github.com/aquanetwork/aquachain@v1.7.8/trie/secure_trie.go (about) 1 // Copyright 2015 The aquachain Authors 2 // This file is part of the aquachain library. 3 // 4 // The aquachain library is free software: you can redistribute it and/or modify 5 // it under the terms of the GNU Lesser General Public License as published by 6 // the Free Software Foundation, either version 3 of the License, or 7 // (at your option) any later version. 8 // 9 // The aquachain library is distributed in the hope that it will be useful, 10 // but WITHOUT ANY WARRANTY; without even the implied warranty of 11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 // GNU Lesser General Public License for more details. 13 // 14 // You should have received a copy of the GNU Lesser General Public License 15 // along with the aquachain library. If not, see <http://www.gnu.org/licenses/>. 16 17 package trie 18 19 import ( 20 "fmt" 21 22 "gitlab.com/aquachain/aquachain/common" 23 "gitlab.com/aquachain/aquachain/common/log" 24 ) 25 26 // SecureTrie wraps a trie with key hashing. In a secure trie, all 27 // access operations hash the key using keccak256. This prevents 28 // calling code from creating long chains of nodes that 29 // increase the access time. 30 // 31 // Contrary to a regular trie, a SecureTrie can only be created with 32 // New and must have an attached database. The database also stores 33 // the preimage of each key. 34 // 35 // SecureTrie is not safe for concurrent use. 36 type SecureTrie struct { 37 trie Trie 38 hashKeyBuf [common.HashLength]byte 39 secKeyCache map[string][]byte 40 secKeyCacheOwner *SecureTrie // Pointer to self, replace the key cache on mismatch 41 } 42 43 // NewSecure creates a trie with an existing root node from a backing database 44 // and optional intermediate in-memory node pool. 45 // 46 // If root is the zero hash or the sha3 hash of an empty string, the 47 // trie is initially empty. Otherwise, New will panic if db is nil 48 // and returns MissingNodeError if the root node cannot be found. 49 // 50 // Accessing the trie loads nodes from the database or node pool on demand. 51 // Loaded nodes are kept around until their 'cache generation' expires. 52 // A new cache generation is created by each call to Commit. 53 // cachelimit sets the number of past cache generations to keep. 54 func NewSecure(root common.Hash, db *Database, cachelimit uint16) (*SecureTrie, error) { 55 if db == nil { 56 panic("trie.NewSecure called without a database") 57 } 58 trie, err := New(root, db) 59 if err != nil { 60 return nil, err 61 } 62 trie.SetCacheLimit(cachelimit) 63 return &SecureTrie{trie: *trie}, nil 64 } 65 66 // Get returns the value for key stored in the trie. 67 // The value bytes must not be modified by the caller. 68 func (t *SecureTrie) Get(key []byte) []byte { 69 res, err := t.TryGet(key) 70 if err != nil { 71 log.Error(fmt.Sprintf("Unhandled trie error: %v", err)) 72 } 73 return res 74 } 75 76 // TryGet returns the value for key stored in the trie. 77 // The value bytes must not be modified by the caller. 78 // If a node was not found in the database, a MissingNodeError is returned. 79 func (t *SecureTrie) TryGet(key []byte) ([]byte, error) { 80 return t.trie.TryGet(t.hashKey(key)) 81 } 82 83 // Update associates key with value in the trie. Subsequent calls to 84 // Get will return value. If value has length zero, any existing value 85 // is deleted from the trie and calls to Get will return nil. 86 // 87 // The value bytes must not be modified by the caller while they are 88 // stored in the trie. 89 func (t *SecureTrie) Update(key, value []byte) { 90 if err := t.TryUpdate(key, value); err != nil { 91 log.Error(fmt.Sprintf("Unhandled trie error: %v", err)) 92 } 93 } 94 95 // TryUpdate associates key with value in the trie. Subsequent calls to 96 // Get will return value. If value has length zero, any existing value 97 // is deleted from the trie and calls to Get will return nil. 98 // 99 // The value bytes must not be modified by the caller while they are 100 // stored in the trie. 101 // 102 // If a node was not found in the database, a MissingNodeError is returned. 103 func (t *SecureTrie) TryUpdate(key, value []byte) error { 104 hk := t.hashKey(key) 105 err := t.trie.TryUpdate(hk, value) 106 if err != nil { 107 return err 108 } 109 t.getSecKeyCache()[string(hk)] = common.CopyBytes(key) 110 return nil 111 } 112 113 // Delete removes any existing value for key from the trie. 114 func (t *SecureTrie) Delete(key []byte) { 115 if err := t.TryDelete(key); err != nil { 116 log.Error(fmt.Sprintf("Unhandled trie error: %v", err)) 117 } 118 } 119 120 // TryDelete removes any existing value for key from the trie. 121 // If a node was not found in the database, a MissingNodeError is returned. 122 func (t *SecureTrie) TryDelete(key []byte) error { 123 hk := t.hashKey(key) 124 delete(t.getSecKeyCache(), string(hk)) 125 return t.trie.TryDelete(hk) 126 } 127 128 // GetKey returns the sha3 preimage of a hashed key that was 129 // previously used to store a value. 130 func (t *SecureTrie) GetKey(shaKey []byte) []byte { 131 if key, ok := t.getSecKeyCache()[string(shaKey)]; ok { 132 return key 133 } 134 key, _ := t.trie.db.preimage(common.BytesToHash(shaKey)) 135 return key 136 } 137 138 // Commit writes all nodes and the secure hash pre-images to the trie's database. 139 // Nodes are stored with their sha3 hash as the key. 140 // 141 // Committing flushes nodes from memory. Subsequent Get calls will load nodes 142 // from the database. 143 func (t *SecureTrie) Commit(onleaf LeafCallback) (root common.Hash, err error) { 144 // Write all the pre-images to the actual disk database 145 if len(t.getSecKeyCache()) > 0 { 146 t.trie.db.lock.Lock() 147 for hk, key := range t.secKeyCache { 148 t.trie.db.insertPreimage(common.BytesToHash([]byte(hk)), key) 149 } 150 t.trie.db.lock.Unlock() 151 152 t.secKeyCache = make(map[string][]byte) 153 } 154 // Commit the trie to its intermediate node database 155 return t.trie.Commit(onleaf) 156 } 157 158 func (t *SecureTrie) Hash() common.Hash { 159 return t.trie.Hash() 160 } 161 162 func (t *SecureTrie) Root() []byte { 163 return t.trie.Root() 164 } 165 166 func (t *SecureTrie) Copy() *SecureTrie { 167 cpy := *t 168 return &cpy 169 } 170 171 // NodeIterator returns an iterator that returns nodes of the underlying trie. Iteration 172 // starts at the key after the given start key. 173 func (t *SecureTrie) NodeIterator(start []byte) NodeIterator { 174 return t.trie.NodeIterator(start) 175 } 176 177 // hashKey returns the hash of key as an ephemeral buffer. 178 // The caller must not hold onto the return value because it will become 179 // invalid on the next call to hashKey or secKey. 180 func (t *SecureTrie) hashKey(key []byte) []byte { 181 h := newHasher(0, 0, nil) 182 h.sha.Reset() 183 h.sha.Write(key) 184 buf := h.sha.Sum(t.hashKeyBuf[:0]) 185 returnHasherToPool(h) 186 return buf 187 } 188 189 // getSecKeyCache returns the current secure key cache, creating a new one if 190 // ownership changed (i.e. the current secure trie is a copy of another owning 191 // the actual cache). 192 func (t *SecureTrie) getSecKeyCache() map[string][]byte { 193 if t != t.secKeyCacheOwner { 194 t.secKeyCacheOwner = t 195 t.secKeyCache = make(map[string][]byte) 196 } 197 return t.secKeyCache 198 }