Beacon sync remove finalised hash early resolver (#3236)

mjfh · web-flow · commit bcff15e1c8ce · 2025-04-23T13:57:21.000Z
* Fix potential race condition/crash

info
  This might fix issue 3227.

* Remove `accept()` handshake for early finalised hash resolving

why
  The benefits of keeping that early resolution feature do not justify
  the annoyances/code-complexity increase.

  All that the early resolver did was fetching some finalised header
  early. The same header was fetched later again with the download of
  the chain of headers needed for syncing.

  It turns out that the early knowledge of a resolved finalised hash
  was never needed, nor used. Even the lazy resolution of the finalised
  hash (while collecting headers) seems to be seldom needed.

  On the other hand, there were hive test problems with the early
  resolver caused by the way the database delivery for the hive tests
  work.
diff --git a/execution_chain/core/chain/header_chain_cache.nim b/execution_chain/core/chain/header_chain_cache.nim
@@ -103,17 +103,14 @@ type
     ##                             +-------+
     ##
     closed = 0                  # no session
-    notified                    # client app was offered a new session
     collecting                  # may append session headers
     ready                       # `ante` has a parent on the `FC` module
     orphan                      # no way to link into `FC` module
     locked                      # done with session headers, read-only state
 
-  HeaderChainNotifyCB* =
-      proc(hdrNum: BlockNumber, finHash: Hash32) {.gcsafe, raises: [].}
-    ## Call back function telling a client app that a new chain was initialised.
-    ## The hash passed as argument is from the finaliser and must be resolved
-    ## as header argument in `startSession()`.
+  HeaderChainNotifyCB* = proc() {.gcsafe, raises: [].}
+    ## Call back function telling a client app that a new session was
+    ## initialised and has started.
 
   HeaderChainRef* = ref object
     ## Module descriptor
@@ -269,6 +266,18 @@ proc tryFcParent(hc: HeaderChainRef; hdr: Header): HeaderChainMode =
   # The block number of `hdr` must not go below the `base`. It cannot be
   # handled even if it has a parent on the block chain (but not on the
   # `FC` module.)
+  #
+  # Rationale:
+  #   This situataion might arise by means of `CL` requests via RPC updating
+  #   the `base` concurrently to a syncer client. This can only happen if the
+  #   base is near the canonical head. Which in turn means that the header
+  #   chain is short.
+  #
+  #   Reversing the antecedent (above `base`) is avoided. This goes with the
+  #   argument that completely re-syncing a short header chain is worth it
+  #   comparing additional administrative costs (for a syncer client of that
+  #   module) of handling backward moves of the antecedent.
+  #
   if hdr.number <= baseNum:
     return orphan                              # beyond reach
 
@@ -278,10 +287,10 @@ proc tryFcParent(hc: HeaderChainRef; hdr: Header): HeaderChainMode =
   # `hdr` could have a parent on the `FC` module which obviously failed
   # (i.e. `base` is not parent of `hdr`.)
   if hc.session.finHeader.number <= baseNum:
-    # So `finalised` is ancestor of, or equal to `base`. In any case,
-    # `hdr` has no parent on the canonical branch up to `base`. So it is
-    # on another branch.
-    return orphan                              # on the wrong branch
+    # So, if resolved at all then `finalised` is ancestor of, or equal to
+    # `base`. In any case, `hdr` has no parent on the canonical branch up
+    # to `base`. So it is on another branch.
+    return orphan                              # maybe on the wrong branch
 
   # Now `base` and `finalised` (and all ancestors of either) are on the
   # the canonical branch of the DAG generated by the `CL` logic.
@@ -312,14 +321,16 @@ proc headUpdateFromCL(hc: HeaderChainRef; h: Header; f: Hash32) =
     if hc.session.mode == closed:
       # Set new session environment
       hc.session = HccSession(                      # start new session
-        mode:     notified,
+        mode:     collecting,
         ante:     h,
         head:     h,
         headHash: h.computeBlockHash(),
         finHash:  f)
 
-      # Inform client app about that a new session is available.
-      hc.notify(h.number, f)
+      hc.kvt.putHeader(h.number, encodePayload h)
+
+      # Inform client app about that a new session has started.
+      hc.notify()
 
     # For logging and metrics
     hc.session.consHeadNum = h.number
@@ -334,40 +345,13 @@ func state*(hc: HeaderChainRef): HeaderChainMode =
   ## Requested system state for running function:
   ## ::
   ##    closed         -- *internal*
-  ##    notified       -- accept()
   ##    collecting     -- put()
   ##    ready          -- complete()
   ##    orphan         -- n/a
   ##    locked         -- importBlock() from FC module
   ##
   hc.session.mode
 
-proc accept*(hc: HeaderChainRef; fin: Header): bool =
-  ## Accept and activate session.
-  ##
-  ## Required system state is to run this function is `notified`.
-  ##
-  if hc.state == notified and
-     hc.baseNum < fin.number and
-     fin.number <= hc.session.head.number:
-
-    let finHash = fin.computeBlockHash()
-    if hc.session.finHash != finHash:
-      return false
-
-    hc.session.finHeader = fin
-    hc.kvt.putHeader(hc.session.head.number, encodePayload hc.session.head)
-
-    # TODO: syncer and also ForkedCache should not start session
-    # using finalizedHash, as evident from hive test
-    # the FCU head can have block number bigger than finalized block.
-    # Syncer and ForkedCache should only deal with FCU headHash.
-    # TODO: move notifyBlockHashAndNumber call to fcPutHeader
-    # where one of the headers should also the finalized header.
-    hc.chain.notifyBlockHashAndNumber(finHash, fin.number)
-
-    hc.session.mode = collecting
-    return true
 
 proc clear*(hc: HeaderChainRef) =
   ## Clear and flush current header chain cache session. This applies to an
@@ -493,6 +477,14 @@ proc put*(
     return err("Argument rev[] exceeds chain head " &
       hc.session.head.bnStr)
 
+  # Check whether the `FC` module has changed and the current antecedent
+  # already is the end of it.
+  block:
+    let newMode = hc.tryFcParent(hc.session.ante)
+    if newMode in {ready,orphan}:
+      hc.session.mode = newMode
+      return ok()
+
  # Start at the entry that is parent to `ante` (if any)
   let offset = ((lastNumber + 1) - hc.session.ante.number).int
   if offset < rev.len:
@@ -524,12 +516,18 @@ proc put*(
         return err("Parent hash mismatch for rev[" & $n & "].number=" &
           bn.bnStr)
 
-      # Check whether the current header matches the `finalised` one. If so,
-      # headers/hashes must match.
-      if hc.session.finHeader.number == bn:
-        if hc.session.finHash != hash:
-          raiseAssert RaisePfx & "finaliser not on header chain: " & bn.bnStr &
-            " hash=" & hc.session.finHash.short & " expected=" & hash.short
+      # Resolve finaliser if possible.
+      if hc.session.finHash == hash:
+        hc.session.finHeader = hdr
+
+        # Ackn: moved here from `accept()`
+        #   TODO: syncer and also ForkedCache should not start session
+        #   using finalizedHash, as evident from hive test
+        #   the FCU head can have block number bigger than finalized block.
+        #   Syncer and ForkedCache should only deal with FCU headHash.
+        #   TODO: move notifyBlockHashAndNumber call to fcPutHeader
+        #   where one of the headers should also the finalized header.
+        hc.chain.notifyBlockHashAndNumber(hash, bn)
 
       # Check whether `hdr` has a parent on the `FC` module.
       let newMode = hc.tryFcParent(hdr)
@@ -570,6 +568,9 @@ proc commit*(hc: HeaderChainRef): Result[void,string] =
 
   let baseNum = hc.baseNum
   if baseNum < hc.session.finHeader.number:
+    #
+    # So the `finalised` hash was resolved (otherwise it would have a zero
+    # block number.)
     #
     # There are two segments of the canonical chain, `base..finalised` and
     # `ante..finalised` (the latter possibly degraded) which both share at
diff --git a/execution_chain/sync/beacon/worker.nim b/execution_chain/sync/beacon/worker.nim
@@ -187,10 +187,6 @@ proc runPeer*(
     buddy.only.multiRunIdle = Moment.now() - buddy.only.stoppedMultiRun
   buddy.only.nMultiLoop.inc                     # statistics/debugging
 
-  # Resolve consensus header target when needed. It comes with a finalised
-  # header hash where we need to complete the block number.
-  await buddy.headerStagedResolveFinalizer info
-
   if not await buddy.napUnlessSomethingToFetch():
 
     # Download and process headers and blocks
diff --git a/execution_chain/sync/beacon/worker/headers_staged.nim b/execution_chain/sync/beacon/worker/headers_staged.nim
@@ -11,50 +11,17 @@
 {.push raises:[].}
 
 import
-  std/sets,
   pkg/[chronicles, chronos],
   pkg/eth/common,
   pkg/stew/[interval_set, sorted_set],
   ../worker_desc,
   ./headers_staged/[headers, staged_collect],
-  ./[headers_unproc, update]
+  ./headers_unproc
 
 # ------------------------------------------------------------------------------
 # Public functions
 # ------------------------------------------------------------------------------
 
-proc headerStagedResolveFinalizer*(
-    buddy: BeaconBuddyRef;
-    info: static[string];
-      ) {.async: (raises: []).} =
-  ## Fetch finalised beacon header if there is an update available
-  let ctx = buddy.ctx
-  if ctx.pool.lastState == idleSyncState and
-     ctx.pool.finRequest != zeroHash32:
-
-    # Grap `finRequest`. So no other peer will interfere
-    let finHash = ctx.pool.finRequest
-    ctx.pool.finRequest = zeroHash32
-
-    # Fetch header
-    const iv = BnRange.new(0,0) # dummy interval of length 1
-    let fin = (await buddy.headersFetchReversed(iv, finHash, info)).valueOr:
-      # Postponed, try later
-      ctx.pool.finRequest = finHash
-      ctx.pool.failedPeers.incl buddy.peerID
-
-      debug info & ": finalised hash not yet resolved", peer=buddy.peer,
-        finHash=finHash.short, hdrErrors=buddy.hdrErrors,
-        failedPeers=ctx.pool.failedPeers.len
-
-      # Check failed peers whether there was a limit reaced and a reset is
-      # necessary.
-      ctx.updateFailedPeersFromResolvingFinalizer info
-      return
-
-    ctx.updateFromHibernateSetTarget(fin[0], info)
-
-
 func headersStagedFetchOk*(buddy: BeaconBuddyRef): bool =
   # Helper for `worker.nim`, etc.
   0 < buddy.ctx.headersUnprocAvail() and
diff --git a/execution_chain/sync/beacon/worker/headers_staged/staged_collect.nim b/execution_chain/sync/beacon/worker/headers_staged/staged_collect.nim
@@ -132,16 +132,27 @@ proc collectAndStashOnDiskCache*(
           ctrl=buddy.ctrl.state, hdrErrors=buddy.hdrErrors, `error`=error
         break fetchHeadersBody           # error => exit block
 
-      # Antecedent `dangling` of the header cache might not be at `rev[^1]`.
-      let revLen = rev[0].number - ctx.dangling.number + 1
+      # Note that `put()` might not have used all of the `rev[]` items for
+      # updating the antecedent (aka `ctx.dangling`.) So `rev[^1]` might be
+      # an ancestor of the antecedent.
+      #
+      # By design, the unused items from `rev[]` list may savely be considered
+      # as consumed so that the next cycle can continue. In practice, if there
+      # are used `rev[]` items then the `state` will have changed which is
+      # handled in the `while` loop header clause.
+      #
+      # Other possibilities would imply that `put()` was called from several
+      # instances with oberlapping `rev[]` argument lists which is included
+      # by the administration of the `iv` argument for this function
+      # `collectAndStashOnDiskCache()`.
 
       # Update remaining range to fetch and check for end-of-loop condition
-      let newTopBefore = ivTop - revLen
+      let newTopBefore = ivTop - BlockNumber(rev.len)
       if newTopBefore < iv.minPt:
         break                            # exit while() loop
 
       ivTop = newTopBefore               # mostly results in `ivReq.minPt-1`
-      parent = rev[revLen-1].parentHash  # parent hash for next fetch request
+      parent = rev[^1].parentHash        # parent hash for next fetch request
       # End loop
 
     trace info & ": fetched and stored headers", peer, iv,
diff --git a/execution_chain/sync/beacon/worker/start_stop.nim b/execution_chain/sync/beacon/worker/start_stop.nim
@@ -18,7 +18,7 @@ import
   ../worker_desc,
   ./blocks_staged/staged_queue,
   ./headers_staged/staged_queue,
-  ./[blocks_unproc, headers_unproc]
+  ./[blocks_unproc, headers_unproc, update]
 
 type
   SyncStateData = tuple
@@ -67,15 +67,10 @@ proc setupServices*(ctx: BeaconCtxRef; info: static[string]) =
   # into `ForkedChainRef` (i.e. `ctx.pool.chain`.)
   ctx.pool.hdrCache = HeaderChainRef.init(ctx.pool.chain)
 
-  # Set up new notifier informing when the new head is available from the
-  # `CL`. If there is a new session available, the notifier is called with
-  # the hash of a finalised header that needs to be resolved. This hash is
-  # stored on the `ctx.pool` descriptor to be picked up by the next available
-  # sync peer.
-  ctx.hdrCache.start proc(hdr: BlockNumber, fin: Hash32) =
-    ctx.pool.finRequest = fin
-    info "Finalised hash registered", target=hdr.bnStr,
-      finHash=fin.short, nSyncPeers=ctx.pool.nBuddies
+  # Set up the notifier informing when a new syncer session has started.
+  ctx.hdrCache.start proc() =
+    # Activates the syncer. Work will be picked up by peers when available.
+    ctx.updateFromHibernateSetTarget info
 
   # Manual first run?
   if 0 < ctx.clReq.consHead.number:
diff --git a/execution_chain/sync/beacon/worker/update.nim b/execution_chain/sync/beacon/worker/update.nim
@@ -215,30 +215,24 @@ proc updateSyncState*(ctx: BeaconCtxRef; info: static[string]) =
 
 proc updateFromHibernateSetTarget*(
     ctx: BeaconCtxRef;
-    fin: Header;
     info: static[string];
       ) =
   ## If in hibernate mode, accept a cache session and activate syncer
   ##
   if ctx.hibernate:
-    # Clear cul-de-sac prevention registry. This applies to both, successful
-    # access handshake or error.
-    ctx.pool.failedPeers.clear()
+    let (b, t) = (ctx.chain.baseNumber, ctx.hdrCache.head.number)
 
-    if ctx.hdrCache.accept(fin):
-      let (b, t) = (ctx.chain.baseNumber, ctx.head.number)
+    # Exclude the case of a single header chain which would be `T` only
+    if b+1 < t:
+      ctx.pool.lastState = collectingHeaders    # state transition
+      ctx.hibernate = false                     # wake up
 
-      # Exclude the case of a single header chain which would be `T` only
-      if b+1 < t:
-        ctx.pool.lastState = collectingHeaders    # state transition
-        ctx.hibernate = false                     # wake up
+      # Update range
+      ctx.headersUnprocSet(b+1, t-1)
 
-        # Update range
-        ctx.headersUnprocSet(b+1, t-1)
-
-        info "Activating syncer", base=b.bnStr,
-          head=ctx.chain.latestNumber.bnStr, fin=fin.bnStr, target=t.bnStr
-        return
+      info "Activating syncer", base=b.bnStr,
+        head=ctx.chain.latestNumber.bnStr, target=t.bnStr
+      return
 
     # Failed somewhere on the way
     ctx.hdrCache.clear()
@@ -247,23 +241,6 @@ proc updateFromHibernateSetTarget*(
     head=ctx.chain.latestNumber.bnStr, state=ctx.hdrCache.state
 
 
-proc updateFailedPeersFromResolvingFinalizer*(
-    ctx: BeaconCtxRef;
-    info: static[string];
-      ) =
-  ## This function resets the finalised hash resolver if there are too many
-  ## sync peer download errors. This prevents from a potential deadlock if
-  ## the syncer is notified with bogus `(finaliser,sync-head)` data.
-  ##
-  if ctx.hibernate:
-    if fetchFinalisedHashResolverFailedPeersHwm < ctx.pool.failedPeers.len:
-      info "Abandoned resolving hash (try next)",
-        finHash=ctx.pool.finRequest.short, failedPeers=ctx.pool.failedPeers.len
-      ctx.hdrCache.clear()
-      ctx.pool.failedPeers.clear()
-      ctx.pool.finRequest = zeroHash32
-
-
 proc updateAsyncTasks*(
     ctx: BeaconCtxRef;
       ): Future[Opt[void]] {.async: (raises: []).} =
diff --git a/execution_chain/sync/beacon/worker_config.nim b/execution_chain/sync/beacon/worker_config.nim
@@ -53,12 +53,6 @@ const
 
   # ----------------------
 
-  fetchFinalisedHashResolverFailedPeersHwm* = 10
-    ## If there are more failing peers than this `hwm` when initially resolving
-    ## the finalised hash then the whole procedure gets cancelled and reset.
-    ## The system will proceed waiting for a new request to resolve a finalised
-    ## hash.
-
   fetchHeadersFailedInitialFailPeersHwm* = 30
     ## If there are more failing peers than this `hwm` right at the begining
     ## of a header chain download scrum (before any data received), then this
diff --git a/execution_chain/sync/beacon/worker_desc.nim b/execution_chain/sync/beacon/worker_desc.nim
@@ -97,7 +97,6 @@ type
     nBuddies*: int                   ## Number of active workers
     clReq*: SyncClMesg               ## Manual first target set up
     lastState*: SyncLayoutState      ## Last known layout state
-    finRequest*: Hash32              ## To be resolved before session
     hdrSync*: HeaderFetchSync        ## Syncing by linked header chains
     blkSync*: BlocksFetchSync        ## For importing/executing blocks
     nextMetricsUpdate*: Moment       ## For updating metrics
