mirror of
https://github.com/bitcoin/bitcoin.git
synced 2026-04-08 14:47:31 +02:00
854a6d5a9a
The removal of the chain tip from setBlockIndexCandidates was happening after nSequenceId was modified. Since the set uses nSequenceId as a sort key, modifying it while the element is in the set is undefined behavior, which can cause the erase to fail. With assumeutxo, a second form of UB exists: two chainstates each have their own candidate set, but share the same CBlockIndex objects. Calling LoadChainTip on one chainstate mutates nSequenceIds that are also in the other chainstate's set. Fix by populating setBlockIndexCandidates after all changes to nSequenceId.
281 lines
13 KiB
C++
281 lines
13 KiB
C++
// Copyright (c) 2021-present The Bitcoin Core developers
|
|
// Distributed under the MIT software license, see the accompanying
|
|
// file COPYING or http://www.opensource.org/licenses/mit-license.php.
|
|
|
|
#include <node/chainstate.h>
|
|
|
|
#include <arith_uint256.h>
|
|
#include <chain.h>
|
|
#include <coins.h>
|
|
#include <consensus/params.h>
|
|
#include <kernel/caches.h>
|
|
#include <node/blockstorage.h>
|
|
#include <sync.h>
|
|
#include <threadsafety.h>
|
|
#include <tinyformat.h>
|
|
#include <txdb.h>
|
|
#include <uint256.h>
|
|
#include <util/fs.h>
|
|
#include <util/log.h>
|
|
#include <util/signalinterrupt.h>
|
|
#include <util/time.h>
|
|
#include <util/translation.h>
|
|
#include <validation.h>
|
|
|
|
#include <algorithm>
|
|
#include <cassert>
|
|
#include <vector>
|
|
|
|
using kernel::CacheSizes;
|
|
|
|
namespace node {
|
|
// Complete initialization of chainstates after the initial call has been made
|
|
// to ChainstateManager::InitializeChainstate().
|
|
static ChainstateLoadResult CompleteChainstateInitialization(
|
|
ChainstateManager& chainman,
|
|
const ChainstateLoadOptions& options) EXCLUSIVE_LOCKS_REQUIRED(::cs_main)
|
|
{
|
|
if (chainman.m_interrupt) return {ChainstateLoadStatus::INTERRUPTED, {}};
|
|
|
|
// LoadBlockIndex will load m_have_pruned if we've ever removed a
|
|
// block file from disk.
|
|
// Note that it also sets m_blockfiles_indexed based on the disk flag!
|
|
if (!chainman.LoadBlockIndex()) {
|
|
if (chainman.m_interrupt) return {ChainstateLoadStatus::INTERRUPTED, {}};
|
|
return {ChainstateLoadStatus::FAILURE, _("Error loading block database")};
|
|
}
|
|
|
|
if (!chainman.BlockIndex().empty() &&
|
|
!chainman.m_blockman.LookupBlockIndex(chainman.GetConsensus().hashGenesisBlock)) {
|
|
// If the loaded chain has a wrong genesis, bail out immediately
|
|
// (we're likely using a testnet datadir, or the other way around).
|
|
return {ChainstateLoadStatus::FAILURE_INCOMPATIBLE_DB, _("Incorrect or no genesis block found. Wrong datadir for network?")};
|
|
}
|
|
|
|
// Check for changed -prune state. What we are concerned about is a user who has pruned blocks
|
|
// in the past, but is now trying to run unpruned.
|
|
if (chainman.m_blockman.m_have_pruned && !options.prune) {
|
|
return {ChainstateLoadStatus::FAILURE, _("You need to rebuild the database using -reindex to go back to unpruned mode. This will redownload the entire blockchain")};
|
|
}
|
|
|
|
// At this point blocktree args are consistent with what's on disk.
|
|
// If we're not mid-reindex (based on disk + args), add a genesis block on disk
|
|
// (otherwise we use the one already on disk).
|
|
// This is called again in ImportBlocks after the reindex completes.
|
|
if (chainman.m_blockman.m_blockfiles_indexed && !chainman.ActiveChainstate().LoadGenesisBlock()) {
|
|
return {ChainstateLoadStatus::FAILURE, _("Error initializing block database")};
|
|
}
|
|
|
|
auto is_coinsview_empty = [&](Chainstate& chainstate) EXCLUSIVE_LOCKS_REQUIRED(::cs_main) {
|
|
return options.wipe_chainstate_db || chainstate.CoinsTip().GetBestBlock().IsNull();
|
|
};
|
|
|
|
assert(chainman.m_total_coinstip_cache > 0);
|
|
assert(chainman.m_total_coinsdb_cache > 0);
|
|
|
|
// If running with multiple chainstates, limit the cache sizes with a
|
|
// discount factor. If discounted the actual cache size will be
|
|
// recalculated by `chainman.MaybeRebalanceCaches()`. The discount factor
|
|
// is conservatively chosen such that the sum of the caches does not exceed
|
|
// the allowable amount during this temporary initialization state.
|
|
double init_cache_fraction = chainman.HistoricalChainstate() ? 0.2 : 1.0;
|
|
|
|
// At this point we're either in reindex or we've loaded a useful
|
|
// block tree into BlockIndex()!
|
|
|
|
for (const auto& chainstate : chainman.m_chainstates) {
|
|
LogInfo("Initializing chainstate %s", chainstate->ToString());
|
|
|
|
try {
|
|
chainstate->InitCoinsDB(
|
|
/*cache_size_bytes=*/chainman.m_total_coinsdb_cache * init_cache_fraction,
|
|
/*in_memory=*/options.coins_db_in_memory,
|
|
/*should_wipe=*/options.wipe_chainstate_db);
|
|
} catch (dbwrapper_error& err) {
|
|
LogError("%s\n", err.what());
|
|
return {ChainstateLoadStatus::FAILURE, _("Error opening coins database")};
|
|
}
|
|
|
|
if (options.coins_error_cb) {
|
|
chainstate->CoinsErrorCatcher().AddReadErrCallback(options.coins_error_cb);
|
|
}
|
|
|
|
// Refuse to load unsupported database format.
|
|
// This is a no-op if we cleared the coinsviewdb with -reindex or -reindex-chainstate
|
|
if (chainstate->CoinsDB().NeedsUpgrade()) {
|
|
return {ChainstateLoadStatus::FAILURE_INCOMPATIBLE_DB, _("Unsupported chainstate database format found. "
|
|
"Please restart with -reindex-chainstate. This will "
|
|
"rebuild the chainstate database.")};
|
|
}
|
|
|
|
// ReplayBlocks is a no-op if we cleared the coinsviewdb with -reindex or -reindex-chainstate
|
|
if (!chainstate->ReplayBlocks()) {
|
|
return {ChainstateLoadStatus::FAILURE, _("Unable to replay blocks. You will need to rebuild the database using -reindex-chainstate.")};
|
|
}
|
|
|
|
// The on-disk coinsdb is now in a good state, create the cache
|
|
chainstate->InitCoinsCache(chainman.m_total_coinstip_cache * init_cache_fraction);
|
|
assert(chainstate->CanFlushToDisk());
|
|
|
|
if (!is_coinsview_empty(*chainstate)) {
|
|
// LoadChainTip initializes the chain based on CoinsTip()'s best block
|
|
if (!chainstate->LoadChainTip()) {
|
|
return {ChainstateLoadStatus::FAILURE, _("Error initializing block database")};
|
|
}
|
|
assert(chainstate->m_chain.Tip() != nullptr);
|
|
}
|
|
}
|
|
|
|
// Populate setBlockIndexCandidates in a separate loop, after all LoadChainTip()
|
|
// calls have finished modifying nSequenceId. Because nSequenceId is used in the
|
|
// set's comparator, changing it while blocks are in the set would be UB.
|
|
for (const auto& chainstate : chainman.m_chainstates) {
|
|
chainstate->PopulateBlockIndexCandidates();
|
|
}
|
|
|
|
const auto& chainstates{chainman.m_chainstates};
|
|
if (std::any_of(chainstates.begin(), chainstates.end(),
|
|
[](const auto& cs) EXCLUSIVE_LOCKS_REQUIRED(cs_main) { return cs->NeedsRedownload(); })) {
|
|
return {ChainstateLoadStatus::FAILURE, strprintf(_("Witness data for blocks after height %d requires validation. Please restart with -reindex."),
|
|
chainman.GetConsensus().SegwitHeight)};
|
|
};
|
|
|
|
// Now that chainstates are loaded and we're able to flush to
|
|
// disk, rebalance the coins caches to desired levels based
|
|
// on the condition of each chainstate.
|
|
chainman.MaybeRebalanceCaches();
|
|
|
|
return {ChainstateLoadStatus::SUCCESS, {}};
|
|
}
|
|
|
|
ChainstateLoadResult LoadChainstate(ChainstateManager& chainman, const CacheSizes& cache_sizes,
|
|
const ChainstateLoadOptions& options)
|
|
{
|
|
if (!chainman.AssumedValidBlock().IsNull()) {
|
|
LogInfo("Assuming ancestors of block %s have valid signatures.", chainman.AssumedValidBlock().GetHex());
|
|
} else {
|
|
LogInfo("Validating signatures for all blocks.");
|
|
}
|
|
LogInfo("Setting nMinimumChainWork=%s", chainman.MinimumChainWork().GetHex());
|
|
if (chainman.MinimumChainWork() < UintToArith256(chainman.GetConsensus().nMinimumChainWork)) {
|
|
LogWarning("nMinimumChainWork set below default value of %s", chainman.GetConsensus().nMinimumChainWork.GetHex());
|
|
}
|
|
if (chainman.m_blockman.GetPruneTarget() == BlockManager::PRUNE_TARGET_MANUAL) {
|
|
LogInfo("Block pruning enabled. Use RPC call pruneblockchain(height) to manually prune block and undo files.");
|
|
} else if (chainman.m_blockman.GetPruneTarget()) {
|
|
LogInfo("Prune configured to target %u MiB on disk for block and undo files.",
|
|
chainman.m_blockman.GetPruneTarget() / 1024 / 1024);
|
|
}
|
|
|
|
LOCK(cs_main);
|
|
|
|
chainman.m_total_coinstip_cache = cache_sizes.coins;
|
|
chainman.m_total_coinsdb_cache = cache_sizes.coins_db;
|
|
|
|
// Load the fully validated chainstate.
|
|
Chainstate& validated_cs{chainman.InitializeChainstate(options.mempool)};
|
|
|
|
// Load a chain created from a UTXO snapshot, if any exist.
|
|
Chainstate* assumeutxo_cs{chainman.LoadAssumeutxoChainstate()};
|
|
|
|
if (assumeutxo_cs && options.wipe_chainstate_db) {
|
|
// Reset chainstate target to network tip instead of snapshot block.
|
|
validated_cs.SetTargetBlock(nullptr);
|
|
LogInfo("[snapshot] deleting snapshot chainstate due to reindexing");
|
|
if (!chainman.DeleteChainstate(*assumeutxo_cs)) {
|
|
return {ChainstateLoadStatus::FAILURE_FATAL, Untranslated("Couldn't remove snapshot chainstate.")};
|
|
}
|
|
assumeutxo_cs = nullptr;
|
|
}
|
|
|
|
auto [init_status, init_error] = CompleteChainstateInitialization(chainman, options);
|
|
if (init_status != ChainstateLoadStatus::SUCCESS) {
|
|
return {init_status, init_error};
|
|
}
|
|
|
|
// If a snapshot chainstate was fully validated by a background chainstate during
|
|
// the last run, detect it here and clean up the now-unneeded background
|
|
// chainstate.
|
|
//
|
|
// Why is this cleanup done here (on subsequent restart) and not just when the
|
|
// snapshot is actually validated? Because this entails unusual
|
|
// filesystem operations to move leveldb data directories around, and that seems
|
|
// too risky to do in the middle of normal runtime.
|
|
auto snapshot_completion{assumeutxo_cs
|
|
? chainman.MaybeValidateSnapshot(validated_cs, *assumeutxo_cs)
|
|
: SnapshotCompletionResult::SKIPPED};
|
|
|
|
if (snapshot_completion == SnapshotCompletionResult::SKIPPED) {
|
|
// do nothing; expected case
|
|
} else if (snapshot_completion == SnapshotCompletionResult::SUCCESS) {
|
|
LogInfo("[snapshot] cleaning up unneeded background chainstate, then reinitializing");
|
|
if (!chainman.ValidatedSnapshotCleanup(validated_cs, *assumeutxo_cs)) {
|
|
return {ChainstateLoadStatus::FAILURE_FATAL, Untranslated("Background chainstate cleanup failed unexpectedly.")};
|
|
}
|
|
|
|
// Because ValidatedSnapshotCleanup() has torn down chainstates with
|
|
// ChainstateManager::ResetChainstates(), reinitialize them here without
|
|
// duplicating the blockindex work above.
|
|
assert(chainman.m_chainstates.empty());
|
|
|
|
chainman.InitializeChainstate(options.mempool);
|
|
|
|
// A reload of the block index is required to recompute setBlockIndexCandidates
|
|
// for the fully validated chainstate.
|
|
chainman.ActiveChainstate().ClearBlockIndexCandidates();
|
|
|
|
auto [init_status, init_error] = CompleteChainstateInitialization(chainman, options);
|
|
if (init_status != ChainstateLoadStatus::SUCCESS) {
|
|
return {init_status, init_error};
|
|
}
|
|
} else {
|
|
return {ChainstateLoadStatus::FAILURE_FATAL, _(
|
|
"UTXO snapshot failed to validate. "
|
|
"Restart to resume normal initial block download, or try loading a different snapshot.")};
|
|
}
|
|
|
|
return {ChainstateLoadStatus::SUCCESS, {}};
|
|
}
|
|
|
|
ChainstateLoadResult VerifyLoadedChainstate(ChainstateManager& chainman, const ChainstateLoadOptions& options)
|
|
{
|
|
auto is_coinsview_empty = [&](Chainstate& chainstate) EXCLUSIVE_LOCKS_REQUIRED(::cs_main) {
|
|
return options.wipe_chainstate_db || chainstate.CoinsTip().GetBestBlock().IsNull();
|
|
};
|
|
|
|
LOCK(cs_main);
|
|
|
|
for (auto& chainstate : chainman.m_chainstates) {
|
|
if (!is_coinsview_empty(*chainstate)) {
|
|
const CBlockIndex* tip = chainstate->m_chain.Tip();
|
|
if (tip && tip->nTime > GetTime() + MAX_FUTURE_BLOCK_TIME) {
|
|
return {ChainstateLoadStatus::FAILURE, _("The block database contains a block which appears to be from the future. "
|
|
"This may be due to your computer's date and time being set incorrectly. "
|
|
"Only rebuild the block database if you are sure that your computer's date and time are correct")};
|
|
}
|
|
|
|
VerifyDBResult result = CVerifyDB(chainman.GetNotifications()).VerifyDB(
|
|
*chainstate, chainman.GetConsensus(), chainstate->CoinsDB(),
|
|
options.check_level,
|
|
options.check_blocks);
|
|
switch (result) {
|
|
case VerifyDBResult::SUCCESS:
|
|
case VerifyDBResult::SKIPPED_MISSING_BLOCKS:
|
|
break;
|
|
case VerifyDBResult::INTERRUPTED:
|
|
return {ChainstateLoadStatus::INTERRUPTED, _("Block verification was interrupted")};
|
|
case VerifyDBResult::CORRUPTED_BLOCK_DB:
|
|
return {ChainstateLoadStatus::FAILURE, _("Corrupted block database detected")};
|
|
case VerifyDBResult::SKIPPED_L3_CHECKS:
|
|
if (options.require_full_verification) {
|
|
return {ChainstateLoadStatus::FAILURE_INSUFFICIENT_DBCACHE, _("Insufficient dbcache for block verification")};
|
|
}
|
|
break;
|
|
} // no default case, so the compiler can warn about missing cases
|
|
}
|
|
}
|
|
|
|
return {ChainstateLoadStatus::SUCCESS, {}};
|
|
}
|
|
} // namespace node
|