Fixing user registration concurrency issues #2157
Conversation
| // false certificates and try to trick other users. To prevent | ||
| // that, peers verify that anything that is written to the | ||
| // certificate store is signed by the owner. | ||
| if (!this._permsData) { |
There was a problem hiding this comment.
Why is this here? Why would we trigger a "finished issuing certificates" event if we are not the owner?
There was a problem hiding this comment.
Not sure, I think I'm mostly reorganizing existing code here.
There was a problem hiding this comment.
The name is misleading. AFAIK it's only used for resolving promise in csrReplicatedPromiseMap in storage.
packages/state-manager/src/sagas/identity/savedOwnerCertificate/savedOwnerCertificate.saga.ts
Show resolved
Hide resolved
| @@ -424,6 +438,7 @@ export class ConnectionsManagerService extends EventEmitter implements OnModuleI | |||
| this.serverIoProvider.io.emit(SocketActionTypes.PEER_DISCONNECTED, payload) | |||
| }) | |||
| await this.storageService.init(_peerId) | |||
| await this.registrationService.init(this.storageService) | |||
There was a problem hiding this comment.
This is not a recommended way to inject dependencies.
Please add StorageModule in Registration Module:
imports: [StorageModule]
And in RegistartionService add:
private readonly storageService: StorageService
|
Have you been able to reproduce this issue on your machine? |
| @@ -318,11 +318,25 @@ export class ConnectionsManagerService extends EventEmitter implements OnModuleI | |||
| await this.launchCommunity(payload) | |||
| this.logger(`Created and launched community ${payload.id}`) | |||
| this.serverIoProvider.io.emit(SocketActionTypes.NEW_COMMUNITY, { id: payload.id }) | |||
|
|
|||
| if (!payload.ownerCsr || !payload.permsData) { | |||
| throw new Error("Owner CSR and PermsData required to create community!") | |||
There was a problem hiding this comment.
This would just show "abnormal backend termination" js error in application. Maybe it should be a return instead and emitError?
|
And one very important thing - e2e tests should pass successfully on at least one system before merge. |
Hi Wiktor, I hope you're doing well my friend. I can. I wrote a little comment in the code, I can quote it here.
I think it might be interested to discuss how race conditions can happen in Javascript. Do you have any thoughts? |
|
I've learned a bit more about how JS works today and I think there is more to it. I don't think it will necessarily run |
|
With the latest commit, I think it should fix things. Here is the basic idea: If we want to be sure that we always write code in a specific order, then we can make sure that we do that. For example, if we always want the registration service and storage service to be ready to go before we register the owner certificate so that we are sure that we save it, then we can organize the code in that way. If we want to be sure that we always register one group of certificates at a time, save them to storage, and then register the next group, we can write the code in that way. We don't necessarily need tests to be able to look at the code and say yea there's a race condition. But in order to recognize where potential issue are, we need to understand how JS works at a deep enough level. So with these changes, in the But in general, if you run |
|
How does it differ from the |
|
I checked the e2e multiple test locally from your branch and I think something is broken: |
| await this.issueCertificates(payload) | ||
| (payload: { csrs: string[]; certificates: string[]; id: string }) => { | ||
| this.registrationEvents.push({ csrs: payload.csrs, id: payload.id }) | ||
| this.tryRegisterNextUserCertificates() |
There was a problem hiding this comment.
tryRegisterNextUserCertificates() is async function so it needs to be awaited. Otherwise it's a fire-and-forget, which is a very bad idea
I think something may be broken again with our eslint. Do you not get an error on this line? It should complain about missing await. If you did want to actually fire-and-forget you should write it as
void this.tryRegisterNextUserCertificates()
but this is asually a very bad idea and rarely the behaviour you want
There was a problem hiding this comment.
I think
new Promise(something).then(another),
is equivalent to
test = async () => {
await something
another
}
and where the Promise body, something is entirely synchronous. I think it's only the promise callback, another, which is added to the event loop and is asynchronous. So if there is no line after an await, I don't think the await does anything. I don't think the async keyword actually makes the function async. It's still synchronous unless there is a promise callback or I/O callback or timer. I've been reading a bit more about how JS works internally and posted a lot of links in the Slack internal channel. I also wrote some interested tests over here: develop...race
I was confused myself and so I started diving into it a bit more. I don't have the whole picture and am likely still confused about many things, but this is my latest understanding
A situation like this I think is a little bit different:
test = async () => {
await something
}
test2 = async () => {
await test
another
}
Where the solo await in test does matter. But I don't think EventEmitter uses await at all
There was a problem hiding this comment.
So if there is no line after an await, I don't think the await does anything. I don't think the async keyword actually makes the function async
It's actually the opposite.
If you don't await this means that that the outer Promise will fire immediately. If you await the inner Promise the outer promise will wait for the inner one.
Even more importantly, if inner Promise throws a failure:
a) with await the outer Promise will be a failuer
b) without await the outer Promise will succeed and the failure from inner Promise will hit the generic error handler of the process
This second point is the main reason for always awaiting stuff. Without it, error handling is a nightmare.
| @@ -18,32 +22,15 @@ export class RegistrationService extends EventEmitter implements OnModuleInit { | |||
| onModuleInit() { | |||
| this.on( | |||
| RegistrationEvents.REGISTER_USER_CERTIFICATE, | |||
| async (payload: { csrs: string[]; certificates: string[]; id: string }) => { | |||
| await this.issueCertificates(payload) | |||
| (payload: { csrs: string[]; certificates: string[]; id: string }) => { | |||
There was a problem hiding this comment.
this should still be async function
| // @ts-ignore | ||
| registrationService.storageService = { certificatesStore: store } | ||
|
|
||
| registrationService.onModuleInit() |
|
|
||
| // Apparently, JS will run each function to completion. So assuming | ||
| // we do not have multiple threads, this function should run to | ||
| // completion before it is called again. Because we take the CSRs |
There was a problem hiding this comment.
this is inaccurate
JS will run the function synchronously until the first await statement.
It's a cool excercise to look up the actual implementation of this in C-node.
What happens underneath is that await is actually almost synonymous to yield. Async functions are really generators that "generate" Promises. Whenever Promise is returned, the handler applies to it's then() callback the logic that effectively calls next(resultOfPreviousPromise) on the generator.
If you think about it in these terms it becomes obvious what will and what will not get interrupted
| if (!this.storageService) { | ||
| throw new Error("Storage Service must be initialized before the Registration Service") | ||
| } | ||
| console.log("Registering user certificates") |
There was a problem hiding this comment.
didn't we refactor everthing to use nest logger for logging? If so, please fix this
| // that, peers verify that anything that is written to the | ||
| // certificate store is signed by the owner. | ||
| if (!this._permsData) { | ||
| if (payload.id) this.emit(RegistrationEvents.FINISHED_ISSUING_CERTIFICATES_FOR_ID, { id: payload.id }) |
There was a problem hiding this comment.
I'm starting to think eslint is completely off in this project. Is it not requesting that you wrap this in brackets?
| @@ -53,15 +40,26 @@ export class RegistrationService extends EventEmitter implements OnModuleInit { | |||
| } | |||
| } | |||
|
|
|||
| public async registerOwnerCertificate(payload: RegisterOwnerCertificatePayload): Promise<void> { | |||
| public async registerOwnerCertificate(payload: RegisterOwnerCertificatePayload): Promise<string | undefined> { | |||
There was a problem hiding this comment.
string | undefined is annoying type to work with
For functions that return stuff conditionally it's generally recommended to go with string | null
| hiddenService: identity.hiddenService, | ||
| certs: { | ||
| // Hacking, perhaps make certs.certificate optional | ||
| certificate: identity.userCertificate || '', |
There was a problem hiding this comment.
call it bikeshedding on my part but || is a logic operator, so there is problem with how it's typed
I highly recommend using ?? instead
I'm not really sure, I'd love to walk through the code with you so we can have a better understanding. Ah looking at it more, I think I can see: quiet/packages/backend/src/nest/storage/certificatesRequestsStore.ts Lines 49 to 63 in b9d1ca1 Unless there is something awaiting the actual 'replicated' event function itself, then I don't think it really matters what awaits you have in there, they only affect the order of operations inside the function. When a new 'replicated' event arrives it will just run the function again. I don't think EventEmitter uses await or anything async. And here we can see on the OrbitDB side of things where the event is emitted: I think we could fix this existing code a bit honestly and be done with that aspect. But I also think it might be worth it to refactor a bit like in this PR where we move the synchronization complexity closer to where it matters, which is in the registration service so that's it's self contained and no other service needs to be concerned about it. Instead of doing the promise thing here, I've used a queue in this PR. I still would love to walk through this stuff with you. I think it's fascinating! I love understanding how things work at deeper levels. And again I could be totally wrong about all of this stuff. And I don't really care about being right or wrong, I'm just interested in getting closer to the truth and everytime I can uncover something new, I think that's wonderful. |
With this I disagree*, but:
Yes, I think I even like your refactor better as it seems more clean and self-explanatory but my point was to raise a question whether it affects the issue we're trying to fix here. I think it doesn't, because it just reinvents something that's been there already. *you're right about 'replicated' callback event being executed simultaneously, but it awaits certain promise defined on a higher scope, before proceeding with the event emitter. In other words, it starts executing but is being held on a condition managed by the nodejs's event loop so it effectively won't do anything meaningful until the next tick. |
|
@siepra I see, thanks for catching that! |
Pull Request Checklist
(Optional) Mobile checklist
Please ensure you completed the following checks if you did any changes to the mobile package: