) SetCheckpoint(ts *types.TipSet) error {
+	tskBytes, err := json.Marshal(ts.Key())
+	if err != nil {
+		return err
+	}
+
+	cs.heaviestLk.Lock()
+	defer cs.heaviestLk.Unlock()
+
+	if ts.Height() > cs.heaviest.Height() {
+		return xerrors.Errorf("cannot set a checkpoint in the future")
+	}
+
+	// Otherwise, this operation could get _very_ expensive.
+	if cs.heaviest.Height()-ts.Height() > build.ForkLengthThreshold {
+		return xerrors.Errorf("cannot set a checkpoint before the fork threshold")
+	}
+
+	if !ts.Equals(cs.heaviest) {
+		anc, err := cs.IsAncestorOf(ts, cs.heaviest)
+		if err != nil {
+			return xerrors.Errorf("cannot determine whether checkpoint tipset is in main-chain: %w", err)
+		}
+
+		if !anc {
+			return xerrors.Errorf("cannot mark tipset as checkpoint, since it isn't in the main-chain: %w", err)
+		}
+	}
+	err = cs.metadataDs.Put(checkpointKey, tskBytes)
+	if err != nil {
+		return err
+	}
+
+	cs.checkpoint = ts
+	return nil
+}
+
+func (cs *ChainStore) GetCheckpoint() *types.TipSet {
+	cs.heaviestLk.RLock()
+	chkpt := cs.checkpoint
+	cs.heaviestLk.RUnlock()
+	return chkpt
+}
+
 // Contains returns whether our BlockStore has all blocks in the supplied TipSet.
 func (cs *ChainStore) Contains(ts *types.TipSet) (bool, error) {
 	for _, c := range ts.Cids() {
--- a/chain/sync.go
+++ b/chain/sync.go
@ -131,10 +131,6 @@ type Syncer struct {

 	tickerCtxCancel context.CancelFunc

-	checkptLk sync.Mutex
-
-	checkpt types.TipSetKey
-
 	ds dtypes.MetadataDS
 }

@ -152,14 +148,8 @@ func NewSyncer(ds dtypes.MetadataDS, sm *stmgr.StateManager, exchange exchange.C
 		return nil, err
 	}

-	cp, err := loadCheckpoint(ds)
-	if err != nil {
-		return nil, xerrors.Errorf("error loading mpool config: %w", err)
-	}
-
 	s := &Syncer{
 		ds:             ds,
-		checkpt:        cp,
 		beacon:         beacon,
 		bad:            NewBadBlockCache(),
 		Genesis:        gent,
@ -561,7 +551,7 @@ func (syncer *Syncer) Sync(ctx context.Context, maybeHead *types.TipSet) error {
 		return nil
 	}

-	if err := syncer.collectChain(ctx, maybeHead, hts); err != nil {
+	if err := syncer.collectChain(ctx, maybeHead, hts, false); err != nil {
 		span.AddAttributes(trace.StringAttribute("col_error", err.Error()))
 		span.SetStatus(trace.Status{
 			Code:    13,
@ -1247,7 +1237,7 @@ func extractSyncState(ctx context.Context) *SyncerState {
 //
 // All throughout the process, we keep checking if the received blocks are in
 // the deny list, and short-circuit the process if so.
-func (syncer *Syncer) collectHeaders(ctx context.Context, incoming *types.TipSet, known *types.TipSet) ([]*types.TipSet, error) {
+func (syncer *Syncer) collectHeaders(ctx context.Context, incoming *types.TipSet, known *types.TipSet, ignoreCheckpoint bool) ([]*types.TipSet, error) {
 	ctx, span := trace.StartSpan(ctx, "collectHeaders")
 	defer span.End()
 	ss := extractSyncState(ctx)
@ -1416,7 +1406,7 @@ loop:

 	// We have now ascertained that this is *not* a 'fast forward'
 	log.Warnf("(fork detected) synced header chain (%s - %d) does not link to our best block (%s - %d)", incoming.Cids(), incoming.Height(), known.Cids(), known.Height())
-	fork, err := syncer.syncFork(ctx, base, known)
+	fork, err := syncer.syncFork(ctx, base, known, ignoreCheckpoint)
 	if err != nil {
 		if xerrors.Is(err, ErrForkTooLong) || xerrors.Is(err, ErrForkCheckpoint) {
 			// TODO: we're marking this block bad in the same way that we mark invalid blocks bad. Maybe distinguish?
@ -1442,11 +1432,14 @@ var ErrForkCheckpoint = fmt.Errorf("fork would require us to diverge from checkp
 // If the fork is too long (build.ForkLengthThreshold), or would cause us to diverge from the checkpoint (ErrForkCheckpoint),
 // we add the entire subchain to the denylist. Else, we find the common ancestor, and add the missing chain
 // fragment until the fork point to the returned []TipSet.
-func (syncer *Syncer) syncFork(ctx context.Context, incoming *types.TipSet, known *types.TipSet) ([]*types.TipSet, error) {
+func (syncer *Syncer) syncFork(ctx context.Context, incoming *types.TipSet, known *types.TipSet, ignoreCheckpoint bool) ([]*types.TipSet, error) {

-	chkpt := syncer.GetCheckpoint()
-	if known.Key() == chkpt {
-		return nil, ErrForkCheckpoint
+	var chkpt *types.TipSet
+	if !ignoreCheckpoint {
+		chkpt = syncer.store.GetCheckpoint()
+		if known.Equals(chkpt) {
+			return nil, ErrForkCheckpoint
+		}
 	}

 	// TODO: Does this mean we always ask for ForkLengthThreshold blocks from the network, even if we just need, like, 2? Yes.
@ -1488,7 +1481,7 @@ func (syncer *Syncer) syncFork(ctx context.Context, incoming *types.TipSet, know
 			}

 			// We will be forking away from nts, check that it isn't checkpointed
-			if nts.Key() == chkpt {
+			if nts.Equals(chkpt) {
 				return nil, ErrForkCheckpoint
 			}

@ -1699,14 +1692,14 @@ func persistMessages(ctx context.Context, bs bstore.Blockstore, bst *exchange.Co
 //
 //  3. StageMessages: having acquired the headers and found a common tipset,
 //     we then move forward, requesting the full blocks, including the messages.
-func (syncer *Syncer) collectChain(ctx context.Context, ts *types.TipSet, hts *types.TipSet) error {
+func (syncer *Syncer) collectChain(ctx context.Context, ts *types.TipSet, hts *types.TipSet, ignoreCheckpoint bool) error {
 	ctx, span := trace.StartSpan(ctx, "collectChain")
 	defer span.End()
 	ss := extractSyncState(ctx)

 	ss.Init(hts, ts)

-	headers, err := syncer.collectHeaders(ctx, ts, hts)
+	headers, err := syncer.collectHeaders(ctx, ts, hts, ignoreCheckpoint)
 	if err != nil {
 		ss.Error(err)
 		return err
--- a/chain/sync_test.go
+++ b/chain/sync_test.go
@ -346,12 +346,15 @@ func (tu *syncTestUtil) checkpointTs(node int, tsk types.TipSetKey) {
 	require.NoError(tu.t, tu.nds[node].SyncCheckpoint(context.TODO(), tsk))
 }

+func (tu *syncTestUtil) nodeHasTs(node int, tsk types.TipSetKey) bool {
+	_, err := tu.nds[node].ChainGetTipSet(context.TODO(), tsk)
+	return err == nil
+}
+
 func (tu *syncTestUtil) waitUntilNodeHasTs(node int, tsk types.TipSetKey) {
-	for {
-		_, err := tu.nds[node].ChainGetTipSet(context.TODO(), tsk)
-		if err != nil {
-			break
-		}
+	for !tu.nodeHasTs(node, tsk) {
+		// Time to allow for syncing and validation
+		time.Sleep(10 * time.Millisecond)
 	}

 	// Time to allow for syncing and validation
@ -751,8 +754,6 @@ func TestSyncInputs(t *testing.T) {
 }

 func TestSyncCheckpointHead(t *testing.T) {
-	t.Skip("flaky")
-
 	H := 10
 	tu := prepSyncTest(t, H)

@ -790,13 +791,16 @@ func TestSyncCheckpointHead(t *testing.T) {
 	tu.connect(p1, p2)
 	tu.waitUntilNodeHasTs(p1, b.TipSet().Key())
 	p1Head := tu.getHead(p1)
-	require.Equal(tu.t, p1Head, a.TipSet())
+	require.True(tu.t, p1Head.Equals(a.TipSet()))
 	tu.assertBad(p1, b.TipSet())
+
+	// Should be able to switch forks.
+	tu.checkpointTs(p1, b.TipSet().Key())
+	p1Head = tu.getHead(p1)
+	require.True(tu.t, p1Head.Equals(b.TipSet()))
 }

 func TestSyncCheckpointEarlierThanHead(t *testing.T) {
-	t.Skip("flaky")
-
 	H := 10
 	tu := prepSyncTest(t, H)

@ -834,6 +838,11 @@ func TestSyncCheckpointEarlierThanHead(t *testing.T) {
 	tu.connect(p1, p2)
 	tu.waitUntilNodeHasTs(p1, b.TipSet().Key())
 	p1Head := tu.getHead(p1)
-	require.Equal(tu.t, p1Head, a.TipSet())
+	require.True(tu.t, p1Head.Equals(a.TipSet()))
 	tu.assertBad(p1, b.TipSet())
+
+	// Should be able to switch forks.
+	tu.checkpointTs(p1, b.TipSet().Key())
+	p1Head = tu.getHead(p1)
+	require.True(tu.t, p1Head.Equals(b.TipSet()))
 }
--- a/node/impl/full/sync.go
+++ b/node/impl/full/sync.go
@ -104,7 +104,7 @@ func (a *SyncAPI) SyncIncomingBlocks(ctx context.Context) (<-chan *types.BlockHe

 func (a *SyncAPI) SyncCheckpoint(ctx context.Context, tsk types.TipSetKey) error {
 	log.Warnf("Marking tipset %s as checkpoint", tsk)
-	return a.Syncer.SetCheckpoint(tsk)
+	return a.Syncer.SyncCheckpoint(ctx, tsk)
 }

 func (a *SyncAPI) SyncMarkBad(ctx context.Context, bcid cid.Cid) error {