ape: Add morph chain cache #1044
8 changed files with 99 additions and 34 deletions
|
@ -24,6 +24,7 @@ import (
|
||||||
blobovniczaconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/engine/shard/blobstor/blobovnicza"
|
blobovniczaconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/engine/shard/blobstor/blobovnicza"
|
||||||
fstreeconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/engine/shard/blobstor/fstree"
|
fstreeconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/engine/shard/blobstor/fstree"
|
||||||
loggerconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/logger"
|
loggerconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/logger"
|
||||||
|
morphconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/morph"
|
||||||
nodeconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/node"
|
nodeconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/node"
|
||||||
objectconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/object"
|
objectconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/object"
|
||||||
replicatorconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/replicator"
|
replicatorconfig "git.frostfs.info/TrueCloudLab/frostfs-node/cmd/frostfs-node/config/replicator"
|
||||||
|
@ -68,6 +69,7 @@ import (
|
||||||
objectSDK "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
|
objectSDK "git.frostfs.info/TrueCloudLab/frostfs-sdk-go/object"
|
||||||
"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
|
"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/user"
|
||||||
"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/version"
|
"git.frostfs.info/TrueCloudLab/frostfs-sdk-go/version"
|
||||||
|
policy_engine "git.frostfs.info/TrueCloudLab/policy-engine/pkg/engine"
|
||||||
policy_client "git.frostfs.info/TrueCloudLab/policy-engine/pkg/morph/policy"
|
policy_client "git.frostfs.info/TrueCloudLab/policy-engine/pkg/morph/policy"
|
||||||
"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
|
"github.com/nspcc-dev/neo-go/pkg/crypto/keys"
|
||||||
neogoutil "github.com/nspcc-dev/neo-go/pkg/util"
|
neogoutil "github.com/nspcc-dev/neo-go/pkg/util"
|
||||||
|
@ -1074,10 +1076,16 @@ func initAccessPolicyEngine(_ context.Context, c *cfg) {
|
||||||
)
|
)
|
||||||
}
|
}
|
||||||
|
|
||||||
morphRuleStorage := policy_client.NewContractStorage(
|
var morphRuleStorage policy_engine.MorphRuleChainStorageReader
|
||||||
|
morphRuleStorage = policy_client.NewContractStorage(
|
||||||
client.NewSwitchRPCGuardedActor(c.cfgMorph.client),
|
client.NewSwitchRPCGuardedActor(c.cfgMorph.client),
|
||||||
c.cfgObject.cfgAccessPolicyEngine.policyContractHash)
|
c.cfgObject.cfgAccessPolicyEngine.policyContractHash)
|
||||||
|
|
||||||
|
cacheSize := morphconfig.APEChainCacheSize(c.appCfg)
|
||||||
|
if cacheSize > 0 {
|
||||||
|
morphRuleStorage = newMorphCache(morphRuleStorage, int(cacheSize), morphconfig.CacheTTL(c.appCfg))
|
||||||
|
}
|
||||||
|
|
||||||
ape := newAccessPolicyEngine(morphRuleStorage, localOverrideDB)
|
ape := newAccessPolicyEngine(morphRuleStorage, localOverrideDB)
|
||||||
c.cfgObject.cfgAccessPolicyEngine.accessPolicyEngine = ape
|
c.cfgObject.cfgAccessPolicyEngine.accessPolicyEngine = ape
|
||||||
|
|
||||||
|
|
|
@ -25,6 +25,9 @@ const (
|
||||||
|
|
||||||
// SwitchIntervalDefault is a default Neo RPCs switch interval.
|
// SwitchIntervalDefault is a default Neo RPCs switch interval.
|
||||||
SwitchIntervalDefault = 2 * time.Minute
|
SwitchIntervalDefault = 2 * time.Minute
|
||||||
|
|
||||||
|
// APEChainCacheSizeDefault is a default value of APE chain cache.
|
||||||
|
APEChainCacheSizeDefault = 10_000
|
||||||
)
|
)
|
||||||
|
|
||||||
var errNoMorphEndpoints = errors.New("no morph chain RPC endpoints, see `morph.rpc_endpoint` section")
|
var errNoMorphEndpoints = errors.New("no morph chain RPC endpoints, see `morph.rpc_endpoint` section")
|
||||||
|
@ -99,3 +102,15 @@ func SwitchInterval(c *config.Config) time.Duration {
|
||||||
|
|
||||||
return SwitchIntervalDefault
|
return SwitchIntervalDefault
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// APEChainCacheSize returns the value of "ape_chain_cache_size" config parameter
|
||||||
|
// from "morph" section.
|
||||||
|
//
|
||||||
|
// Returns 0 if the value is not positive integer.
|
||||||
|
// Returns APEChainCacheSizeDefault if the value is missing.
|
||||||
|
func APEChainCacheSize(c *config.Config) uint32 {
|
||||||
|
if c.Sub(subsection).Value("ape_chain_cache_size") == nil {
|
||||||
|
return APEChainCacheSizeDefault
|
||||||
|
}
|
||||||
|
return config.Uint32Safe(c.Sub(subsection), "ape_chain_cache_size")
|
||||||
|
}
|
||||||
|
|
|
@ -19,6 +19,7 @@ func TestMorphSection(t *testing.T) {
|
||||||
require.Equal(t, morphconfig.DialTimeoutDefault, morphconfig.DialTimeout(empty))
|
require.Equal(t, morphconfig.DialTimeoutDefault, morphconfig.DialTimeout(empty))
|
||||||
require.Equal(t, morphconfig.CacheTTLDefault, morphconfig.CacheTTL(empty))
|
require.Equal(t, morphconfig.CacheTTLDefault, morphconfig.CacheTTL(empty))
|
||||||
require.Equal(t, morphconfig.SwitchIntervalDefault, morphconfig.SwitchInterval(empty))
|
require.Equal(t, morphconfig.SwitchIntervalDefault, morphconfig.SwitchInterval(empty))
|
||||||
|
require.Equal(t, uint32(morphconfig.APEChainCacheSizeDefault), morphconfig.APEChainCacheSize(empty))
|
||||||
})
|
})
|
||||||
|
|
||||||
const path = "../../../../config/example/node"
|
const path = "../../../../config/example/node"
|
||||||
|
@ -39,6 +40,7 @@ func TestMorphSection(t *testing.T) {
|
||||||
require.Equal(t, 30*time.Second, morphconfig.DialTimeout(c))
|
require.Equal(t, 30*time.Second, morphconfig.DialTimeout(c))
|
||||||
require.Equal(t, 15*time.Second, morphconfig.CacheTTL(c))
|
require.Equal(t, 15*time.Second, morphconfig.CacheTTL(c))
|
||||||
require.Equal(t, 3*time.Minute, morphconfig.SwitchInterval(c))
|
require.Equal(t, 3*time.Minute, morphconfig.SwitchInterval(c))
|
||||||
|
require.Equal(t, uint32(100000), morphconfig.APEChainCacheSize(c))
|
||||||
}
|
}
|
||||||
|
|
||||||
configtest.ForEachFileType(path, fileConfigTest)
|
configtest.ForEachFileType(path, fileConfigTest)
|
||||||
|
|
|
@ -2,11 +2,16 @@ package main
|
||||||
|
|
||||||
import (
|
import (
|
||||||
"sync"
|
"sync"
|
||||||
|
"time"
|
||||||
|
|
||||||
"git.frostfs.info/TrueCloudLab/frostfs-node/pkg/ape/chainbase"
|
"git.frostfs.info/TrueCloudLab/frostfs-node/pkg/ape/chainbase"
|
||||||
"git.frostfs.info/TrueCloudLab/policy-engine/pkg/chain"
|
"git.frostfs.info/TrueCloudLab/policy-engine/pkg/chain"
|
||||||
"git.frostfs.info/TrueCloudLab/policy-engine/pkg/engine"
|
"git.frostfs.info/TrueCloudLab/policy-engine/pkg/engine"
|
||||||
"git.frostfs.info/TrueCloudLab/policy-engine/pkg/resource"
|
"git.frostfs.info/TrueCloudLab/policy-engine/pkg/resource"
|
||||||
|
"github.com/google/uuid"
|
||||||
|
"github.com/hashicorp/golang-lru/v2/expirable"
|
||||||
|
"github.com/nspcc-dev/neo-go/pkg/neorpc/result"
|
||||||
|
"github.com/nspcc-dev/neo-go/pkg/util"
|
||||||
)
|
)
|
||||||
|
|
||||||
type accessPolicyEngine struct {
|
type accessPolicyEngine struct {
|
||||||
|
@ -14,15 +19,54 @@ type accessPolicyEngine struct {
|
||||||
|
|
||||||
chainRouter engine.ChainRouter
|
chainRouter engine.ChainRouter
|
||||||
|
|
||||||
morphChainStorage engine.MorphRuleChainStorage
|
|
||||||
|
|
||||||
localOverrideDatabase chainbase.LocalOverrideDatabase
|
localOverrideDatabase chainbase.LocalOverrideDatabase
|
||||||
}
|
}
|
||||||
|
|
||||||
var _ engine.LocalOverrideEngine = (*accessPolicyEngine)(nil)
|
var _ engine.MorphRuleChainStorageReader = (*morphAPEChainCache)(nil)
|
||||||
|
|
||||||
|
type morphAPEChainCacheKey struct {
|
||||||
|
name chain.Name
|
||||||
|
target engine.Target
|
||||||
|
}
|
||||||
|
|
||||||
|
type morphAPEChainCache struct {
|
||||||
|
source engine.MorphRuleChainStorageReader
|
||||||
|
cache *expirable.LRU[morphAPEChainCacheKey, []*chain.Chain]
|
||||||
|
}
|
||||||
|
|
||||||
|
func newMorphCache(source engine.MorphRuleChainStorageReader, size int, ttl time.Duration) engine.MorphRuleChainStorageReader {
|
||||||
|
return &morphAPEChainCache{
|
||||||
|
source: source,
|
||||||
|
cache: expirable.NewLRU(size, func(morphAPEChainCacheKey, []*chain.Chain) {}, ttl),
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
func (m *morphAPEChainCache) GetAdmin() (util.Uint160, error) {
|
||||||
|
return m.source.GetAdmin()
|
||||||
|
}
|
||||||
|
|
||||||
|
func (m *morphAPEChainCache) ListMorphRuleChains(name chain.Name, target engine.Target) ([]*chain.Chain, error) {
|
||||||
|
key := morphAPEChainCacheKey{name: name, target: target}
|
||||||
|
result, found := m.cache.Get(key)
|
||||||
|
if found {
|
||||||
|
return result, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
result, err := m.source.ListMorphRuleChains(name, target)
|
||||||
|
if err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
m.cache.Add(key, result)
|
||||||
|
return result, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func (m *morphAPEChainCache) ListTargetsIterator(targetType engine.TargetType) (uuid.UUID, result.Iterator, error) {
|
||||||
|
return m.source.ListTargetsIterator(targetType)
|
||||||
|
}
|
||||||
|
|
||||||
func newAccessPolicyEngine(
|
func newAccessPolicyEngine(
|
||||||
morphChainStorage engine.MorphRuleChainStorage,
|
morphChainStorage engine.MorphRuleChainStorageReader,
|
||||||
localOverrideDatabase chainbase.LocalOverrideDatabase,
|
localOverrideDatabase chainbase.LocalOverrideDatabase,
|
||||||
) *accessPolicyEngine {
|
) *accessPolicyEngine {
|
||||||
return &accessPolicyEngine{
|
return &accessPolicyEngine{
|
||||||
|
@ -31,8 +75,6 @@ func newAccessPolicyEngine(
|
||||||
localOverrideDatabase,
|
localOverrideDatabase,
|
||||||
),
|
),
|
||||||
|
|
||||||
morphChainStorage: morphChainStorage,
|
|
||||||
|
|
||||||
localOverrideDatabase: localOverrideDatabase,
|
localOverrideDatabase: localOverrideDatabase,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
@ -44,13 +86,6 @@ func (a *accessPolicyEngine) IsAllowed(name chain.Name, target engine.RequestTar
|
||||||
return a.chainRouter.IsAllowed(name, target, r)
|
return a.chainRouter.IsAllowed(name, target, r)
|
||||||
}
|
}
|
||||||
|
|
||||||
func (a *accessPolicyEngine) MorphRuleChainStorage() engine.MorphRuleChainStorage {
|
|
||||||
a.mtx.Lock()
|
|
||||||
defer a.mtx.Unlock()
|
|
||||||
|
|
||||||
return a.morphChainStorage
|
|
||||||
}
|
|
||||||
|
|
||||||
func (a *accessPolicyEngine) LocalStorage() engine.LocalOverrideStorage {
|
func (a *accessPolicyEngine) LocalStorage() engine.LocalOverrideStorage {
|
||||||
a.mtx.Lock()
|
a.mtx.Lock()
|
||||||
defer a.mtx.Unlock()
|
defer a.mtx.Unlock()
|
||||||
|
|
|
@ -70,6 +70,7 @@ FROSTFS_MORPH_RPC_ENDPOINT_0_ADDRESS="wss://rpc1.morph.frostfs.info:40341/ws"
|
||||||
FROSTFS_MORPH_RPC_ENDPOINT_0_PRIORITY=0
|
FROSTFS_MORPH_RPC_ENDPOINT_0_PRIORITY=0
|
||||||
FROSTFS_MORPH_RPC_ENDPOINT_1_ADDRESS="wss://rpc2.morph.frostfs.info:40341/ws"
|
FROSTFS_MORPH_RPC_ENDPOINT_1_ADDRESS="wss://rpc2.morph.frostfs.info:40341/ws"
|
||||||
FROSTFS_MORPH_RPC_ENDPOINT_1_PRIORITY=2
|
FROSTFS_MORPH_RPC_ENDPOINT_1_PRIORITY=2
|
||||||
|
FROSTFS_MORPH_APE_CHAIN_CACHE_SIZE=100000
|
||||||
|
|
||||||
# API Client section
|
# API Client section
|
||||||
FROSTFS_APICLIENT_DIAL_TIMEOUT=15s
|
FROSTFS_APICLIENT_DIAL_TIMEOUT=15s
|
||||||
|
|
|
@ -110,7 +110,8 @@
|
||||||
"address": "wss://rpc2.morph.frostfs.info:40341/ws",
|
"address": "wss://rpc2.morph.frostfs.info:40341/ws",
|
||||||
"priority": 2
|
"priority": 2
|
||||||
}
|
}
|
||||||
]
|
],
|
||||||
|
"ape_chain_cache_size": 100000
|
||||||
},
|
},
|
||||||
"apiclient": {
|
"apiclient": {
|
||||||
"dial_timeout": "15s",
|
"dial_timeout": "15s",
|
||||||
|
|
|
@ -94,6 +94,7 @@ morph:
|
||||||
priority: 0
|
priority: 0
|
||||||
- address: wss://rpc2.morph.frostfs.info:40341/ws
|
- address: wss://rpc2.morph.frostfs.info:40341/ws
|
||||||
priority: 2
|
priority: 2
|
||||||
|
ape_chain_cache_size: 100000
|
||||||
|
|
||||||
apiclient:
|
apiclient:
|
||||||
dial_timeout: 15s # timeout for FrostFS API client connection
|
dial_timeout: 15s # timeout for FrostFS API client connection
|
||||||
|
|
|
@ -12,19 +12,19 @@ There are some custom types used for brevity:
|
||||||
|
|
||||||
# Structure
|
# Structure
|
||||||
|
|
||||||
| Section | Description |
|
| Section | Description |
|
||||||
|--------------|---------------------------------------------------------|
|
|------------------------|---------------------------------------------------------------------|
|
||||||
| `logger` | [Logging parameters](#logger-section) |
|
| `logger` | [Logging parameters](#logger-section) |
|
||||||
| `pprof` | [PProf configuration](#pprof-section) |
|
| `pprof` | [PProf configuration](#pprof-section) |
|
||||||
| `prometheus` | [Prometheus metrics configuration](#prometheus-section) |
|
| `prometheus` | [Prometheus metrics configuration](#prometheus-section) |
|
||||||
| `control` | [Control service configuration](#control-section) |
|
| `control` | [Control service configuration](#control-section) |
|
||||||
| `contracts` | [Override FrostFS contracts hashes](#contracts-section) |
|
| `contracts` | [Override FrostFS contracts hashes](#contracts-section) |
|
||||||
| `morph` | [N3 blockchain client configuration](#morph-section) |
|
| `morph` | [N3 blockchain client configuration](#morph-section) |
|
||||||
| `apiclient` | [FrostFS API client configuration](#apiclient-section) |
|
| `apiclient` | [FrostFS API client configuration](#apiclient-section) |
|
||||||
| `policer` | [Policer service configuration](#policer-section) |
|
| `policer` | [Policer service configuration](#policer-section) |
|
||||||
| `replicator` | [Replicator service configuration](#replicator-section) |
|
| `replicator` | [Replicator service configuration](#replicator-section) |
|
||||||
| `storage` | [Storage engine configuration](#storage-section) |
|
| `storage` | [Storage engine configuration](#storage-section) |
|
||||||
| `runtime` | [Runtime configuration](#runtime-section) |
|
| `runtime` | [Runtime configuration](#runtime-section) |
|
||||||
|
|
||||||
|
|
||||||
# `control` section
|
# `control` section
|
||||||
|
@ -139,6 +139,7 @@ contracts:
|
||||||
morph:
|
morph:
|
||||||
dial_timeout: 30s
|
dial_timeout: 30s
|
||||||
cache_ttl: 15s
|
cache_ttl: 15s
|
||||||
|
ape_chain_cache_size: 10000
|
||||||
rpc_endpoint:
|
rpc_endpoint:
|
||||||
- address: wss://rpc1.morph.frostfs.info:40341/ws
|
- address: wss://rpc1.morph.frostfs.info:40341/ws
|
||||||
priority: 1
|
priority: 1
|
||||||
|
@ -147,12 +148,13 @@ morph:
|
||||||
switch_interval: 2m
|
switch_interval: 2m
|
||||||
```
|
```
|
||||||
|
|
||||||
| Parameter | Type | Default value | Description |
|
| Parameter | Type | Default value | Description |
|
||||||
|-------------------|-----------------------------------------------------------|------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------|
|
| ---------------------- | --------------------------------------------------------- | ---------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|
||||||
| `dial_timeout` | `duration` | `5s` | Timeout for dialing connections to N3 RPCs. |
|
| `dial_timeout` | `duration` | `5s` | Timeout for dialing connections to N3 RPCs. |
|
||||||
| `cache_ttl` | `duration` | Morph block time | Sidechain cache TTL value (min interval between similar calls).<br/>Negative value disables caching.<br/>Cached entities: containers, container lists, eACL tables. |
|
| `cache_ttl` | `duration` | Morph block time | Sidechain cache TTL value (min interval between similar calls).<br/>Negative value disables caching.<br/>Cached entities: containers, container lists, eACL tables. |
|
||||||
| `rpc_endpoint` | list of [endpoint descriptions](#rpc_endpoint-subsection) | | Array of endpoint descriptions. |
|
| `rpc_endpoint` | list of [endpoint descriptions](#rpc_endpoint-subsection) | | Array of endpoint descriptions. |
|
||||||
| `switch_interval` | `duration` | `2m` | Time interval between the attempts to connect to the highest priority RPC node if the connection is not established yet. |
|
| `switch_interval` | `duration` | `2m` | Time interval between the attempts to connect to the highest priority RPC node if the connection is not established yet. |
|
||||||
|
| `ape_chain_cache_size` | `int` | `10000` | Size of the morph cache for APE chains. |
|
||||||
|
|
||||||
## `rpc_endpoint` subsection
|
## `rpc_endpoint` subsection
|
||||||
| Parameter | Type | Default value | Description |
|
| Parameter | Type | Default value | Description |
|
||||||
|
|
Loading…
Reference in a new issue