gitlord
/
synapse
mirror of https://github.com/matrix-org/synapse.git
1
0
Fork 0
Code Issues 0 Releases 671 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
23339 Commits
842 Branches
288 MiB
 
 
 
 
 
 
Tree: f2f2c7c1f0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f2f2c7c1f0'
${ noResults }
synapse/synapse/storage/databases/main/purge_events.py

502 lines
18 KiB
Raw Blame History 

  1. # Copyright 2020 The Matrix.org Foundation C.I.C.

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. #     http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. 

  15. import logging

  16. from typing import Any, List, Set, Tuple, cast

  17. 

  18. from synapse.api.errors import SynapseError

  19. from synapse.storage.database import LoggingTransaction

  20. from synapse.storage.databases.main import CacheInvalidationWorkerStore

  21. from synapse.storage.databases.main.state import StateGroupWorkerStore

  22. from synapse.storage.engines import PostgresEngine

  23. from synapse.storage.engines._base import IsolationLevel

  24. from synapse.types import RoomStreamToken

  25. 

  26. logger = logging.getLogger(__name__)

  27. 

  28. 

  29. class PurgeEventsStore(StateGroupWorkerStore, CacheInvalidationWorkerStore):

  30.     async def purge_history(

  31.         self, room_id: str, token: str, delete_local_events: bool

  32.     ) -> Set[int]:

  33.         """Deletes room history before a certain point.

  34. 

  35.         Note that only a single purge can occur at once, this is guaranteed via

  36.         a higher level (in the PaginationHandler).

  37. 

  38.         Args:

  39.             room_id:

  40.             token: A topological token to delete events before

  41.             delete_local_events:

  42.                 if True, we will delete local events as well as remote ones

  43.                 (instead of just marking them as outliers and deleting their

  44.                 state groups).

  45. 

  46.         Returns:

  47.             The set of state groups that are referenced by deleted events.

  48.         """

  49. 

  50.         parsed_token = await RoomStreamToken.parse(self, token)

  51. 

  52.         return await self.db_pool.runInteraction(

  53.             "purge_history",

  54.             self._purge_history_txn,

  55.             room_id,

  56.             parsed_token,

  57.             delete_local_events,

  58.         )

  59. 

  60.     def _purge_history_txn(

  61.         self,

  62.         txn: LoggingTransaction,

  63.         room_id: str,

  64.         token: RoomStreamToken,

  65.         delete_local_events: bool,

  66.     ) -> Set[int]:

  67.         # Tables that should be pruned:

  68.         #     event_auth

  69.         #     event_backward_extremities

  70.         #     event_edges

  71.         #     event_forward_extremities

  72.         #     event_json

  73.         #     event_push_actions

  74.         #     event_relations

  75.         #     event_search

  76.         #     event_to_state_groups

  77.         #     events

  78.         #     rejections

  79.         #     room_depth

  80.         #     state_groups

  81.         #     state_groups_state

  82.         #     destination_rooms

  83. 

  84.         # we will build a temporary table listing the events so that we don't

  85.         # have to keep shovelling the list back and forth across the

  86.         # connection. Annoyingly the python sqlite driver commits the

  87.         # transaction on CREATE, so let's do this first.

  88.         #

  89.         # furthermore, we might already have the table from a previous (failed)

  90.         # purge attempt, so let's drop the table first.

  91. 

  92.         if isinstance(self.database_engine, PostgresEngine):

  93.             # Disable statement timeouts for this transaction; purging rooms can

  94.             # take a while!

  95.             txn.execute("SET LOCAL statement_timeout = 0")

  96. 

  97.         txn.execute("DROP TABLE IF EXISTS events_to_purge")

  98. 

  99.         txn.execute(

  100.             "CREATE TEMPORARY TABLE events_to_purge ("

  101.             "    event_id TEXT NOT NULL,"

  102.             "    should_delete BOOLEAN NOT NULL"

  103.             ")"

  104.         )

  105. 

  106.         # First ensure that we're not about to delete all the forward extremeties

  107.         txn.execute(

  108.             "SELECT e.event_id, e.depth FROM events as e "

  109.             "INNER JOIN event_forward_extremities as f "

  110.             "ON e.event_id = f.event_id "

  111.             "AND e.room_id = f.room_id "

  112.             "WHERE f.room_id = ?",

  113.             (room_id,),

  114.         )

  115.         rows = txn.fetchall()

  116.         # if we already have no forwards extremities (for example because they were

  117.         # cleared out by the `delete_old_current_state_events` background database

  118.         # update), then we may as well carry on.

  119.         if rows:

  120.             max_depth = max(row[1] for row in rows)

  121. 

  122.             if max_depth < token.topological:

  123.                 # We need to ensure we don't delete all the events from the database

  124.                 # otherwise we wouldn't be able to send any events (due to not

  125.                 # having any backwards extremities)

  126.                 raise SynapseError(

  127.                     400, "topological_ordering is greater than forward extremities"

  128.                 )

  129. 

  130.         logger.info("[purge] looking for events to delete")

  131. 

  132.         should_delete_expr = "state_events.state_key IS NULL"

  133.         should_delete_params: Tuple[Any, ...] = ()

  134.         if not delete_local_events:

  135.             should_delete_expr += " AND event_id NOT LIKE ?"

  136. 

  137.             # We include the parameter twice since we use the expression twice

  138.             should_delete_params += ("%:" + self.hs.hostname, "%:" + self.hs.hostname)

  139. 

  140.         should_delete_params += (room_id, token.topological)

  141. 

  142.         # Note that we insert events that are outliers and aren't going to be

  143.         # deleted, as nothing will happen to them.

  144.         txn.execute(

  145.             "INSERT INTO events_to_purge"

  146.             " SELECT event_id, %s"

  147.             " FROM events AS e LEFT JOIN state_events USING (event_id)"

  148.             " WHERE (NOT outlier OR (%s)) AND e.room_id = ? AND topological_ordering < ?"

  149.             % (should_delete_expr, should_delete_expr),

  150.             should_delete_params,

  151.         )

  152. 

  153.         # We create the indices *after* insertion as that's a lot faster.

  154. 

  155.         # create an index on should_delete because later we'll be looking for

  156.         # the should_delete / shouldn't_delete subsets

  157.         txn.execute(

  158.             "CREATE INDEX events_to_purge_should_delete"

  159.             " ON events_to_purge(should_delete)"

  160.         )

  161. 

  162.         # We do joins against events_to_purge for e.g. calculating state

  163.         # groups to purge, etc., so lets make an index.

  164.         txn.execute("CREATE INDEX events_to_purge_id ON events_to_purge(event_id)")

  165. 

  166.         txn.execute("SELECT event_id, should_delete FROM events_to_purge")

  167.         event_rows = txn.fetchall()

  168.         logger.info(

  169.             "[purge] found %i events before cutoff, of which %i can be deleted",

  170.             len(event_rows),

  171.             sum(1 for e in event_rows if e[1]),

  172.         )

  173. 

  174.         logger.info("[purge] Finding new backward extremities")

  175. 

  176.         # We calculate the new entries for the backward extremities by finding

  177.         # events to be purged that are pointed to by events we're not going to

  178.         # purge.

  179.         txn.execute(

  180.             "SELECT DISTINCT e.event_id FROM events_to_purge AS e"

  181.             " INNER JOIN event_edges AS ed ON e.event_id = ed.prev_event_id"

  182.             " LEFT JOIN events_to_purge AS ep2 ON ed.event_id = ep2.event_id"

  183.             " WHERE ep2.event_id IS NULL"

  184.         )

  185.         new_backwards_extrems = txn.fetchall()

  186. 

  187.         logger.info("[purge] replacing backward extremities: %r", new_backwards_extrems)

  188. 

  189.         txn.execute(

  190.             "DELETE FROM event_backward_extremities WHERE room_id = ?", (room_id,)

  191.         )

  192. 

  193.         # Update backward extremeties

  194.         txn.execute_batch(

  195.             "INSERT INTO event_backward_extremities (room_id, event_id)"

  196.             " VALUES (?, ?)",

  197.             [(room_id, event_id) for event_id, in new_backwards_extrems],

  198.         )

  199. 

  200.         logger.info("[purge] finding state groups referenced by deleted events")

  201. 

  202.         # Get all state groups that are referenced by events that are to be

  203.         # deleted.

  204.         txn.execute(

  205.             """

  206.             SELECT DISTINCT state_group FROM events_to_purge

  207.             INNER JOIN event_to_state_groups USING (event_id)

  208.         """

  209.         )

  210. 

  211.         referenced_state_groups = {sg for sg, in txn}

  212.         logger.info(

  213.             "[purge] found %i referenced state groups", len(referenced_state_groups)

  214.         )

  215. 

  216.         logger.info("[purge] removing events from event_to_state_groups")

  217.         txn.execute(

  218.             "DELETE FROM event_to_state_groups "

  219.             "WHERE event_id IN (SELECT event_id from events_to_purge)"

  220.         )

  221. 

  222.         # Delete all remote non-state events

  223.         for table in (

  224.             "event_edges",

  225.             "events",

  226.             "event_json",

  227.             "event_auth",

  228.             "event_forward_extremities",

  229.             "event_relations",

  230.             "event_search",

  231.             "rejections",

  232.             "redactions",

  233.         ):

  234.             logger.info("[purge] removing events from %s", table)

  235. 

  236.             txn.execute(

  237.                 "DELETE FROM %s WHERE event_id IN ("

  238.                 "    SELECT event_id FROM events_to_purge WHERE should_delete"

  239.                 ")" % (table,)

  240.             )

  241. 

  242.         # event_push_actions lacks an index on event_id, and has one on

  243.         # (room_id, event_id) instead.

  244.         for table in ("event_push_actions",):

  245.             logger.info("[purge] removing events from %s", table)

  246. 

  247.             txn.execute(

  248.                 "DELETE FROM %s WHERE room_id = ? AND event_id IN ("

  249.                 "    SELECT event_id FROM events_to_purge WHERE should_delete"

  250.                 ")" % (table,),

  251.                 (room_id,),

  252.             )

  253. 

  254.         # Mark all state and own events as outliers

  255.         logger.info("[purge] marking remaining events as outliers")

  256.         txn.execute(

  257.             "UPDATE events SET outlier = TRUE"

  258.             " WHERE event_id IN ("

  259.             "   SELECT event_id FROM events_to_purge "

  260.             "   WHERE NOT should_delete"

  261.             ")"

  262.         )

  263. 

  264.         # synapse tries to take out an exclusive lock on room_depth whenever it

  265.         # persists events (because upsert), and once we run this update, we

  266.         # will block that for the rest of our transaction.

  267.         #

  268.         # So, let's stick it at the end so that we don't block event

  269.         # persistence.

  270.         #

  271.         # We do this by calculating the minimum depth of the backwards

  272.         # extremities. However, the events in event_backward_extremities

  273.         # are ones we don't have yet so we need to look at the events that

  274.         # point to it via event_edges table.

  275.         txn.execute(

  276.             """

  277.             SELECT COALESCE(MIN(depth), 0)

  278.             FROM event_backward_extremities AS eb

  279.             INNER JOIN event_edges AS eg ON eg.prev_event_id = eb.event_id

  280.             INNER JOIN events AS e ON e.event_id = eg.event_id

  281.             WHERE eb.room_id = ?

  282.         """,

  283.             (room_id,),

  284.         )

  285.         (min_depth,) = cast(Tuple[int], txn.fetchone())

  286. 

  287.         logger.info("[purge] updating room_depth to %d", min_depth)

  288. 

  289.         txn.execute(

  290.             "UPDATE room_depth SET min_depth = ? WHERE room_id = ?",

  291.             (min_depth, room_id),

  292.         )

  293. 

  294.         # finally, drop the temp table. this will commit the txn in sqlite,

  295.         # so make sure to keep this actually last.

  296.         txn.execute("DROP TABLE events_to_purge")

  297. 

  298.         self._invalidate_cache_and_stream_bulk(

  299.             txn,

  300.             self._get_state_group_for_event,

  301.             [(event_id,) for event_id, _ in event_rows],

  302.         )

  303. 

  304.         # XXX: This is racy, since have_seen_events could be called between the

  305.         #    transaction completing and the invalidation running. On the other hand,

  306.         #    that's no different to calling `have_seen_events` just before the

  307.         #    event is deleted from the database.

  308.         self._invalidate_cache_and_stream_bulk(

  309.             txn,

  310.             self.have_seen_event,

  311.             [

  312.                 (room_id, event_id)

  313.                 for event_id, should_delete in event_rows

  314.                 if should_delete

  315.             ],

  316.         )

  317. 

  318.         for event_id, should_delete in event_rows:

  319.             if should_delete:

  320.                 self.invalidate_get_event_cache_after_txn(txn, event_id)

  321. 

  322.         logger.info("[purge] done")

  323. 

  324.         self._invalidate_caches_for_room_events_and_stream(txn, room_id)

  325. 

  326.         return referenced_state_groups

  327. 

  328.     async def purge_room(self, room_id: str) -> List[int]:

  329.         """Deletes all record of a room

  330. 

  331.         Args:

  332.             room_id

  333. 

  334.         Returns:

  335.             The list of state groups to delete.

  336.         """

  337. 

  338.         # This first runs the purge transaction with READ_COMMITTED isolation level,

  339.         # meaning any new rows in the tables will not trigger a serialization error.

  340.         # We then run the same purge a second time without this isolation level to

  341.         # purge any of those rows which were added during the first.

  342. 

  343.         logger.info("[purge] Starting initial main purge of [1/2]")

  344.         state_groups_to_delete = await self.db_pool.runInteraction(

  345.             "purge_room",

  346.             self._purge_room_txn,

  347.             room_id=room_id,

  348.             isolation_level=IsolationLevel.READ_COMMITTED,

  349.         )

  350. 

  351.         logger.info("[purge] Starting secondary main purge of [2/2]")

  352.         state_groups_to_delete.extend(

  353.             await self.db_pool.runInteraction(

  354.                 "purge_room",

  355.                 self._purge_room_txn,

  356.                 room_id=room_id,

  357.             ),

  358.         )

  359.         logger.info("[purge] Done with main purge")

  360. 

  361.         return state_groups_to_delete

  362. 

  363.     def _purge_room_txn(self, txn: LoggingTransaction, room_id: str) -> List[int]:

  364.         # This collides with event persistence so we cannot write new events and metadata into

  365.         # a room while deleting it or this transaction will fail.

  366.         if isinstance(self.database_engine, PostgresEngine):

  367.             txn.execute(

  368.                 "SELECT room_version FROM rooms WHERE room_id = ? FOR UPDATE",

  369.                 (room_id,),

  370.             )

  371. 

  372.         # First, fetch all the state groups that should be deleted, before

  373.         # we delete that information.

  374.         txn.execute(

  375.             """

  376.                 SELECT DISTINCT state_group FROM events

  377.                 INNER JOIN event_to_state_groups USING(event_id)

  378.                 WHERE events.room_id = ?

  379.             """,

  380.             (room_id,),

  381.         )

  382. 

  383.         state_groups = [row[0] for row in txn]

  384. 

  385.         # Get all the auth chains that are referenced by events that are to be

  386.         # deleted.

  387.         txn.execute(

  388.             """

  389.             SELECT chain_id, sequence_number FROM events

  390.             LEFT JOIN event_auth_chains USING (event_id)

  391.             WHERE room_id = ?

  392.             """,

  393.             (room_id,),

  394.         )

  395.         referenced_chain_id_tuples = list(txn)

  396. 

  397.         logger.info("[purge] removing from event_auth_chain_links")

  398.         txn.executemany(

  399.             """

  400.             DELETE FROM event_auth_chain_links WHERE

  401.             origin_chain_id = ? AND origin_sequence_number = ?

  402.             """,

  403.             referenced_chain_id_tuples,

  404.         )

  405. 

  406.         # Now we delete tables which lack an index on room_id but have one on event_id

  407.         for table in (

  408.             "event_auth",

  409.             "event_edges",

  410.             "event_json",

  411.             "event_push_actions_staging",

  412.             "event_relations",

  413.             "event_to_state_groups",

  414.             "event_auth_chains",

  415.             "event_auth_chain_to_calculate",

  416.             "redactions",

  417.             "rejections",

  418.             "state_events",

  419.         ):

  420.             logger.info("[purge] removing from %s", table)

  421. 

  422.             txn.execute(

  423.                 """

  424.                 DELETE FROM %s WHERE event_id IN (

  425.                   SELECT event_id FROM events WHERE room_id=?

  426.                 )

  427.                 """

  428.                 % (table,),

  429.                 (room_id,),

  430.             )

  431. 

  432.         # next, the tables with an index on room_id (or no useful index)

  433.         for table in (

  434.             "current_state_events",

  435.             "destination_rooms",

  436.             "event_backward_extremities",

  437.             "event_forward_extremities",

  438.             "event_push_actions",

  439.             "event_search",

  440.             "event_failed_pull_attempts",

  441.             # Note: the partial state tables have foreign keys between each other, and to

  442.             # `events` and `rooms`. We need to delete from them in the right order.

  443.             "partial_state_events",

  444.             "partial_state_rooms_servers",

  445.             "partial_state_rooms",

  446.             # Note: the _membership(s) tables have foreign keys to the `events` table

  447.             # so must be deleted first.

  448.             "local_current_membership",

  449.             "room_memberships",

  450.             "events",

  451.             "federation_inbound_events_staging",

  452.             "receipts_graph",

  453.             "receipts_linearized",

  454.             "room_aliases",

  455.             "room_depth",

  456.             "room_stats_state",

  457.             "room_stats_current",

  458.             "room_stats_earliest_token",

  459.             "stream_ordering_to_exterm",

  460.             "users_in_public_rooms",

  461.             "users_who_share_private_rooms",

  462.             # no useful index, but let's clear them anyway

  463.             "appservice_room_list",

  464.             "e2e_room_keys",

  465.             "event_push_summary",

  466.             "pusher_throttle",

  467.             "room_account_data",

  468.             "room_tags",

  469.             # "rooms" happens last, to keep the foreign keys in the other tables

  470.             # happy

  471.             "rooms",

  472.         ):

  473.             logger.info("[purge] removing from %s", table)

  474.             txn.execute("DELETE FROM %s WHERE room_id=?" % (table,), (room_id,))

  475. 

  476.         # Other tables we do NOT need to clear out:

  477.         #

  478.         #  - blocked_rooms

  479.         #    This is important, to make sure that we don't accidentally rejoin a blocked

  480.         #    room after it was purged

  481.         #

  482.         #  - user_directory

  483.         #    This has a room_id column, but it is unused

  484.         #

  485. 

  486.         # Other tables that we might want to consider clearing out include:

  487.         #

  488.         #  - event_reports

  489.         #       Given that these are intended for abuse management my initial

  490.         #       inclination is to leave them in place.

  491.         #

  492.         #  - current_state_delta_stream

  493.         #  - ex_outlier_stream

  494.         #  - room_tags_revisions

  495.         #       The problem with these is that they are largeish and there is no room_id

  496.         #       index on them. In any case we should be clearing out 'stream' tables

  497.         #       periodically anyway (https://github.com/matrix-org/synapse/issues/5888)

  498. 

  499.         self._invalidate_caches_for_room_and_stream(txn, room_id)

  500. 

  501.         return state_groups