fix: introduce mutex for state and lastCommitInfo to avoid race conditions

[beer-1]

Description

Closes: #22650

---

Author Checklist

All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.

I have...

• included the correct type prefix in the PR title, you can find examples of the prefixes below:
• confirmed ! in the type prefix if API or client breaking change
• targeted the correct branch (see PR Targeting)
• provided a link to the relevant issue or specification
• reviewed "Files changed" and left comments if necessary
• included the necessary unit and integration tests
• added a changelog entry to CHANGELOG.md
• updated the relevant documentation or specification, including comments for documenting Go code
• confirmed all CI checks have passed

Reviewers Checklist

All items are required. Please add a note if the item is not applicable and please add
your handle next to the items reviewed if you only reviewed selected items.

Please see Pull Request Reviewer section in the contributing guide for more information on how to review a pull request.

I have...

• confirmed the correct type prefix in the PR title
• confirmed all author checklist items have been addressed
• reviewed state machine logic, API design and naming, documentation is accurate, tests and test coverage

Summary by CodeRabbit

• New Features

  • Support for simulating nested messages added.
  • New Linux-only backend for the crypto/keyring module introduced.
  • Enhanced client/keys module to import hex keys via standard input.
  • Custom verification of public keys during transaction validation for ethsecp256k1.

• Improvements

  • Upgraded RocksDB libraries to support version 9.
  • Simplified integration tests by removing double context usage.

• Bug Fixes

  • Mutex lock added to prevent race conditions in the base application.
  • Simulation tests now skip when validators are dry, ensuring smoother execution.

[coderabbitai]

📝 Walkthrough

📝 Walkthrough

Walkthrough

The pull request introduces several enhancements and bug fixes across multiple modules within the Cosmos SDK. Key changes include the addition of features for simulating nested messages, a new Linux-only backend for the crypto/keyring module, and improvements to integration tests. Concurrency control is enhanced through the introduction of mutex locks to prevent race conditions in state management. The changelog has been updated to reflect these changes, and new test cases have been added to ensure the stability of the application under concurrent conditions.

Changes

File	Change Summary
CHANGELOG.md	Updated with entries for new features, improvements, and bug fixes.
baseapp/abci.go	Refactored state management methods to enhance encapsulation and dynamic state retrieval.
baseapp/abci_test.go	Added TestABCI_Race_Commit_Query to test concurrency during block finalization and query context creation.
baseapp/baseapp.go	Introduced stateMut mutex for thread-safe state management.
baseapp/test_helpers.go	Updated state access methods to use dynamic state retrieval based on execution mode.
go.mod	Added replace directive for cosmossdk.io/store to point to a local path.
store/rootmulti/store.go	Added lastCommitInfo field as atomic.Pointer[types.CommitInfo] for thread-safe access to commit information.

Assessment against linked issues

Objective	Addressed	Explanation
Address race condition between baseapp.Commit and baseapp.CreateQueryContext (#22650)	✅

Possibly related PRs

• chore: add crisis changelog #22280: The main PR introduces a new feature for simulating nested messages in the base application, which is also mentioned in the changelog update of this retrieved PR.
• fix: introduce mutex for state and lastCommitInfo to avoid race conditions #22692: The main PR includes a bug fix for adding mutex locks to prevent race conditions in the base application, which is relevant to the changes made in this retrieved PR that also addresses concurrency issues.
• fix(store/v2): don't delete future version when calling LoadVersion #22681: The main PR discusses changes to the handling of versions in the store, which aligns with the modifications in this retrieved PR that focuses on version loading behavior.
• feat(indexer/postgres)!: add basic support for header, txs and events #22695: The main PR's updates to transaction handling and error management are related to the enhancements made in this retrieved PR regarding the indexer functionality.
• chore: prepare v2 beta (2/3) #23032: The main PR's updates to dependency versions and module management are relevant to the changes in this retrieved PR that also focuses on preparing the module for beta release.

Suggested labels

C:server/v2, C:server/v2 cometbft, backport/v0.52.x

Suggested reviewers

• kocubinski
• facundomedica
• sontrinh16
• testinginprod
• tac0turtle

---

📜 Recent review details

Configuration used: .coderabbit.yml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between a054374 and af75ce5.

📒 Files selected for processing (1)

• CHANGELOG.md (1 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

CHANGELOG.md (1)

Pattern **/*.md: "Assess the documentation for misspellings, grammatical errors, missing documentation and correctness"

🔇 Additional comments (1)

CHANGELOG.md (1)

Line range hint 1-2000: Well-structured and comprehensive changelog

The CHANGELOG.md follows best practices by:

• Organizing changes by version with clear version numbers and dates
• Categorizing changes into logical sections (Breaking Changes, Features, Improvements, Bug Fixes)
• Providing detailed descriptions with PR/Issue references
• Including upgrade instructions and migration guides
• Maintaining consistent formatting throughout

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 7

🧹 Outside diff range and nitpick comments (13)

go.mod (1)

218-219: Consider documenting the temporary nature of this replace directive.

Since this replace directive is part of the race condition fix, consider moving it to the temporary replace section with a comment explaining its purpose.

 // Here are the short-lived replace from the Cosmos SDK
 // Replace here are pending PRs, or version to be tagged
-// replace (
-// 	<temporary replace>
-// )
+replace (
+    // Temporary: Using local store module for race condition fix (#22650)
+    cosmossdk.io/store => ./store
+)

CHANGELOG.md (4)

Line range hint 1-1: Add version table at the top of changelog

Consider adding a version table at the top that summarizes all v0.46.x releases with their dates and key changes for easier reference.

---

Line range hint 11-13: Fix inconsistent bullet point formatting

The bullet points use a mix of * and -. Standardize on one format throughout the document for consistency.

---

59-61: Add impact details for breaking changes

For breaking changes like the Dragonberry security fix, consider adding more details about potential impact on users and required actions.

---

Line range hint 1-1000: Fix typos and grammatical errors

Several typos and grammatical errors found throughout the document:

• "typographical" misspelled as "typograhical"
• Missing periods at end of some bullet points
• Inconsistent capitalization in section headers

store/rootmulti/store.go (1)

63-63: Naming convention for mutex variables.

Consider renaming lastCommitInfoMut to lastCommitInfoMu to align with Go conventions, where mutex variables are typically suffixed with Mu.

baseapp/baseapp.go (2)

127-127: Consider renaming stateMut to stateMutex for clarity.

According to the Uber Go Style Guide, abbreviations in variable names should be avoided to enhance readability. Renaming stateMut to stateMutex makes the purpose of the mutex clearer.

Apply this diff to improve clarity:

-	stateMut             sync.RWMutex
+	stateMutex           sync.RWMutex

---

Line range hint 583-586: Potential deadlock due to inconsistent lock ordering between app.mu and app.stateMut.

In getContextForTx, app.mu is locked before calling app.getState(mode), which in turn locks app.stateMut. If elsewhere app.stateMut is locked before attempting to acquire app.mu, this could lead to a deadlock due to inconsistent lock ordering.

Recommend reviewing the locking order to ensure that app.mu and app.stateMut are always acquired in a consistent order throughout the codebase to prevent potential deadlocks.

baseapp/abci.go (3)

609-609: Handle possible errors from CacheContext

In the assignments:

ctx, _ = app.getState(execModeFinalize).Context().CacheContext()

Ignoring the second return value without handling could overlook potential issues. Although CacheContext() may not currently return an error, future changes could introduce errors.

Consider capturing both return values explicitly for clarity:

ctx, ms := app.getState(execModeFinalize).Context().CacheContext()
// use ms if needed

Also applies to: 689-689

---

747-747: Clarify the comment for better understanding

The comment at line 747 is unclear:

// only used to handle early cancellation, for anything related to state app.getState(execModeFinalize).Context()

Consider rephrasing for clarity:

// Use ctx only for early cancellation handling. For state-related operations, use app.getState(execModeFinalize).Context()

---

1194-1194: Review the use of CacheContext

In:

ctx, _ = app.getState(execModeFinalize).Context().CacheContext()

Ensure that caching the context here is intended and that any modifications do not affect the main context unintentionally.

baseapp/abci_test.go (2)

2783-2830: Add a function comment to describe the purpose of the test

To improve code readability and maintainability, consider adding a comment before the TestABCI_Race_Commit_Query function to explain its purpose and what it is testing.

---

2796-2797: Simplify atomic counter initialization

Since the zero value of atomic.Uint64 is zero, the explicit call to counter.Store(0) is unnecessary. You can simplify the code by removing this call.

Apply the following diff:

-counter := atomic.Uint64{}
-counter.Store(0)
+var counter atomic.Uint64

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 6cfe2dc and 298d02e.

📒 Files selected for processing (7)

• CHANGELOG.md (1 hunks)
• baseapp/abci.go (21 hunks)
• baseapp/abci_test.go (2 hunks)
• baseapp/baseapp.go (7 hunks)
• baseapp/test_helpers.go (1 hunks)
• go.mod (1 hunks)
• store/rootmulti/store.go (5 hunks)

🧰 Additional context used

📓 Path-based instructions (6)

CHANGELOG.md (1)

Pattern **/*.md: "Assess the documentation for misspellings, grammatical errors, missing documentation and correctness"

baseapp/abci.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

baseapp/abci_test.go (2)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

---

Pattern **/*_test.go: "Assess the unit test code assessing sufficient code coverage for the changes associated in the pull request"

baseapp/baseapp.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

baseapp/test_helpers.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

store/rootmulti/store.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

🔇 Additional comments (20)

baseapp/test_helpers.go (2)

47-47: LGTM: Thread-safe state access implemented

The change from direct state access to using getState aligns with the PR's objective of preventing race conditions. This modification ensures thread-safe access to the state during simulations.

Let's verify the thread safety implementation:

✅ Verification successful

Thread-safe state access confirmed via RLock/RUnlock

The verification confirms that getState method properly implements thread-safety using RLock/RUnlock from stateMut. The implementation correctly protects state access across different execution modes, including the execModeFinalize used in the test helper.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that getState method uses proper synchronization
# Expected: Find mutex usage in getState implementation

ast-grep --pattern 'func (app *BaseApp) getState($_) $_ {
  $$$
}'

Length of output: 831

---

53-58: Thread-safe state access implemented, verify performance impact

The changes correctly implement thread-safe state access using getState for both check and finalize modes. This aligns with fixing the race conditions identified in issue #22650.

Let's verify the usage patterns and potential performance impact:

✅ Verification successful

Based on the search results, I can now provide a final response since I have enough information about the usage patterns of NewContextLegacy:

Thread safety changes are safe with minimal performance impact

The changes to NewContextLegacy using getState are safe because:

• The method is primarily used in test code and initialization paths, not in hot execution paths
• Main usage patterns are in:
  • Test helpers and test suites
  • App initialization and genesis setup
  • Export functionality
  • Simulation framework

The added synchronization through getState won't cause performance issues since this method isn't called in performance-critical paths or high-frequency operations.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for high-frequency calls to NewContextLegacy that might be affected by the added synchronization
# Expected: Identify critical paths that might need optimization

# Find direct calls to NewContextLegacy
rg "NewContextLegacy\(" -A 2

# Find potential high-frequency callers through NewContext
rg "NewContext\(" -A 2

Length of output: 40662

go.mod (1)

219-219: LGTM! Verify version consistency with other local modules.

The addition of the store module replace directive aligns with the existing pattern and is necessary for implementing the race condition fix. However, we should ensure version consistency.

✅ Verification successful

Let me verify the version consistency further by checking other local module replacements.

---

Version consistency verified across local module replacements

The replace directive for the store module follows the same pattern as other local module replacements (api, bank, staking, tx). All local modules use Go 1.23, and the version specified in the main go.mod (v1.1.1-0.20240418092142-896cdf1971bc) is consistent with the development nature of these changes.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check version consistency between go.mod and local store module
# Verify the store module's go.mod version matches the version specified in the main go.mod

# Get the version from main go.mod
echo "Main module store version:"
grep "cosmossdk.io/store" go.mod | head -n 1

# Get the version from local store module
echo "Local store module version:"
if [ -f "store/go.mod" ]; then
    grep "module cosmossdk.io/store" store/go.mod
fi

Length of output: 329

---

Script:

#!/bin/bash
# Check all local module replacements and their versions
echo "Main go.mod versions:"
grep "cosmossdk.io/" go.mod | grep -v "replace" | sort

echo -e "\nReplace directives:"
grep "replace cosmossdk.io/" go.mod | sort

echo -e "\nLocal module versions:"
for dir in api bank staking tx store; do
    if [ -f "$dir/go.mod" ]; then
        echo -e "\n$dir/go.mod:"
        grep "^module" "$dir/go.mod"
        grep "^go 1." "$dir/go.mod"
    fi
done

Length of output: 1573

store/rootmulti/store.go (7)

63-63: Introduction of lastCommitInfoMut for concurrency control.

Adding lastCommitInfoMut sync.RWMutex to the Store struct appropriately introduces a mutex to prevent race conditions when accessing lastCommitInfo.

---

292-294: Proper locking around lastCommitInfo assignment in loadVersion().

Locking lastCommitInfoMut before updating rs.lastCommitInfo ensures thread-safe write operations.

---

440-446: Consistent use of LastCommitInfo() in LatestVersion().

Updating LatestVersion() to use rs.LastCommitInfo() ensures safe concurrent access to lastCommitInfo.

---

448-451: Thread-safe access to lastCommitInfo via LastCommitInfo() method.

The new LastCommitInfo() method correctly implements read locking to allow safe concurrent reads of lastCommitInfo.

---

456-474: Safe access to lastCommitInfo in LastCommitID().

Using rs.LastCommitInfo() in LastCommitID() prevents data races during read operations of lastCommitInfo.

---

518-521: Ensure minimal locking when updating lastCommitInfo.Timestamp.

Holding the lock only during the assignment to lastCommitInfo.Timestamp is acceptable. Confirm that no other operations within the lock could cause delays or potential deadlocks.

---

800-802: Thread-safe retrieval of lastCommitInfo in Query().

Using rs.LastCommitInfo() in the Query() method ensures safe concurrent access and prevents race conditions.

baseapp/abci.go (9)

72-72: Good use of encapsulation with app.getState

The introduction of app.getState(execModeFinalize) enhances state management by encapsulating state retrieval, improving code maintainability and readability.

---

78-78: Ensure req.ConsensusParams is validated

While storing consensus parameters, make sure that req.ConsensusParams is not nil and contains valid data to prevent potential runtime errors.

---

90-97: Consistent Context Update for States

Updating both checkState and finalizeState contexts ensures consistency across different execution modes. This is a good practice for maintaining state integrity.

---

110-110: Initialization of Infinite Gas Meter

Setting an infinite gas meter during InitChain is appropriate to allow unrestricted operations during genesis. Ensure that this does not inadvertently persist into states where gas limits should be enforced.

---

936-939: Ensure proper mutex usage when modifying shared state

Locking app.stateMut before modifying app.finalizeBlockState is correct. Ensure that all other accesses to shared state variables are similarly protected to prevent race conditions.

---

1024-1026: Mutex locking and unlocking

Proper use of app.stateMut.Lock() and app.stateMut.Unlock() ensures thread-safe operations when modifying shared states.

---

1047-1047: Ensure ms.Write() is safe and necessary

Calling ms.Write() writes pending changes to the parent store. Confirm that this call is necessary and that any potential errors are handled appropriately.

---

1409-1409: Verify consensus parameters retrieval

Retrieving consensus parameters using app.getState(execModeFinalize).Context() should be thread-safe and consistent with the application's state at this point.

---

978-979: ⚠️ Potential issue

Accessing finalizeState without synchronization

Accessing finalizeState here may lead to race conditions if not properly synchronized. Verify that app.stateMut is held during this access.

Run the following script to identify unsynchronized accesses to app.getState:

Also applies to: 983-983

baseapp/abci_test.go (1)

2796-2797: Verify Go version compatibility for atomic.Uint64

The atomic.Uint64 type is available from Go 1.19 onwards. Ensure that the project specifies Go 1.19 or newer in its configuration to avoid compatibility issues.

Run the following script to check the Go version specified in the go.mod file:

✅ Verification successful

Go version compatibility verified for atomic.Uint64

The project uses Go 1.23.2, which fully supports atomic.Uint64 (introduced in Go 1.19). No compatibility issues exist.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check that the project requires Go 1.19 or newer.

# Look for the 'go' directive in the go.mod file
grep "^go " go.mod

Length of output: 30

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (1)

store/rootmulti/store.go (1)

514-522: Consider combining the mutex locks.

The code currently acquires and releases the mutex twice in quick succession. Consider combining these operations to reduce lock overhead:

-       rs.lastCommitInfoMut.Lock()
-       rs.lastCommitInfo = cInfo
-       rs.lastCommitInfoMut.Unlock()
-
-       rs.lastCommitInfoMut.Lock()
-       rs.lastCommitInfo.Timestamp = rs.commitHeader.Time
-       rs.lastCommitInfoMut.Unlock()
+       rs.lastCommitInfoMut.Lock()
+       rs.lastCommitInfo = cInfo
+       rs.lastCommitInfo.Timestamp = rs.commitHeader.Time
+       rs.lastCommitInfoMut.Unlock()

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between 298d02e and aa5960a.

📒 Files selected for processing (1)

• store/rootmulti/store.go (5 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

store/rootmulti/store.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

🔇 Additional comments (4)

store/rootmulti/store.go (4)

63-63: LGTM: Good choice of RWMutex for lastCommitInfo synchronization.

Using sync.RWMutex is appropriate here as it allows concurrent reads while ensuring exclusive writes, which aligns with the access patterns of lastCommitInfo.

---

292-294: LGTM: Appropriate lock scope in LoadVersion.

The mutex lock is correctly scoped to only protect the critical section (lastCommitInfo assignment), minimizing lock contention.

---

448-451: LGTM: Well-implemented thread-safe accessor.

The method correctly uses RLock/RUnlock for concurrent read access to lastCommitInfo. The defer statement ensures proper unlock even in case of panics.

---

440-446: LGTM: Consistent usage of thread-safe accessor.

All methods consistently use the thread-safe LastCommitInfo accessor, properly addressing the race condition between Commit and CreateQueryContext operations.

Also applies to: 456-474, 802-804

[coderabbitai]

Actionable comments posted: 0

🧹 Outside diff range and nitpick comments (4)

store/rootmulti/store.go (4)

63-63: Excellent use of atomic.Pointer for thread safety.

Using atomic.Pointer instead of mutex locks is a more efficient solution for this use case since the CommitInfo content itself is not modified concurrently, only the pointer is updated atomically.

This approach provides better performance than mutex locks as it:

1. Avoids lock contention
2. Allows for lock-free reads
3. Provides atomic pointer updates

---

438-443: Consider caching the atomic load result.

Multiple accesses to lastCommitInfo.Load() could be optimized by storing the result in a local variable.

-lastCommitInfo := rs.lastCommitInfo.Load()
-if lastCommitInfo == nil {
-  return GetLatestVersion(rs.db)
-}
-
-return lastCommitInfo.Version
+if info := rs.lastCommitInfo.Load(); info == nil {
+  return GetLatestVersion(rs.db)
+} else {
+  return info.Version
+}

---

510-512: Optimize multiple atomic loads.

Multiple consecutive calls to lastCommitInfo.Load() should be consolidated to a single load.

-cInfo := rs.lastCommitInfo.Load()
-cInfo.Timestamp = rs.commitHeader.Time
-
+if cInfo := rs.lastCommitInfo.Load(); cInfo != nil {
+  cInfo.Timestamp = rs.commitHeader.Time
+}

---

791-793: Consolidate atomic load operation.

The atomic load result should be cached to avoid multiple loads and null checks.

-lastCommitInfo := rs.lastCommitInfo.Load()
-if res.Height == lastCommitInfo.Version {
-  commitInfo = lastCommitInfo
+if info := rs.lastCommitInfo.Load(); info != nil && res.Height == info.Version {
+  commitInfo = info

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL

📥 Commits

Reviewing files that changed from the base of the PR and between f3b3d6e and dba4393.

📒 Files selected for processing (1)

• store/rootmulti/store.go (9 hunks)

🧰 Additional context used

📓 Path-based instructions (1)

store/rootmulti/store.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

🔇 Additional comments (1)

store/rootmulti/store.go (1)

12-12: LGTM: Required import for atomic operations.

The addition of "sync/atomic" import is necessary for the atomic pointer implementation.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (2)

baseapp/abci_test.go (1)

2797-2814: Suggestion: Provide a brief comment describing the purpose of the counter variable.
It might be helpful to document the usage of counter for developers reading this code, especially since it tracks the number of queries made.

CHANGELOG.md (1)

Line range hint 14-20: Consider adding migration guide links

While breaking changes are well documented, it would be helpful to add direct links to migration guides for major version upgrades at the top of the changelog to help users upgrade smoothly.

📜 Review details

Configuration used: .coderabbit.yml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between dba4393 and a054374.

⛔ Files ignored due to path filters (1)

• go.sum is excluded by !**/*.sum

📒 Files selected for processing (6)

• CHANGELOG.md (1 hunks)
• baseapp/abci.go (26 hunks)
• baseapp/abci_test.go (2 hunks)
• baseapp/baseapp.go (8 hunks)
• baseapp/test_helpers.go (1 hunks)
• go.mod (3 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• baseapp/test_helpers.go

🧰 Additional context used

📓 Path-based instructions (4)

baseapp/baseapp.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

baseapp/abci.go (1)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

baseapp/abci_test.go (2)

Pattern **/*.go: Review the Golang code for conformity with the Uber Golang style guide, highlighting any deviations.

---

Pattern **/*_test.go: "Assess the unit test code assessing sufficient code coverage for the changes associated in the pull request"

CHANGELOG.md (1)

Pattern **/*.md: "Assess the documentation for misspellings, grammatical errors, missing documentation and correctness"

🔇 Additional comments (39)

go.mod (1)

178-178: LGTM: Replace directives align with race condition fix.

The addition of local replace directives for cosmossdk.io/api and cosmossdk.io/store modules is appropriate, especially given that the store module is likely involved in the race condition fix between baseapp.Commit and baseapp.CreateQueryContext.

Let's verify the store module changes related to concurrency:

Also applies to: 208-208

✅ Verification successful

Let me check the specific mutex-related changes in these files to verify the race condition fix.

---

Let me check the actual changes in these files by looking at their git history to verify if they are related to the race condition fix.

---

Let me try a different approach to check the changes in the store module.

---

Let me check one more thing to verify the race condition fix between Commit and CreateQueryContext.

---

Race condition protection confirmed in store module

Based on the code analysis, I can verify that the store module has proper synchronization mechanisms in place:

1. The lastCommitInfo is protected using atomic.Pointer in rootmulti/store.go, ensuring thread-safe access between commits and queries
2. The traceContext is protected by a sync.Mutex in the same file
3. The v2 store implementation in root/store.go also shows mutex usage for synchronization

The local replace directives for cosmossdk.io/api and cosmossdk.io/store are indeed aligned with these concurrency-related implementations, particularly the atomic operations used for commit info handling.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for mutex-related changes in the store module
rg -g '*.go' -l 'sync\.Mutex|sync\.RWMutex' ./store

Length of output: 382

---

Script:

#!/bin/bash
# Check mutex-related changes in key files that may be involved in the race condition
rg -g '*.go' -B 3 -A 3 'sync\.Mutex|sync\.RWMutex' ./store/rootmulti/store.go ./store/v2/root/store.go

Length of output: 967

---

Script:

#!/bin/bash
# Get recent changes in the mutex-containing files
git log -p --no-merges -n 1 -- ./store/rootmulti/store.go ./store/v2/root/store.go

Length of output: 0

---

Script:

#!/bin/bash
# Look for commit-related functions and their synchronization
rg -g '*.go' -B 3 -A 3 'func.*Commit|CreateQueryContext' ./store/rootmulti/store.go ./store/v2/root/store.go ./store/types/store.go

Length of output: 7644

---

Script:

#!/bin/bash
# Check for atomic operations and synchronization in the store
rg -g '*.go' -B 3 -A 3 'atomic\.|sync\.' ./store/rootmulti/store.go

Length of output: 625

baseapp/abci_test.go (5)

2783-2796: No immediate issues with initial setup.
These lines demonstrate the initialization of the test suite, application, and chain. The approach seems correct.

---

2815-2817: Consider adding a WaitGroup or similar synchronization method to ensure goroutines properly terminate.
This mirrors previous feedback regarding race conditions when spawning multiple goroutines. If you decide to keep the current approach, please confirm that cancelation alone is sufficient for all production use cases.

---

2819-2825: Loop structure looks good for repeatedly committing blocks.
No concerns—ensuring that no errors remain uncaught is a good practice.

---

2827-2828: Cancelation approach is valid.
After the commits, the context is canceled, stopping the query goroutines.

---

2829-2830: Block height correctness check.
Verifies that the application’s internal height matches the expected value.

baseapp/baseapp.go (4)

123-131: Good documentation on state usage.
Noting that stateMut is used for thread safety is essential for future maintainers.

---

Line range hint 502-540: Thread-safe state initialization.
Locking stateMut here ensures safe concurrent writes to the internal state. The switch structure is clean and straightforward.

---

524-544: Proper synchronization during state clearing.
Locking and setting each state reference to nil correctly prevents stale references across concurrency boundaries.

---

666-668: Read lock for retrieving state is appropriate.
Ensures simultaneous read operations are thread-safe.

baseapp/abci.go (27)

72-72: Clarity in retrieving the finalize state.
Introduces a succinct read from the concurrency-safe getState(execModeFinalize).

---

78-78: Consensus params stored in finalize state.
The usage of finalizeState.Context() is consistent with the concurrency model.

---

90-91: Correctly initializes checkState with updated block header.
Ensures the check-state context remains in sync with the new block.

---

97-97: Maintains finalize block context during initialization.
Keeps finalizeState aligned with the same header for consistency.

---

110-110: Using an infinite gas meter for genesis transactions.
No issues, helps bootstrap genesis transitions without accidental gas failures.

---

442-443: Retrieving and updating prepareProposal state.
These lines exemplify a consistent approach to concurrency-safely accessing and updating the proposal state.

---

460-462: Block gas meter initialization.
Ensures transactions in PrepareProposal respect block gas constraints.

---

477-477: Delegation to the custom PrepareProposal handler.
Clear call to the user-defined logic for proposers.

---

535-536: Acquiring the ProcessProposal state.
Facilitates concurrency-safe logic for proposal verification.

---

555-557: Again ensuring consensus params and block gas.
Maintains consistency for computations in ProcessProposal.

---

572-572: Redirect to custom processProposal logic.
Delegation is consistent with the refactoring approach.

---

612-612: CacheContext usage for ExtendVote at initial height.
Good approach to re-use uncommitted data from InitChain.

---

693-693: Consistent logic for verifying vote extension at initial height.
Ensures the uncommitted context is accessible as well.

---

782-783: Check for nil finalize state.
This avoids a panic in replay scenarios.

---

785-785: Re-initializing finalizeState if absent.
Ensures continuing block processing even during a replay scenario.

---

789-790: Updating context with block header.
Maintains consistency for final block calculations.

---

799-799: ConsensusParams retrieval for finalizeState.
No concerns here, keeps the context current.

---

810-811: Retrieve gas meter and attach to finalize context.
Effectively enforces the current block’s gas constraints.

---

813-814: Synchronized checkState context assignment.
Ensures parallel checks share the same gas meter when appropriate.

---

842-843: Resetting block gas on each stage is consistent.
Helps avoid leftover usage from earlier phases.

---

872-873: Tracing context elegantly handled.
Casting to CacheMultiStore and resetting trace context is properly guarded.

---

1001-1001: Logical naming of context usage for commit streaming
This is consistent and easy to follow.

---

1029-1029: Clearing finalize state after commit.
Prevents stale references between blocks.

---

1032-1032: Post-commit check state preparation.
Invokes any user-defined logic for readiness in the next block.

---

1197-1197: CacheContext usage for proposals at initial height.
No issues, it ensures the context is branched safely.

---

1298-1299: Including both check and finalize states.
Verifies we can use whichever is available.

---

1413-1413: Fetching consensus params from finalize state.
Keeps pruning and retention logic in sync.

CHANGELOG.md (2)

Line range hint 1-1: Documentation follows standard changelog format and structure

The CHANGELOG follows the "Keep a Changelog" format with clear sections for Features, Improvements, Bug Fixes etc. The organization makes it easy for users to understand changes between versions.

---

Line range hint 1-1000: Verify all PR links are valid

The changelog contains many PR reference links. A script should be run to verify all links are valid and accessible.

✅ Verification successful

Based on the script results, all PR links in the changelog are accessible (returning 200 or 302 HTTP status codes). The few 301/302 redirects are expected and still resolve correctly. Let me verify a couple of the redirects to be thorough:

---

All PR links in the CHANGELOG.md are valid and accessible

All pull request links in the changelog are functioning correctly. The initial scan showed that all links return either 200 (success) or 302/301 (redirect) status codes. A follow-up check on redirecting URLs confirms they ultimately resolve successfully with 200 status codes. No broken or inaccessible links were found.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Extract and verify all PR links are accessible
grep -o 'https://github.com/cosmos/cosmos-sdk/pull/[0-9]*' CHANGELOG.md | while read -r url; do
  curl -s -o /dev/null -w "%{http_code}" "$url"
done

Length of output: 70479

---

Script:

# Check a sample of the redirecting URLs to verify they resolve correctly
curl -L -s -o /dev/null -w "%{http_code}" "https://github.com/cosmos/cosmos-sdk/pull/3129"
curl -L -s -o /dev/null -w "%{http_code}" "https://github.com/cosmos/cosmos-sdk/pull/15023"

Length of output: 189

[coderabbitai]

💡 Codebase verification

Invalid Go version specified in go.mod

The specified Go version 1.23.4 in the go.mod file is incorrect. The current latest major version of Go is 1.21.x (as of January 2025). Go versions follow semantic versioning with the format 1.MAJOR.MINOR, and version 1.23.4 does not exist and will not exist in the foreseeable future.

The version should be corrected to a valid, currently released Go version. This appears to be a typo and needs to be fixed to ensure proper build and compatibility.

🔗 Analysis chain

Verify Go version compatibility with the race condition fix.

The Go version update from 1.23.2 to 1.23.4 is a patch version change. Please ensure that this version includes any relevant fixes for race detection or concurrent operations that might benefit the race condition fix in baseapp.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check Go release notes for relevant fixes
curl -s https://go.dev/doc/devel/release | grep -A 10 "go1.23.4"

Length of output: 268