Sweeper async change destination source fetching #3734
Conversation
|
👋 Thanks for assigning @TheBlueMatt as a reviewer! |
lightning/src/util/sweep.rs
Outdated
| } | ||
|
|
||
| Ok(()) | ||
| self.persist_state(&*state_lock).map_err(|e| { |
There was a problem hiding this comment.
No more sweeping in this method, all moved to a timer.
lightning/src/util/sweep.rs
Outdated
| if let Some(spending_tx) = spending_tx_opt { | ||
| self.broadcaster.broadcast_transactions(&[&spending_tx]); | ||
| } | ||
| let _ = self.persist_state(&*state_lock).map_err(|e| { |
There was a problem hiding this comment.
No more sweeping in this event handler.
| // Don't generate and broadcast if still delayed | ||
| return false; | ||
| // Prevent concurrent sweeping. | ||
| if sweeper_state.sweep_pending { |
There was a problem hiding this comment.
Added this boolean. Seemed easiest with a locked state already.
There was a problem hiding this comment.
Alternative option with AtomicBool might create a nested locks situation that can be risky?
There was a problem hiding this comment.
I'm not sure if I quite understand the issue, but whatever we do, we should def. not add a flag to the SweeperState, which is.. the sweeper state to be persisted, and should not reflect runtime-specific behavior.
There was a problem hiding this comment.
To me, state isn't necessarily limited to persistent state. I could live with some items persisted and others not. The AtomicBool option is locking unnecessarily perhaps, with nesting potentially too. Maybe I could split out the persistent part of the state in a separate struct, and group that with the runtime state. Then still a single mutex can guard all of it?
There was a problem hiding this comment.
Continued with the persistent/runtime split in a prep. commit.
| if respend_descriptors.is_empty() { | ||
| // Nothing to do. | ||
| return None; | ||
| let change_destination_script = change_destination_script_result?; |
There was a problem hiding this comment.
Todo: address risk of getting a tx with a new address every block.
There was a problem hiding this comment.
Todo: investigate what BDK does here?
There was a problem hiding this comment.
Traced through BDK a bit. It seems that there is only inflation if we actually use the address in a tx. It won't blindly regenerate addresses when called. But will double check this.
joostjager
force-pushed
the
async-sweep
branch
2 times, most recently
from
c3420ab to
d6051d9
Compare
| @@ -313,7 +313,7 @@ macro_rules! define_run_body { | |||
| $channel_manager: ident, $process_channel_manager_events: expr, | |||
| $onion_messenger: ident, $process_onion_message_handler_events: expr, | |||
| $peer_manager: ident, $gossip_sync: ident, | |||
| $sweeper: ident, | |||
| $sweeper: expr, | |||
There was a problem hiding this comment.
I think this needs to be renamed if it's not actually the sweeper but a closure.
There was a problem hiding this comment.
Good point. Renamed to $process_sweeper in line with the naming of the other closures such as process_chain_monitor_events.
| @@ -922,14 +937,18 @@ impl BackgroundProcessor { | |||
| PM: 'static + Deref + Send + Sync, | |||
| S: 'static + Deref<Target = SC> + Send + Sync, | |||
| SC: for<'b> WriteableScore<'b>, | |||
| D: 'static + Deref + Send + Sync, | |||
There was a problem hiding this comment.
Are we sure we need all these Send + Sync bounds. In #3509 we made an effort to remove a bunch of these. Lets' try not to go the other way in this PR.
There was a problem hiding this comment.
I could indeed remove the ones on the dependencies of the output sweeper.
lightning/src/util/sweep.rs
Outdated
| @@ -463,6 +449,27 @@ where | |||
| self.sweeper_state.lock().unwrap().best_block | |||
| } | |||
|
|
|||
| /// Regenerates and broadcasts the spending transaction for any outputs that are pending | |||
| pub fn regenerate_and_broadcast_spend_if_necessary_locked(&self) -> Result<(), ()> { | |||
There was a problem hiding this comment.
Why the _locked suffix? What is locked when? A pattern you'd find more often in the codebase would be to name this regenerate_and_broadcast_spends_if_necessary and add an internal to the non-pub method.
Although in this case I'm not quite getting why you split these up to begin with, only to completely rewrite them and change the entire API once again in the second commit.
There was a problem hiding this comment.
Yes, will redo this. This PR is far from final.
There was a problem hiding this comment.
Cleaned this up. It's all in one method now, showing better where we come from (original sweeper with sweeping in event handlers) and where we go to (async sweeping)
| @@ -30,7 +30,6 @@ | |||
| //! * `grind_signatures` | |||
|
|
|||
| #![cfg_attr(not(any(test, fuzzing, feature = "_test_utils")), deny(missing_docs))] | |||
| #![cfg_attr(not(any(test, feature = "_test_utils")), forbid(unsafe_code))] | |||
There was a problem hiding this comment.
Is this really necessary? Can't we find a way without the unsafe dummy waker?
There was a problem hiding this comment.
Apparently not. Discussed this with @TheBlueMatt and concluded that unsafe stands out enough in reviews to not need this extra safeguard.
| // Don't generate and broadcast if still delayed | ||
| return false; | ||
| // Prevent concurrent sweeping. | ||
| if sweeper_state.sweep_pending { |
There was a problem hiding this comment.
I'm not sure if I quite understand the issue, but whatever we do, we should def. not add a flag to the SweeperState, which is.. the sweeper state to be persisted, and should not reflect runtime-specific behavior.
joostjager
force-pushed
the
async-sweep
branch
2 times, most recently
from
90d7104 to
370d677
Compare
lightning/src/util/sweep.rs
Outdated
| sweeper: OutputSweeper<B, D, E, F, K, L, O>, | ||
| } | ||
|
|
||
| impl<B: Deref, D: Deref, E: Deref, F: Deref, K: Deref, L: Deref, O: Deref> |
There was a problem hiding this comment.
What might be good about this wrapper is that it eliminates the possibility of someone implementing async logic in combination with future poll/ready checking. This wrapper only accepts a sync trait.
joostjager
force-pushed
the
async-sweep
branch
4 times, most recently
from
a9812ea to
df47e8d
Compare
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #3734 +/- ##
==========================================
+ Coverage 89.11% 90.14% +1.02%
==========================================
Files 156 156
Lines 123435 132005 +8570
Branches 123435 132005 +8570
==========================================
+ Hits 109995 118990 +8995
+ Misses 10758 10444 -314
+ Partials 2682 2571 -111 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
joostjager
force-pushed
the
async-sweep
branch
6 times, most recently
from
f3e911e to
6cd735c
Compare
joostjager
force-pushed
the
async-sweep
branch
9 times, most recently
from
73b4076 to
0a9fffd
Compare
| @@ -656,6 +672,9 @@ use futures_util::{dummy_waker, OptionalSelector, Selector, SelectorOutput}; | |||
| /// # F: lightning::chain::Filter + Send + Sync + 'static, | |||
| /// # FE: lightning::chain::chaininterface::FeeEstimator + Send + Sync + 'static, | |||
| /// # UL: lightning::routing::utxo::UtxoLookup + Send + Sync + 'static, | |||
| /// # D: lightning::sign::ChangeDestinationSource + Send + Sync + 'static, | |||
There was a problem hiding this comment.
I don't know if it is worth keeping this example. Another thing to update besides ldk-node and ldk-sample.
To prepare for asynchronous processing of the sweep, we need to decouple the spending from the chain notifications. These notifications run in a sync context and wouldn't allow calls into an async trait. Instead we now periodically call into the sweeper, to open up the possibility to do so from an async context if desired.
Allow runtime-only state within the same mutex lock.
| @@ -36,11 +36,18 @@ use lightning::onion_message::messenger::AOnionMessenger; | |||
| use lightning::routing::gossip::{NetworkGraph, P2PGossipSync}; | |||
| use lightning::routing::scoring::{ScoreUpdate, WriteableScore}; | |||
| use lightning::routing::utxo::UtxoLookup; | |||
| use lightning::sign::{ChangeDestinationSource, OutputSpender}; | |||
| #[cfg(feature = "futures")] | |||
There was a problem hiding this comment.
With the sweeper being natively async now, is there still much use for this feature flag?
| /// This method should return a different value each time it is called, to avoid linking | ||
| /// on-chain funds controlled to the same user. | ||
| fn get_change_destination_script(&self) -> Result<ScriptBuf, ()>; | ||
| } | ||
|
|
||
| /// A wrapper around [`ChangeDestinationSource`] to allow for async calls. | ||
| pub struct ChangeDestinationSourceSyncWrapper<T: Deref>(T) |
There was a problem hiding this comment.
Looks like this only needs to be public for tests. Would be nice to make it pub(crate) when not building at least _test_utils, in that case.
There was a problem hiding this comment.
Changed. Needed to duplicate the struct definition, not sure if there is a better way?
There was a problem hiding this comment.
Sadly I don't believe so (short of a macro, which probably isn't justified here).
| @@ -755,6 +782,11 @@ where | |||
| } | |||
| } | |||
|
|
|||
| struct RuntimeSweeperState { | |||
There was a problem hiding this comment.
Is this just to avoid hitting sweep_pending in the serialization logic for SweeperState? That can be avoided by writing it as (sweep_pending, static_value, false).
There was a problem hiding this comment.
@tnull commented #3734 (comment) though.
Either way is fine for me, although I have a slight preference for the least amount of code (your suggestion).
There was a problem hiding this comment.
I don't feel particularly strongly, but in general we've tended to treat everything in memory as the "runtime state" and only consider the difference at the serialization layer.
| pub fn sweeper_async( | ||
| &self, | ||
| ) -> Arc<OutputSweeper<B, Arc<ChangeDestinationSourceSyncWrapper<D>>, E, F, K, L, O>> { | ||
| self.sweeper.clone() |
There was a problem hiding this comment.
Bleh, its a bit weird to wrap the sweeper in an Arc just so that we can expose it here. Would returning a reference suffice?
There was a problem hiding this comment.
I don't think it is possible, because we would then need to move that reference into the async bp thread? Of course there is always uncertainty - for me - around these kinds of statements in Rust.
There was a problem hiding this comment.
Hmm, its definitely possible, but its not quite as clean as I was hoping due to the tokio::spawns in the BP tests:
diff --git a/lightning-background-processor/src/lib.rs b/lightning-background-processor/src/lib.rs
index e52affecf..da3df6ecb 100644
--- a/lightning-background-processor/src/lib.rs
+++ b/lightning-background-processor/src/lib.rs
@@ -2062,5 +2062,5 @@ mod tests {
nodes[0].rapid_gossip_sync(),
nodes[0].peer_manager.clone(),
- Some(nodes[0].sweeper.sweeper_async()),
+ Some(OutputSweeperSync::sweeper_async(Arc::clone(&nodes[0].sweeper))),
nodes[0].logger.clone(),
Some(nodes[0].scorer.clone()),
@@ -2562,5 +2562,5 @@ mod tests {
nodes[0].rapid_gossip_sync(),
nodes[0].peer_manager.clone(),
- Some(nodes[0].sweeper.sweeper_async()),
+ Some(OutputSweeperSync::sweeper_async(Arc::clone(&nodes[0].sweeper))),
nodes[0].logger.clone(),
Some(nodes[0].scorer.clone()),
@@ -2776,5 +2776,5 @@ mod tests {
nodes[0].no_gossip_sync(),
nodes[0].peer_manager.clone(),
- Some(nodes[0].sweeper.sweeper_async()),
+ Some(OutputSweeperSync::sweeper_async(Arc::clone(&nodes[0].sweeper))),
nodes[0].logger.clone(),
Some(nodes[0].scorer.clone()),
diff --git a/lightning/src/sign/mod.rs b/lightning/src/sign/mod.rs
index e0d455109..cbc186e08 100644
--- a/lightning/src/sign/mod.rs
+++ b/lightning/src/sign/mod.rs
@@ -1029,4 +1029,20 @@ where
}
+/// Because this wrapper is used by the sweeper to hold an underlying change destination in a
+/// generic which requires `Deref`, we implement a dummy `Deref` here.
+///
+/// This is borderline bad practice and can occasionally result in spurious compiler errors due to
+/// infinite auto-deref recursion, but it avoids a more complicated indirection and the type is not
+/// public, so there's not really any harm.
+impl<T: Deref> Deref for ChangeDestinationSourceSyncWrapper<T>
+where
+ T::Target: ChangeDestinationSourceSync,
+{
+ type Target = Self;
+ fn deref(&self) -> &Self {
+ &self
+ }
+}
+
mod sealed {
use bitcoin::secp256k1::{Scalar, SecretKey};
diff --git a/lightning/src/util/sweep.rs b/lightning/src/util/sweep.rs
index 3b0ce5e5e..f8f4626ac 100644
--- a/lightning/src/util/sweep.rs
+++ b/lightning/src/util/sweep.rs
@@ -928,5 +928,5 @@ where
O::Target: OutputSpender,
{
- sweeper: Arc<OutputSweeper<B, Arc<ChangeDestinationSourceSyncWrapper<D>>, E, F, K, L, O>>,
+ sweeper: OutputSweeper<B, ChangeDestinationSourceSyncWrapper<D>, E, F, K, L, O>,
}
@@ -948,5 +948,5 @@ where
) -> Self {
let change_destination_source =
- Arc::new(ChangeDestinationSourceSyncWrapper::new(change_destination_source));
+ ChangeDestinationSourceSyncWrapper::new(change_destination_source);
let sweeper = OutputSweeper::new(
@@ -960,5 +960,5 @@ where
logger,
);
- Self { sweeper: Arc::new(sweeper) }
+ Self { sweeper }
}
@@ -997,9 +997,13 @@ where
/// Returns the inner async sweeper for testing purposes.
+ ///
+ /// Note that this leaks the provided `Arc`, keeping this sweeper in memory forever.
#[cfg(any(test, feature = "_test_utils"))]
pub fn sweeper_async(
- &self,
- ) -> Arc<OutputSweeper<B, Arc<ChangeDestinationSourceSyncWrapper<D>>, E, F, K, L, O>> {
- self.sweeper.clone()
+ us: Arc<Self>,
+ ) -> &'static OutputSweeper<B, ChangeDestinationSourceSyncWrapper<D>, E, F, K, L, O> {
+ let res = unsafe { core::mem::transmute(&us.sweeper) };
+ core::mem::forget(us);
+ res
}
}synchronous wrappers for usage in a sync context.
Few things:
|
In general we don't care too much about API breaks between versions. Obviously we don't want to require downstream projects completely overhaul their integration with LDK just for the sake of it, but this change should basically just require adding "Sync" in a few places, so it should be trivial.
Sounds correct to me.
Indeed, I see no reason not to remove the futures feature from BP. |
| pub fn sweeper_async( | ||
| &self, | ||
| ) -> Arc<OutputSweeper<B, Arc<ChangeDestinationSourceSyncWrapper<D>>, E, F, K, L, O>> { | ||
| self.sweeper.clone() |
There was a problem hiding this comment.
Hmm, its definitely possible, but its not quite as clean as I was hoping due to the tokio::spawns in the BP tests:
diff --git a/lightning-background-processor/src/lib.rs b/lightning-background-processor/src/lib.rs
index e52affecf..da3df6ecb 100644
--- a/lightning-background-processor/src/lib.rs
+++ b/lightning-background-processor/src/lib.rs
@@ -2062,5 +2062,5 @@ mod tests {
nodes[0].rapid_gossip_sync(),
nodes[0].peer_manager.clone(),
- Some(nodes[0].sweeper.sweeper_async()),
+ Some(OutputSweeperSync::sweeper_async(Arc::clone(&nodes[0].sweeper))),
nodes[0].logger.clone(),
Some(nodes[0].scorer.clone()),
@@ -2562,5 +2562,5 @@ mod tests {
nodes[0].rapid_gossip_sync(),
nodes[0].peer_manager.clone(),
- Some(nodes[0].sweeper.sweeper_async()),
+ Some(OutputSweeperSync::sweeper_async(Arc::clone(&nodes[0].sweeper))),
nodes[0].logger.clone(),
Some(nodes[0].scorer.clone()),
@@ -2776,5 +2776,5 @@ mod tests {
nodes[0].no_gossip_sync(),
nodes[0].peer_manager.clone(),
- Some(nodes[0].sweeper.sweeper_async()),
+ Some(OutputSweeperSync::sweeper_async(Arc::clone(&nodes[0].sweeper))),
nodes[0].logger.clone(),
Some(nodes[0].scorer.clone()),
diff --git a/lightning/src/sign/mod.rs b/lightning/src/sign/mod.rs
index e0d455109..cbc186e08 100644
--- a/lightning/src/sign/mod.rs
+++ b/lightning/src/sign/mod.rs
@@ -1029,4 +1029,20 @@ where
}
+/// Because this wrapper is used by the sweeper to hold an underlying change destination in a
+/// generic which requires `Deref`, we implement a dummy `Deref` here.
+///
+/// This is borderline bad practice and can occasionally result in spurious compiler errors due to
+/// infinite auto-deref recursion, but it avoids a more complicated indirection and the type is not
+/// public, so there's not really any harm.
+impl<T: Deref> Deref for ChangeDestinationSourceSyncWrapper<T>
+where
+ T::Target: ChangeDestinationSourceSync,
+{
+ type Target = Self;
+ fn deref(&self) -> &Self {
+ &self
+ }
+}
+
mod sealed {
use bitcoin::secp256k1::{Scalar, SecretKey};
diff --git a/lightning/src/util/sweep.rs b/lightning/src/util/sweep.rs
index 3b0ce5e5e..f8f4626ac 100644
--- a/lightning/src/util/sweep.rs
+++ b/lightning/src/util/sweep.rs
@@ -928,5 +928,5 @@ where
O::Target: OutputSpender,
{
- sweeper: Arc<OutputSweeper<B, Arc<ChangeDestinationSourceSyncWrapper<D>>, E, F, K, L, O>>,
+ sweeper: OutputSweeper<B, ChangeDestinationSourceSyncWrapper<D>, E, F, K, L, O>,
}
@@ -948,5 +948,5 @@ where
) -> Self {
let change_destination_source =
- Arc::new(ChangeDestinationSourceSyncWrapper::new(change_destination_source));
+ ChangeDestinationSourceSyncWrapper::new(change_destination_source);
let sweeper = OutputSweeper::new(
@@ -960,5 +960,5 @@ where
logger,
);
- Self { sweeper: Arc::new(sweeper) }
+ Self { sweeper }
}
@@ -997,9 +997,13 @@ where
/// Returns the inner async sweeper for testing purposes.
+ ///
+ /// Note that this leaks the provided `Arc`, keeping this sweeper in memory forever.
#[cfg(any(test, feature = "_test_utils"))]
pub fn sweeper_async(
- &self,
- ) -> Arc<OutputSweeper<B, Arc<ChangeDestinationSourceSyncWrapper<D>>, E, F, K, L, O>> {
- self.sweeper.clone()
+ us: Arc<Self>,
+ ) -> &'static OutputSweeper<B, ChangeDestinationSourceSyncWrapper<D>, E, F, K, L, O> {
+ let res = unsafe { core::mem::transmute(&us.sweeper) };
+ core::mem::forget(us);
+ res
}
}
This PR converts
OutputSweeperto take an asyncChangeDestinationSourceimplementation. This allows a (remote) address fetch call to run without blocking chain notifications.Furthermore the changes demonstrates how LDK could be written in a natively async way, and still allow usage from a sync context using wrappers.
Part of #3540