[commonware-storage/mmr] less restrictive in-mem-mmr forgetting #484
Conversation
roberto-bayardo
force-pushed
the
improve-mmr-forgetting
branch
10 times, most recently
from
a2d6750 to
bf64d3e
Compare
roberto-bayardo
changed the title
storage/src/mmr/iterator.rs
Outdated
| oldest_remembered_node_pos: u64, | ||
| ) -> u64 { | ||
| for (peak_pos, height) in peak_iterator { | ||
| if peak_pos >= oldest_remembered_node_pos { |
There was a problem hiding this comment.
nit: I like the idea of continuing on peak_pos < oldest_remembered_node_pos to reduce nesting
There was a problem hiding this comment.
me too, changed.
storage/src/mmr/iterator.rs
Outdated
| return oldest_remembered_node_pos; | ||
| } | ||
| } | ||
| 0 // mmr is empty |
There was a problem hiding this comment.
nit: I think we should be more careful about this case? Couldn't you also hit here if each peak_pos is < oldest_remembered_node_pos? I think we should handle those differently.
There was a problem hiding this comment.
In a valid MMR, the very last node is always a peak. So this wouldn't happen, unless the MMR is empty, or oldest_remembered_node_pos is specified incorrectly.
There was a problem hiding this comment.
I think I'm referring to the latter case. It "shouldn't" happen but I think we should consider returning an error if it does.
There was a problem hiding this comment.
I see. I have made it panic(), is that OK vs returning error? I think of this like an array out of bounds condition.
There was a problem hiding this comment.
if it should never ever happen, I think assert/panic makes sense.
storage/src/mmr/iterator.rs
Outdated
| 0 // mmr is empty | ||
| } | ||
|
|
||
| /// Returns the position of the oldest node whose hash will be required to prove inclusion of |
storage/src/mmr/iterator.rs
Outdated
| /// Forgetting this position will render the node with position `provable_pos` unprovable. | ||
| pub(crate) fn oldest_required_proof_pos(peak_iterator: PeakIterator, provable_pos: u64) -> u64 { | ||
| for (peak_pos, height) in peak_iterator { | ||
| if peak_pos >= provable_pos { |
There was a problem hiding this comment.
nit: again prefer continue on <
storage/src/mmr/iterator.rs
Outdated
| return provable_pos; | ||
| } | ||
| } | ||
| 0 // mmr is empty |
There was a problem hiding this comment.
Like above, want to be careful with this condition when peak_iterator is non-zero
There was a problem hiding this comment.
responded above
|
|
||
| // The hashes of the MMR's peaks that are older than oldest_remembered_pos, keyed by their | ||
| // position. | ||
| old_peaks: HashMap<u64, H::Digest>, |
There was a problem hiding this comment.
Ah, ok so I was on-track with my questions about separating peak tracking 👍
storage/src/mmr/mem.rs
Outdated
| /// Forgotten nodes will no longer be provable, nor will some nodes that follow them in some | ||
| /// cases. Use forget_max() to guarantee a desired node (and all that follow it) will remain | ||
| /// provable after forgetting. | ||
| pub fn forget_to_pos(&mut self, pos: u64) { |
There was a problem hiding this comment.
I wonder if we want this one to be public (could be called forget_unchecked). Seems better to corral users to either forget_all (which I think should be called forget_max) or forget_max (which I think should be called forget_to_pos).
There was a problem hiding this comment.
I find forget_all to be more descriptive/literal than forget_max for the case where we forget everything. I think forget_max may just be too ambiguous. Still trying to think of a better name though...
There was a problem hiding this comment.
Alright I've changed "forget_max" to just plain old "forget", left forget_to_pos named as is but reduced its visiblity to internal to the crate only. WDYT?
There was a problem hiding this comment.
I think its definitely an improvement. 👍
Not sure how I feel about forget_all vs forget_max but that's your call. Definitely "good enough" now.
storage/src/mmr/journaled.rs
Outdated
| @@ -85,7 +85,7 @@ impl<B: Blob, E: RStorage<B>, H: Hasher> Mmr<B, E, H> { | |||
| let item = journal.read(i).await?; | |||
| vec.push(item); | |||
| } | |||
| let mem_mmr = MemMmr::init(vec, oldest_peak); | |||
| let mem_mmr = MemMmr::init(vec, oldest_peak, vec![]); | |||
There was a problem hiding this comment.
Oh hmm, not in this case, since we're bootstrapping with all nodes starting from the very oldest peak. But we probably don't want to do this, and instead bootstrap in a "forget_all" state.
There was a problem hiding this comment.
oh how weird, seems I managed to edit your comment with my reply.
There was a problem hiding this comment.
changed to bootstrap in the "forget_all" state (in which case there are old peaks).
storage/src/mmr/journaled.rs
Outdated
| @@ -85,7 +85,7 @@ impl<B: Blob, E: RStorage<B>, H: Hasher> Mmr<B, E, H> { | |||
| let item = journal.read(i).await?; | |||
| vec.push(item); | |||
There was a problem hiding this comment.
Recommend calling vec something more descriptive.
There was a problem hiding this comment.
have reworked this code to bootstrap in the "forget_all" state, with more descriptive names.
roberto-bayardo
force-pushed
the
improve-mmr-forgetting
branch
2 times, most recently
from
0818788 to
c31e780
Compare
roberto-bayardo
force-pushed
the
improve-mmr-forgetting
branch
from
300a62a to
94c718d
Compare
storage/src/mmr/iterator.rs
Outdated
| if parent_pos == provable_pos { | ||
| // If we hit the node we are trying to prove while walking the path, then no | ||
| // older nodes are required to prove it. | ||
| println!("HELLO!!!!"); |
There was a problem hiding this comment.
We should remove this
There was a problem hiding this comment.
hehe, you think? Leftover from my coverage debugging...
storage/src/mmr/iterator.rs
Outdated
| return oldest_remembered_node_pos; | ||
| } | ||
| } | ||
| 0 // mmr is empty |
There was a problem hiding this comment.
I think I'm referring to the latter case. It "shouldn't" happen but I think we should consider returning an error if it does.
Codecov ReportAttention: Patch coverage is
@@ Coverage Diff @@
## main #484 +/- ##
==========================================
+ Coverage 94.25% 94.30% +0.05%
==========================================
Files 97 97
Lines 28213 28372 +159
==========================================
+ Hits 26591 26756 +165
+ Misses 1622 1616 -6
... and 2 files with indirect coverage changes Continue to review full report in Codecov by Sentry.
|
Addresses #459