Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

refactor: TxDownloadManager #30110

Draft
wants to merge 29 commits into
base: master
Choose a base branch
from
Draft

refactor: TxDownloadManager #30110

wants to merge 29 commits into from
+1,965 −595

Conversation

glozow
Copy link
Member

@glozow glozow commented May 15, 2024

Part of #27463.

Draft while #30000 is not merged, and because I am still smoothing out the interface, making sure the commits are clean, and writing more tests.

This modularizes transaction download logic into a TxDownloadManager. Transaction download logic refers to the process of deciding what transactions to request, download, and validate.[1]
All of the changes here should result in no behavior change.

There are several benefits to this interface, such as:

  • Unit test coverage and F U Z Z I N G for logic that currently isn't feasible to test as thoroughly (due to the code paths not being reachable through PeerManager without a ton of overhead) and/or currently only lightly tested through assert_debug_log ( 👎 ) in functional tests.
    • See for example the MempoolRejectedTx test, where we can define a matrix of expected outcomes for each TxValidationResult and test them very easily.
    • For fuzzing, see the txdownloadman and txdownload_impl targets.
  • When we add more functionality (e.g. package relay messages, more robust orphan handling), the vast majority of it will be within TxDownloadManager instead of PeerManager, making it easier to review and test.
  • A thinner and easier-to-use interface for PeerManager, which will no longer know anything about / have access to TxOrphanage or rejection caches. Its primary interface with TxDownloadManager would be:
    • Notify txdownloadman of tip changes (i.e. passing on some ValidationInterface callbacks)
    • Tell txdownloadmanwhen a {transaction, package} is {accepted, rejected} from mempool, and receive a few instructions
    • Each time a peer connects or disconnects + sanity check functions during cleanup
    • Pass transaction invs, notfounds to txdownloadman and receive instructions on what to validate
    • Get the getdata requests to send
    • Get the transactions to reconsider in ProcessOrphanTx
    • Get whether a peer HaveMoreWork for the ProessMessages loop
    • ^note that there are some cleanups I still have to do, so it's not this clean yet, but this is the vision. For example, while I'm writing this, I plan to make Find1P1CPackage private to TxDownloadImpl
    • ^in the future, it would also pass package-related messages on, and we would reuse the PackageToValidate struct to return the things peerman needs for validation.
  • (todo) with some more interface changes, we can make this manager internally thread-safe instead of having PeerManager handle it (e.g. currently it locks cs_main to synchronize accesses to m_txrequest!)

[1]: This does not include transaction announcements, i.e. what we send to our peers. All of that happens after we download/accept a tx. Txreconciliation (erlay) is excluded from this module, as it is part of announcements and/or part of helping the other peer decide which invs to send.

@DrahtBot
Copy link
Contributor

DrahtBot commented May 15, 2024
edited

The following sections might be updated with supplementary metadata relevant to reviewers and maintainers.

Code Coverage

For detailed information about the code coverage, see the test coverage report.

Reviews

See the guideline for information on the review process.
A summary of reviews will appear here.

Conflicts

Reviewers, this pull request conflicts with the following ones:

  • #30214 (refactor: Improve assumeutxo state representation by ryanofsky)
  • #30186 (fuzz: increase txorphan harness stability by marcofleon)
  • #30116 (p2p: Fill reconciliation sets (Erlay) attempt 2 by sr-gi)
  • #30111 (locks: introduce mutex for tx download, flush rejection filters on UpdatedBlockTip by glozow)
  • #30058 (Encapsulate warnings in generalized node::Warnings and remove globals by stickies-v)
  • #29641 (scripted-diff: Use LogInfo/LogDebug over LogPrintf/LogPrint by maflcko)
  • #29492 (refactor: Remove redundant definitions by Empact)
  • #29415 (Broadcast own transactions only via short-lived Tor or I2P connections by vasild)
  • #27052 (test: rpc: add last block announcement time to getpeerinfo result by LarryRuane)

If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first.

@DrahtBot
Copy link
Contributor

🚧 At least one of the CI tasks failed. Make sure to run all tests locally, according to the
documentation.

Possibly this is due to a silent merge conflict (the changes in this pull request being
incompatible with the current code in the target branch). If so, make sure to rebase on the latest
commit of the target branch.

Leave a comment here, if you need help tracking down a confusing failure.

Debug: https://github.com/bitcoin/bitcoin/runs/24992798939

This was referenced May 15, 2024
Open
Open
@glozow glozow force-pushed the 2024-05-txdownload branch 2 times, most recently from 0937e08 to 2e58028 Compare May 15, 2024 16:05
@glozow glozow mentioned this pull request May 16, 2024
Merged
@glozow glozow force-pushed the 2024-05-txdownload branch 2 times, most recently from 3e9dab6 to 0b40677 Compare May 20, 2024 09:21
@glozow
guard TxRequest and rejection caches with new mutex
b5009a7 
We need to synchronize between various tx download structures.
TxRequest does not inherently need cs_main for synchronization, and it's
not appropriate to lock all of the tx download logic under cs_main.
@glozow
add ValidationInterface::UpdatedBlockTipSync
9d413af 
This is a synchronous version of UpdatedBlockTip.

It allows clients to respond to a new block immediately after it is
connected. The synchronicity is important for things like
m_recent_rejects, in which a transaction's validity can change (rejected
vs accepted) when this event is processed (e.g. it has a timelock
condition that has just been met). This is distinct from something like
m_recent_confirmed_transactions in which the validation outcome is the
same (valid vs already-have).
@glozow
update recent_rejects filters on UpdatedBlockTipSync
57a42b0 
Resetting m_recent_rejects once per block is more efficient than
comparing hashRecentRejectsChainTip with the chain tip every time we
call AlreadyHaveTx. We keep hashRecentRejectsChainTip for now to assert
that updates happen correctly; it is removed in the next commit.
@glozow
remove obsoleted hashRecentRejectsChainTip
e668575 
This also means AlreadyHaveTx no longer needs cs_main held.
@glozow
lock m_recent_confirmed_transactions using m_tx_download_mutex
ba3b604
@glozow
remove obsoleted TxOrphanage::m_mutex
879f5db
@glozow
scripted-diff: rename TxOrphanage::EraseTxNoLock to EraseTxInternal
7c3fb97 
The lock doesn't exist anymore.

-BEGIN VERIFY SCRIPT-
sed -i 's/EraseTxNoLock/EraseTxInternal/g' src/txorphanage.*
-END VERIFY SCRIPT-))'
@glozow
Copy link
Member Author

glozow commented May 20, 2024

Rebased for #29817 and added a "ensure we can always download a tx as long as we have 1 good outbound peer" fuzz test

dergoegge
dergoegge reviewed May 20, 2024
View reviewed changes
src/node/txdownload_impl.h Outdated
static constexpr auto OVERLOADED_PEER_TX_DELAY{2s};
/** How long to wait before downloading a transaction from an additional peer */
static constexpr auto GETDATA_TX_INTERVAL{60s};
struct TxDownloadOptions {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Structs that are part of the public interface should probably go into txdownloadman.h. Otherwise one needs to include the impl header, e.g. like txdownloadman.h does right now, which defeats the purpose of pimpling to some extend.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hm, in the previous setup, we can change any of txdownload_impl.cpp without net_processing.cpp noticing, but yeah maybe less clean to depend on txdownload_impl.h.

I've updated with a new setup where I've added a txdownloadman.cpp depending on txdownload_impl.h, and txdownloadman.h is included by txdownload_impl.h instead of the other way around. And so net_processing.cpp no longer depends on txdownload_impl.h, which makes sense to me. Had to update lint-circular-dependencies.py but I do like that we can change txdownload_impl.h without recompiling everything. lmk if this seems better?

src/node/txdownload_impl.cpp

bool TxDownloadImpl::AlreadyHaveTx(const GenTxid& gtxid, bool include_reconsiderable)
{
const uint256& hash = gtxid.GetHash();
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Iiuc correctly, clearing the filters here has been removed as we don't want TxDownloadManager to depend on ChainstateManager.

An alternative to the new synchronous validation interface callback could be to preserve the previous behavior (clearing the filters in AlreadyHaveTx on a tip change) by introducing an interface for TxDownloadMan to fetch the latest tip hash. For example, TxDownloadOptions could be extended to hold a lambda that returns the latest tip hash, which in production simply fetches the hash from the ChainstateManager (and for tests it can be mocked). This might be easier to review since it preserves the previous mechanism? Although perhaps also more difficult w.r.t to lock inversion of cs_main and m_tx_download_mutex.

Another alternative could be to directly pass the current block hash as a param into the relevant TxDownloadManager methods.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think we'd ever need to make TxDownloadManager depend on ChainstateManager as we could just pass in the block hash, i.e.

Another alternative could be to directly pass the current block hash as a param into the relevant TxDownloadManager methods.

This would avoid the addition of UpdateBlockTipSync etc, as it's basically what we do now. I find this way of keeping synchronized with the chain tip pretty ugly - we'd need to hold cs_main and pass the blockhash to the TxDownloadManager all the time, bloating the interface. Subscribing to the validation interface and updating on every chain tip update seems much more sensible.

@DrahtBot DrahtBot mentioned this pull request May 20, 2024
Draft
@glozow
[refactor] add TxDownloadManager wrapping TxOrphanage, TxRequestTrack…
c747582 
…er, and bloom filters

This module is going to be responsible for managing everything related
to transaction download, including txrequest, orphan transactions and
package relay. It will be responsible for managing usage of the
TxOrphanage and instructing PeerManager:
- what tx or package-related messages to send to which peer
- whether a tx or package-related message is allowed or useful
- what transactions are available to try accepting to mempool

Future commits will consolidate the interface and re-delegate
interactions from PeerManager to TxDownloadManager.
@glozow
[refactor] move ValidationInterface functions to TxDownloadManager
c45ce70 
This is move-only.
@glozow
[txdownload] add read-only reference to mempool
40a9288
glozow added 19 commits May 21, 2024 13:39
@glozow
[refactor] move AlreadyHaveTx to TxDownload
cdb6d81
@glozow
[refactor] move peer (dis)connection logic to TxDownload
648c772 
The information stored in TxDownloadConnectionInfo isn't used until the
next commit.
@glozow
[refactor] move tx inv/getdata handling to txdownload
7481232
@glozow
[refactor] move notfound processing to txdownload
926feb1
@glozow
[refactor] move PackageToValidate definition up
ea82fd8
@glozow
[refactor] move new orphan handling to ProcessInvalidTx
ea626ee
@glozow
move Find1P1CPackage into ProcessInvalidTx
217783f
@glozow
[refactor] ProcessInvalidTx logic to put peerman tasks at the end
01f61e2
@glozow
[refactor] move Find1P1CPackage to txdownload
5979387
@glozow
[refactor] move valid and tx processing to TxDownload
b81154c
@glozow
[refactor] move invalid tx processing to TxDownload
8ea7263
@glozow
[refactor] move invalid package processing to TxDownload
1622677
@glozow
[refactor] move new tx logic to txdownload
e7c7d72
@glozow
[refactor] make AlreadyHaveTx and Find1P1CPackage private to TxDownlo…
fa1c644 
…adImpl
@glozow
[refactor] wrap {Have,Get}TxToReconsider in txdownload
b405a1b
@glozow
[refactor] add CheckIsEmpty and remove access to TxDownloadMan internals
dd9fa89
@glozow
[fuzz] txdownloadman and txdownload_impl
9a90239 
The txdownload_impl is similar but allows us to check specific
invariants within its implementation. It will also change a lot more
than the external interface (txdownloadman) will, so we will add more to
this target later.
@glozow
[unit test] MempoolRejectedTx
79d44d1
@glozow
[fuzz] tx download succeeds as long as we have 1 good outbound
13622fc
This was referenced May 23, 2024
Open
Open
Open
Open
Open
Open
@DrahtBot DrahtBot mentioned this pull request May 31, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dergoegge dergoegge dergoegge left review comments

Assignees
No one assigned
Labels
Refactoring
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@glozow @DrahtBot @dergoegge