HomePhabricator
Diffusion Bitcoin ABC 06a61dcb12a4

[backport#16577] util: CBufferedFile fixes
06a61dcb12a4
Actions

Description

[backport#16577] util: CBufferedFile fixes

Summary:
PR description:

The CBufferedFile object guarantees its user is able to "rewind" the data stream (that's being read from a file) up to a certain number of bytes, as specified by the user in the constructor. This guarantee is not honored due to a bug in the SetPos method.

Such rewinding is done in LoadExternalBlockFile() (currently the only user of this object), which deserializes a series of CBlock objects. If that function encounters something unexpected in the data stream, which is coming from a blocks/blk00???.dat file, it "rewinds" to an earlier position in the stream to try to get in sync again. The CBufferedFile object does not actually rewind its file offset; it simply repositions its internal offset, nReadPos, to an earlier position within the object's private buffer; this is why there's a limit to how far the user may rewind.

If LoadExternalBlockFile() needs to rewind (call blkdat.SetPos()), the stream may not be positioned as it should be, causing errors in deserialization. This need to rewind is probably rare, which is likely why this bug hasn't been noticed already. But if this object is used elsewhere in the future, this could be a serious problem, especially as, due to the nature of the bug, the SetPos() sometimes works.

This PR adds a unit test for CBufferedFile that fails due to this bug. (Until now it has had no unit tests.) The unit test provides good documentation and examples for developers trying to understand LoadExternalBlockFile() and for future users of this object.

This PR also adds code to throw an exception from the constructor if the rewind argument is not less than the buffer size (since that doesn't make any sense).

Finally, I discovered that the object is too restrictive in one respect: When the deserialization methods call this object's read method, a check ensures that the number of bytes being requested is less than the size of the buffer (adjusting for the rewind size), else it throws an exception. This restriction is unnecessary; the object being deserialized can be larger than the buffer because multiple reads from disk can satisfy the request.

This is a backport of Core PR16577

Test Plan: ninja && ninja check

Reviewers: O1 Bitcoin ABC, #bitcoin_abc, Fabien

Reviewed By: O1 Bitcoin ABC, #bitcoin_abc, Fabien

Subscribers: Fabien

Differential Revision: https://reviews.bitcoinabc.org/D8073

Details

Provenance
Larry Ruane <larryruane@gmail.com>Authored on Oct 23 2020, 10:35
PiRKCommitted on Oct 23 2020, 10:36
abc-botPushed on Oct 23 2020, 10:40
Reviewer
Restricted Owners Package
Differential Revision
D8073: [backport#16577] util: CBufferedFile fixes
Parents
rABCb11e0d064464: doc: replace outdated OpenSSL comment in test README
Branches
Unknown
Tags
Unknown

Changes (2)

PathSize
src/
test/

rABC06a61dcb12a4

View Options

src/streams.h

Loading...
View Options

src/test/streams_tests.cpp

Loading...