Merge pull request #2775 from oasislabs/kostko/fix/mkvs-bug-fixes

Various MKVS remote syncer bug fixes
oasisprotocol · Mar 25, 2020 · abef603 · abef603
2 parents 57b86bb + 57cfbf2
commit abef603
Show file tree

Hide file tree

Showing 25 changed files with 595 additions and 80 deletions.
diff --git a/.changelog/2775.breaking.md b/.changelog/2775.breaking.md
@@ -0,0 +1,10 @@
+storage/mkvs: Only nil value should mean deletion
+
+Previously an empty value in the write log signalled that the given entry is a
+delete operation instead of an insert one. This was incorrect as inserting an
+empty byte string is allowed. The value is now wrapped in an `Option`, with
+`None` (`nil` in Go) meaning delete and `Some(vec![])` (`[]byte{}` in Go)
+meaning insert empty value.
+
+This change is BREAKING as it changes write log semantics and thus it breaks
+the runtime worker-host protocol.
diff --git a/.changelog/2775.bugfix.1.md b/.changelog/2775.bugfix.1.md
@@ -0,0 +1 @@
+go/storage/mkvs: Don't forget to include siblings in SyncGet proof
diff --git a/.changelog/2775.bugfix.2.md b/.changelog/2775.bugfix.2.md
@@ -0,0 +1 @@
+storage/mkvs: Don't try to sync dirty keys
diff --git a/go/common/version/version.go b/go/common/version/version.go
@@ -59,7 +59,7 @@ var (
 	// the runtime.
 	//
 	// NOTE: This version must be synced with runtime/src/common/version.rs.
-	RuntimeProtocol = Version{Major: 0, Minor: 11, Patch: 0}
+	RuntimeProtocol = Version{Major: 0, Minor: 12, Patch: 0}
 
 	// CommitteeProtocol versions the P2P protocol used by the
 	// committee members.

diff --git a/go/storage/mkvs/urkel/cache.go b/go/storage/mkvs/urkel/cache.go
@@ -455,6 +455,15 @@ func (c *cache) remoteSync(ctx context.Context, ptr *node.Pointer, fetcher readS
 		}
 		return nil
 	}
+
+	if err := c.MergeVerifiedSubtree(ctx, dstPtr, subtree, commitNode); err != nil {
+		if err == errRemoveLocked {
+			// Cache is too small, ignore.
+			return nil
+		}
+		return err
+	}
+
 	// Persist synced nodes to local node database when configured.
 	if c.persistEverythingFromSyncer {
 		if err := dbSubtree.Commit(); err != nil {
@@ -465,12 +474,5 @@ func (c *cache) remoteSync(ctx context.Context, ptr *node.Pointer, fetcher readS
 		}
 	}
 
-	if err := c.MergeVerifiedSubtree(ctx, dstPtr, subtree, commitNode); err != nil {
-		if err == errRemoveLocked {
-			// Cache is too small, ignore.
-			return nil
-		}
-		return err
-	}
 	return nil
 }
diff --git a/go/storage/mkvs/urkel/fuzz/tree.go b/go/storage/mkvs/urkel/fuzz/tree.go
@@ -9,29 +9,76 @@ import (
 	"encoding/json"
 	"fmt"
 	"sort"
+	"io/ioutil"
 
+	"github.com/oasislabs/oasis-core/go/common"
 	commonFuzz "github.com/oasislabs/oasis-core/go/common/fuzz"
 	mkvs "github.com/oasislabs/oasis-core/go/storage/mkvs/urkel"
+	mkvsNode "github.com/oasislabs/oasis-core/go/storage/mkvs/urkel/node"
 	mkvsTests "github.com/oasislabs/oasis-core/go/storage/mkvs/urkel/tests"
 )
 
 var treeFuzzer *commonFuzz.InterfaceFuzzer
 
-// TreeFuzz is a wrapper around a mkvs.KeyValueTree for fuzzing purposes.
+// TreeFuzz is a wrapper around a mkvs.Tree for fuzzing purposes.
+//
+// The fuzzer works against two trees, an "inner" one and a "remote" one. Both trees are only
+// in-memory and do not use a node database. The "remote" tree talks to the "inner" tree via the
+// ReadSyncer interface in order to fuzz that part as well.
+//
+//   remote <-- ReadSyncer --> inner
+//
+// Because there is no database, the remote tree can only access the root hash that was committed
+// last and the inner tree must never be dirty. This means that all mutations must first be applied
+// to the remote tree as otherwise the ReadSyncer operations would fail.
+//
+// This could be improved in the future by introducing a separate Commit operation, allowing the
+// fuzzer to generate histories where multiple mutation operations are performed against the remote
+// tree.
 type TreeFuzz struct {
-	inner     mkvs.KeyValueTree
+	inner     mkvs.Tree
+	remote    mkvs.Tree
+
 	reference map[string][]byte
 	history   mkvsTests.TestVector
 }
 
+func (t *TreeFuzz) commitRemote(ctx context.Context) {
+	_, rootHash, err := t.inner.Commit(ctx, common.Namespace{}, 0)
+	if err != nil {
+		t.fail("CommitRemote failed: %s", err)
+	}
+
+	if t.remote != nil {
+		t.remote.Close()
+	}
+	t.remote = mkvs.NewWithRoot(t.inner, nil, mkvsNode.Root{Hash: rootHash}, mkvs.Capacity(0, 0))
+}
+
+func (t *TreeFuzz) insert(ctx context.Context, tree mkvs.Tree, key []byte, value []byte) {
+	if tree == nil {
+		return
+	}
+
+	if err := tree.Insert(ctx, key, value); err != nil {
+		t.fail("Insert failed: %s", err)
+	}
+}
+
 func (t *TreeFuzz) Insert(ctx context.Context, key []byte, value []byte) int {
 	if len(key) == 0 {
 		// Ignore zero-length keys as they are invalid.
 		return -1
 	}
 
-	if err := t.inner.Insert(ctx, key, value); err != nil {
-		t.fail("Insert failed: %s", err)
+	t.history = append(t.history, &mkvsTests.Op{Op: mkvsTests.OpInsert, Key: key, Value: value})
+
+	t.insert(ctx, t.remote, key, value)
+	t.insert(ctx, t.inner, key, value)
+
+	if value == nil {
+		// Perform the same conversion that is performed internally by tree insert.
+		value = []byte{}
 	}
 
 	// Make sure the key has been set.
@@ -40,81 +87,109 @@ func (t *TreeFuzz) Insert(ctx context.Context, key []byte, value []byte) int {
 	}
 
 	t.reference[string(key)] = value
-	t.history = append(t.history, &mkvsTests.Op{Op: mkvsTests.OpInsert, Key: key, Value: value})
+
+	t.commitRemote(ctx)
+
 	return 0
 }
 
-func (t *TreeFuzz) Get(ctx context.Context, key []byte) int {
-	if len(key) == 0 {
-		// Ignore zero-length keys as they are invalid.
-		return -1
+func (t *TreeFuzz) get(ctx context.Context, tree mkvs.Tree, key []byte) {
+	if tree == nil {
+		return
 	}
 
-	value, err := t.inner.Get(ctx, key)
+	value, err := tree.Get(ctx, key)
 	if err != nil {
 		t.fail("Get failed: %s", err)
 	}
 
 	t.assertCorrectValue(key, value)
-
-	return 0
 }
 
-func (t *TreeFuzz) RemoveExisting(ctx context.Context, key []byte) int {
+func (t *TreeFuzz) Get(ctx context.Context, key []byte) int {
 	if len(key) == 0 {
 		// Ignore zero-length keys as they are invalid.
 		return -1
 	}
 
-	value, err := t.inner.RemoveExisting(ctx, key)
+	t.history = append(t.history, &mkvsTests.Op{Op: mkvsTests.OpGet, Key: key, Value: t.reference[string(key)]})
+
+	t.get(ctx, t.remote, key)
+	t.get(ctx, t.inner, key)
+
+	return 0
+}
+
+func (t *TreeFuzz) removeExisting(ctx context.Context, tree mkvs.Tree, key []byte) {
+	if tree == nil {
+		return
+	}
+
+	value, err := tree.RemoveExisting(ctx, key)
 	if err != nil {
 		t.fail("RemoveExisting failed: %s", err)
 	}
 
 	// Make sure the key has been removed.
-	if value, err := t.inner.Get(ctx, key); err != nil || value != nil {
+	if value, err := tree.Get(ctx, key); err != nil || value != nil {
 		t.fail("RemoveExisting check failed: %s", err)
 	}
 
 	t.assertCorrectValue(key, value)
+}
+
+func (t *TreeFuzz) RemoveExisting(ctx context.Context, key []byte) int {
+	if len(key) == 0 {
+		// Ignore zero-length keys as they are invalid.
+		return -1
+	}
 
-	delete(t.reference, string(key))
 	t.history = append(t.history, &mkvsTests.Op{Op: mkvsTests.OpRemove, Key: key})
 
+	t.removeExisting(ctx, t.remote, key)
+	t.removeExisting(ctx, t.inner, key)
+
+	delete(t.reference, string(key))
+
+	t.commitRemote(ctx)
+
 	return 0
 }
 
-func (t *TreeFuzz) Remove(ctx context.Context, key []byte) int {
-	if len(key) == 0 {
-		// Ignore zero-length keys as they are invalid.
-		return -1
+func (t *TreeFuzz) remove(ctx context.Context, tree mkvs.Tree, key []byte) {
+	if tree == nil {
+		return
 	}
 
-	if err := t.inner.Remove(ctx, key); err != nil {
+	if err := tree.Remove(ctx, key); err != nil {
 		t.fail("Remove failed: %s", err)
 	}
 
 	// Make sure the key has been removed.
-	if value, err := t.inner.Get(ctx, key); err != nil || value != nil {
+	if value, err := tree.Get(ctx, key); err != nil || value != nil {
 		t.fail("Remove check failed: %s", err)
 	}
+}
+
+func (t *TreeFuzz) Remove(ctx context.Context, key []byte) int {
+	if len(key) == 0 {
+		// Ignore zero-length keys as they are invalid.
+		return -1
+	}
 
-	delete(t.reference, string(key))
 	t.history = append(t.history, &mkvsTests.Op{Op: mkvsTests.OpRemove, Key: key})
 
+	t.remove(ctx, t.remote, key)
+	t.remove(ctx, t.inner, key)
+
+	delete(t.reference, string(key))
+
+	t.commitRemote(ctx)
+
 	return 0
 }
 
 func (t *TreeFuzz) IteratorSeek(ctx context.Context, key []byte) int {
-	it := t.inner.NewIterator(ctx)
-	defer it.Close()
-
-	it.Seek(key)
-	if it.Err() != nil {
-		t.fail("IteratorSeek failed: %s", it.Err())
-	}
-
-	// Check that the iterator is in the correct position.
 	var ordered []string
 	for k := range t.reference {
 		ordered = append(ordered, k)
@@ -129,15 +204,24 @@ func (t *TreeFuzz) IteratorSeek(ctx context.Context, key []byte) int {
 			break
 		}
 	}
-	if !bytes.Equal(expectedKey, it.Key()) || !bytes.Equal(expectedValue, it.Value()) {
-		// Add the final IteratorSeek operation.
-		t.history = append(t.history, &mkvsTests.Op{
-			Op:          mkvsTests.OpIteratorSeek,
-			Key:         key,
-			Value:       expectedValue,
-			ExpectedKey: expectedKey,
-		})
 
+	t.history = append(t.history, &mkvsTests.Op{
+		Op:          mkvsTests.OpIteratorSeek,
+		Key:         key,
+		Value:       expectedValue,
+		ExpectedKey: expectedKey,
+	})
+
+	it := t.inner.NewIterator(ctx)
+	defer it.Close()
+
+	it.Seek(key)
+	if it.Err() != nil {
+		t.fail("IteratorSeek failed: %s", it.Err())
+	}
+
+	// Check that the iterator is in the correct position.
+	if !bytes.Equal(expectedKey, it.Key()) || !bytes.Equal(expectedValue, it.Value()) {
 		t.fail("iterator Seek returned incorrect key/value (expected: %s/%s got: %s/%s)",
 			hex.EncodeToString(expectedKey),
 			hex.EncodeToString(expectedValue),
@@ -151,9 +235,6 @@ func (t *TreeFuzz) IteratorSeek(ctx context.Context, key []byte) int {
 
 func (t *TreeFuzz) assertCorrectValue(key, value []byte) {
 	if refValue := t.reference[string(key)]; !bytes.Equal(value, refValue) {
-		// Add the final Get operation.
-		t.history = append(t.history, &mkvsTests.Op{Op: mkvsTests.OpGet, Key: key, Value: refValue})
-
 		t.fail("Get returned incorrect value for key %s (expected: %s got: %s)",
 			hex.EncodeToString(key),
 			hex.EncodeToString(refValue),
@@ -166,16 +247,25 @@ func (t *TreeFuzz) fail(format string, a ...interface{}) {
 	// In case there is a failure, dump the operation history so it can be used to create a test
 	// vector for unit tests.
 	fmt.Printf("--- FAILURE: Dumping operation history ---\n")
+
 	history, _ := json.MarshalIndent(t.history, "", "    ")
-	fmt.Printf("%s\n", history)
+	f, err := ioutil.TempFile("", "oasis-node-fuzz-mkvs-dump-*.json")
+	if err == nil {
+		_, _ = f.Write(history)
+		f.Close()
+
+		fmt.Printf("[see %s]\n", f.Name())
+	} else {
+		fmt.Printf("[unable to save dump: %s]", err.Error())
+	}
 	fmt.Printf("------------------------------------------\n")
 
 	panic(fmt.Sprintf(format, a...))
 }
 
 func NewTreeFuzz() (*TreeFuzz, *commonFuzz.InterfaceFuzzer) {
 	tf := &TreeFuzz{
-		inner:     mkvs.New(nil, nil, mkvs.WithoutWriteLog()),
+		inner:     mkvs.New(nil, nil, mkvs.Capacity(0, 0)),
 		reference: make(map[string][]byte),
 	}
 	fz := commonFuzz.NewInterfaceFuzzer(tf)

diff --git a/go/storage/mkvs/urkel/lookup.go b/go/storage/mkvs/urkel/lookup.go
@@ -17,6 +17,13 @@ func (t *tree) Get(ctx context.Context, key []byte) ([]byte, error) {
 		return nil, ErrClosed
 	}
 
+	// If the key has been modified locally, no need to perform any lookups.
+	if !t.withoutWriteLog {
+		if entry := t.pendingWriteLog[node.ToMapKey(key)]; entry != nil {
+			return entry.value, nil
+		}
+	}
+
 	// Remember where the path from root to target node ends (will end).
 	t.cache.markPosition()
 
@@ -123,6 +130,19 @@ func (t *tree) doGet(
 
 		// Does lookup key end here? Look into LeafNode.
 		if key.BitLength() == bitLength {
+			// Include siblings before disabling the proof builder for the leaf node.
+			if opts.includeSiblings {
+				// Also fetch the left and right siblings.
+				_, err = t.doGet(ctx, n.Left, bitLength, key, opts, true)
+				if err != nil {
+					return nil, err
+				}
+				_, err = t.doGet(ctx, n.Right, bitLength, key, opts, true)
+				if err != nil {
+					return nil, err
+				}
+			}
+
 			// Omit the proof builder as the leaf node is always included with
 			// the internal node itself.
 			opts.proofBuilder = nil

diff --git a/go/storage/mkvs/urkel/remove.go b/go/storage/mkvs/urkel/remove.go
@@ -16,6 +16,14 @@ func (t *tree) RemoveExisting(ctx context.Context, key []byte) ([]byte, error) {
 		return nil, ErrClosed
 	}
 
+	// If the key has already been removed locally, don't try to remove it again.
+	var entry *pendingEntry
+	if !t.withoutWriteLog {
+		if entry = t.pendingWriteLog[node.ToMapKey(key)]; entry != nil && entry.value == nil {
+			return nil, nil
+		}
+	}
+
 	// Remember where the path from root to target node ends (will end).
 	t.cache.markPosition()
 
@@ -26,7 +34,6 @@ func (t *tree) RemoveExisting(ctx context.Context, key []byte) ([]byte, error) {
 
 	// Update the pending write log.
 	if !t.withoutWriteLog {
-		entry := t.pendingWriteLog[node.ToMapKey(key)]
 		if entry == nil {
 			t.pendingWriteLog[node.ToMapKey(key)] = &pendingEntry{key, nil, changed, nil}
 		} else {
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		go/storage/mkvs: Don't forget to include siblings in SyncGet proof