Add sync mechanism to prevent background crashes and fix ndb reopen order

This adds a sync mechanism in Ndb.swift to coordinate certain usage of
nostrdb.c calls and the need to close nostrdb due to app lifecycle
requirements. Furthermore, it fixes the order of operations when
re-opening NostrDB, to avoid race conditions where a query uses an older
Ndb generation.

This sync mechanism allows multiple queries to happen simultaneously
(from the Swift-side), while preventing ndb from simultaneously closing
during such usages. It also does that while keeping the Ndb interface
sync and nonisolated, which keeps the API easy to use from
Swift/SwiftUI and allows for parallel operations to occur.

If Swift Actors were to be used (e.g. creating an NdbActor), the Ndb.swift
interface would change in such a way that it would propagate the need for
several changes throughout the codebase, including loading logic in
some ViewModels. Furthermore, it would likely decrease performance by
forcing Ndb.swift operations to run sequentially when they could run in
parallel.

A changelog is not needed since the background crashes were not widely
spread in the last public release.

Changelog-None
Closes: #3245
Signed-off-by: Daniel D’Aquino <[email protected]>

Author: danieldaquino

damus.xcodeproj/project.pbxproj

@@ -1668,6 +1668,10 @@
 		D74EC8522E1856B70091DC51 /* NonCopyableLinkedList.swift in Sources */ = {isa = PBXBuildFile; fileRef = D74EC84E2E1856AF0091DC51 /* NonCopyableLinkedList.swift */; };
 		D74F430A2B23F0BE00425B75 /* DamusPurple.swift in Sources */ = {isa = PBXBuildFile; fileRef = D74F43092B23F0BE00425B75 /* DamusPurple.swift */; };
 		D74F430C2B23FB9B00425B75 /* StoreObserver.swift in Sources */ = {isa = PBXBuildFile; fileRef = D74F430B2B23FB9B00425B75 /* StoreObserver.swift */; };
+		D75154BF2EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */ = {isa = PBXBuildFile; fileRef = D75154BE2EC5910600BF2CB2 /* NdbUseLock.swift */; };
+		D75154C02EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */ = {isa = PBXBuildFile; fileRef = D75154BE2EC5910600BF2CB2 /* NdbUseLock.swift */; };
+		D75154C12EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */ = {isa = PBXBuildFile; fileRef = D75154BE2EC5910600BF2CB2 /* NdbUseLock.swift */; };
+		D75154C22EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */ = {isa = PBXBuildFile; fileRef = D75154BE2EC5910600BF2CB2 /* NdbUseLock.swift */; };
 		D753CEAA2BE9DE04001C3A5D /* MutingTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = D753CEA92BE9DE04001C3A5D /* MutingTests.swift */; };
 		D755B28D2D3E7D8800BBEEFA /* NIP37Draft.swift in Sources */ = {isa = PBXBuildFile; fileRef = D755B28C2D3E7D7D00BBEEFA /* NIP37Draft.swift */; };
 		D755B28E2D3E7D8800BBEEFA /* NIP37Draft.swift in Sources */ = {isa = PBXBuildFile; fileRef = D755B28C2D3E7D7D00BBEEFA /* NIP37Draft.swift */; };
@@ -2767,6 +2771,7 @@
 		D74EC84E2E1856AF0091DC51 /* NonCopyableLinkedList.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = NonCopyableLinkedList.swift; sourceTree = "<group>"; };
 		D74F43092B23F0BE00425B75 /* DamusPurple.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = DamusPurple.swift; sourceTree = "<group>"; };
 		D74F430B2B23FB9B00425B75 /* StoreObserver.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = StoreObserver.swift; sourceTree = "<group>"; };
+		D75154BE2EC5910600BF2CB2 /* NdbUseLock.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = NdbUseLock.swift; sourceTree = "<group>"; };
 		D753CEA92BE9DE04001C3A5D /* MutingTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = MutingTests.swift; sourceTree = "<group>"; };
 		D755B28C2D3E7D7D00BBEEFA /* NIP37Draft.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = NIP37Draft.swift; sourceTree = "<group>"; };
 		D76556D52B1E6C08001B0CCC /* DamusPurpleWelcomeView.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = DamusPurpleWelcomeView.swift; sourceTree = "<group>"; };
@@ -3299,6 +3304,7 @@
 		4C9054862A6AEB4500811EEC /* nostrdb */ = {
 			isa = PBXGroup;
 			children = (
+				D75154BE2EC5910600BF2CB2 /* NdbUseLock.swift */,
 				D74EC84E2E1856AF0091DC51 /* NonCopyableLinkedList.swift */,
 				D733F9E42D92C75C00317B11 /* UnownedNdbNote.swift */,
 				D7F5630F2DEE71BB008509DE /* NdbFilter.swift */,
@@ -5740,6 +5746,7 @@
 				4CC6AA792CAB688500989CEF /* sha256.c in Sources */,
 				4CC6AA7B2CAB688500989CEF /* likely.c in Sources */,
 				4CC6AA7F2CAB688500989CEF /* htable.c in Sources */,
+				D75154C02EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */,
 				4CC6AA862CAB688500989CEF /* list.c in Sources */,
 				4CC6AA872CAB688500989CEF /* utf8.c in Sources */,
 				4CC6AA892CAB688500989CEF /* debug.c in Sources */,
@@ -6781,6 +6788,7 @@
 				82D6FC3A2CD99F7900C925F4 /* WideEventView.swift in Sources */,
 				82D6FC3B2CD99F7900C925F4 /* LongformView.swift in Sources */,
 				82D6FC3C2CD99F7900C925F4 /* LongformPreview.swift in Sources */,
+				D75154C22EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */,
 				82D6FC3D2CD99F7900C925F4 /* EventShell.swift in Sources */,
 				82D6FC3E2CD99F7900C925F4 /* MentionView.swift in Sources */,
 				82D6FC3F2CD99F7900C925F4 /* EventLoaderView.swift in Sources */,
@@ -7206,6 +7214,7 @@
 				D73E5F302C6A97F4007EB227 /* EventProfile.swift in Sources */,
 				D73E5F312C6A97F4007EB227 /* EventMenu.swift in Sources */,
 				D73E5F322C6A97F4007EB227 /* EventMutingContainerView.swift in Sources */,
+				D75154C12EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */,
 				D73E5F332C6A97F4007EB227 /* ZapEvent.swift in Sources */,
 				5C8F97362EB46145009399B1 /* LiveStreamView.swift in Sources */,
 				D73E5F342C6A97F4007EB227 /* TextEvent.swift in Sources */,
@@ -7470,6 +7479,7 @@
 				4CC6AAC52CAB688500989CEF /* likely.c in Sources */,
 				4CC6AAC92CAB688500989CEF /* htable.c in Sources */,
 				4CC6AAD02CAB688500989CEF /* list.c in Sources */,
+				D75154BF2EC5910A00BF2CB2 /* NdbUseLock.swift in Sources */,
 				4CC6AAD12CAB688500989CEF /* utf8.c in Sources */,
 				4CC6AAD32CAB688500989CEF /* debug.c in Sources */,
 				4CC6AAD42CAB688500989CEF /* str.c in Sources */,

nostrdb/Ndb.swift

@@ -7,6 +7,7 @@
 
 import Foundation
 import OSLog
+import Synchronization
 
 fileprivate let APPLICATION_GROUP_IDENTIFIER = "group.com.damus"
 
@@ -34,6 +35,7 @@ class Ndb {
     var generation: Int
     private var closed: Bool
     private var callbackHandler: Ndb.CallbackHandler
+    let ndbAccessLock: Ndb.UseLockProtocol = initLock()
 
     private static let DEFAULT_WRITER_SCRATCH_SIZE: Int32 = 2097152;  // 2mb scratch size for the writer thread, it should match with the one specified in nostrdb.c
 
@@ -158,6 +160,7 @@ class Ndb {
         self.ndb = db
         self.closed = false
         self.callbackHandler = callbackHandler
+        self.ndbAccessLock.markNdbOpen()
     }
 
     private static func migrate_db_location_if_needed() throws {
@@ -207,6 +210,12 @@ class Ndb {
         self.callbackHandler = Ndb.CallbackHandler()
     }
 
+    
+    // MARK: - Syncing use of the `ndb` C object
+    // This is done to prevent race conditions where one thread is using ndb (e.g. querying), while another thread is closing ndb.
+    
+    
+    
     /// Mark NostrDB as "closed" without actually closing it.
     /// Useful when shutting down tasks that use NostrDB while avoiding new tasks from using it.
     func markClosed() {
@@ -216,10 +225,13 @@ class Ndb {
     func close() {
         guard !self.is_closed else { return }
         self.closed = true
-        print("txn: CLOSING NOSTRDB")
-        ndb_destroy(self.ndb.ndb)
-        self.generation += 1
-        print("txn: NOSTRDB CLOSED")
+        try! self.ndbAccessLock.waitUntilNdbCanClose(thenClose: {
+            print("txn: CLOSING NOSTRDB")
+            ndb_destroy(self.ndb.ndb)
+            self.generation += 1
+            print("txn: NOSTRDB CLOSED")
+            return false
+        }, maxTimeout: .milliseconds(2000))
     }
 
     func reopen() -> Bool {
@@ -229,9 +241,10 @@ class Ndb {
         }
 
         print("txn: NOSTRDB REOPENED (gen \(generation))")
-
+        
+        self.ndb = db   // Set the new DB before marking it as open to prevent access to the old DB
         self.closed = false
-        self.ndb = db
+        self.ndbAccessLock.markNdbOpen()
         return true
     }
 
@@ -628,32 +641,35 @@ class Ndb {
     ///   - maxResults: Maximum number of results to return
     /// - Returns: Array of note keys matching the filters
     /// - Throws: NdbStreamError if the query fails
-    func query<Y>(with txn: NdbTxn<Y>, filters: [NdbFilter], maxResults: Int) throws(NdbStreamError) -> [NoteKey] {
-        guard !self.is_closed else { throw .ndbClosed }
-        let filtersPointer = UnsafeMutablePointer<ndb_filter>.allocate(capacity: filters.count)
-        defer { filtersPointer.deallocate() }
-        
-        for (index, ndbFilter) in filters.enumerated() {
-            filtersPointer.advanced(by: index).pointee = ndbFilter.ndbFilter
-        }
-        
-        let count = UnsafeMutablePointer<Int32>.allocate(capacity: 1)
-        defer { count.deallocate() }
-        
-        let results = UnsafeMutablePointer<ndb_query_result>.allocate(capacity: maxResults)
-        defer { results.deallocate() }
-        
-        guard !self.is_closed else { throw .ndbClosed }
-        guard ndb_query(&txn.txn, filtersPointer, Int32(filters.count), results, Int32(maxResults), count) == 1 else {
-            throw NdbStreamError.initialQueryFailed
-        }
-        
-        var noteIds: [NoteKey] = []
-        for i in 0..<count.pointee {
-            noteIds.append(results.advanced(by: Int(i)).pointee.note_id)
-        }
-        
-        return noteIds
+    func query<Y>(with txn: NdbTxn<Y>, filters: [NdbFilter], maxResults: Int) throws -> [NoteKey] {
+        guard !self.is_closed else { throw NdbStreamError.ndbClosed }
+        return try self.ndbAccessLock.keepNdbOpen(during: {
+            guard txn.generation == self.generation else { throw NdbStreamError.cannotOpenTransaction }
+            
+            let filtersPointer = UnsafeMutablePointer<ndb_filter>.allocate(capacity: filters.count)
+            defer { filtersPointer.deallocate() }
+            
+            for (index, ndbFilter) in filters.enumerated() {
+                filtersPointer.advanced(by: index).pointee = ndbFilter.ndbFilter
+            }
+            
+            let count = UnsafeMutablePointer<Int32>.allocate(capacity: 1)
+            defer { count.deallocate() }
+            
+            let results = UnsafeMutablePointer<ndb_query_result>.allocate(capacity: maxResults)
+            defer { results.deallocate() }
+            
+            guard ndb_query(&txn.txn, filtersPointer, Int32(filters.count), results, Int32(maxResults), count) == 1 else {
+                throw NdbStreamError.initialQueryFailed
+            }
+            
+            var noteIds: [NoteKey] = []
+            for i in 0..<count.pointee {
+                noteIds.append(results.advanced(by: Int(i)).pointee.note_id)
+            }
+            
+            return noteIds
+        }, maxWaitTimeout: .milliseconds(500))
     }
 
     /// Safe wrapper around `ndb_subscribe` that handles all pointer management
@@ -1002,4 +1018,3 @@ func getDebugCheckedRoot<T: FlatBufferObject>(byteBuffer: inout ByteBuffer) thro
 func remove_file_prefix(_ str: String) -> String {
     return str.replacingOccurrences(of: "file://", with: "")
 }
-

nostrdb/NdbTxn.swift

@@ -43,16 +43,18 @@ class NdbTxn<T>: RawNdbTxnAccessible {
             let new_ref_count = ref_count + 1
             Thread.current.threadDictionary["ndb_txn_ref_count"] = new_ref_count
         } else {
-            self.txn = ndb_txn()
             guard !ndb.is_closed else { return nil }
-            self.generation = ndb.generation
-            #if TXNDEBUG
-            txn_count += 1
-            #endif
-            let ok = ndb_begin_query(ndb.ndb.ndb, &self.txn) != 0
-            if !ok {
-                return nil
-            }
+            let txn: ndb_txn? = try? ndb.ndbAccessLock.keepNdbOpen(during: {
+                var txn = ndb_txn()
+                #if TXNDEBUG
+                txn_count += 1
+                #endif
+                let ok = ndb_begin_query(ndb.ndb.ndb, &txn) != 0
+                guard ok else { return nil }
+                return txn
+            }, maxWaitTimeout: .milliseconds(200))
+            guard let txn else { return nil }
+            self.txn = txn
             self.generation = ndb.generation
             Thread.current.threadDictionary["ndb_txn"] = self.txn
             Thread.current.threadDictionary["ndb_txn_ref_count"] = 1
@@ -97,7 +99,13 @@ class NdbTxn<T>: RawNdbTxnAccessible {
             Thread.current.threadDictionary["ndb_txn_ref_count"] = new_ref_count
             assert(new_ref_count >= 0, "NdbTxn reference count should never be below zero")
             if new_ref_count <= 0 {
-                ndb_end_query(&self.txn)
+                guard !ndb.is_closed else {
+                    print("txn: not closing. db closed")
+                    return
+                }
+                _ = try? ndb.ndbAccessLock.keepNdbOpen(during: {
+                    ndb_end_query(&self.txn)
+                }, maxWaitTimeout: .milliseconds(200))
                 Thread.current.threadDictionary.removeObject(forKey: "ndb_txn")
                 Thread.current.threadDictionary.removeObject(forKey: "ndb_txn_ref_count")
             }