[Merged by Bors] - feat: hare preround proposal compaction #6129
Conversation
acud
force-pushed
the
hare-compact-encoding-3
branch
from
9fc1d38 to
47c13c6
Compare
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## develop #6129 +/- ##
=========================================
Coverage 81.9% 81.9%
=========================================
Files 301 308 +7
Lines 32406 33807 +1401
=========================================
+ Hits 26548 27706 +1158
- Misses 4135 4327 +192
- Partials 1723 1774 +51 ☔ View full report in Codecov by Sentry. |
acud
force-pushed
the
hare-compact-encoding-3
branch
6 times, most recently
from
43754c2 to
0977a02
Compare
acud
force-pushed
the
hare-compact-encoding-3
branch
2 times, most recently
from
d849e25 to
8fb21d1
Compare
acud
force-pushed
the
hare-compact-encoding-3
branch
from
8fb21d1 to
3ad6a2d
Compare
| return fmt.Errorf("message %s: cache miss", compactProps.MsgId) | ||
| } | ||
| resp := &CompactIdResponse{Ids: m.Body.Value.Proposals} | ||
| respBytes := codec.MustEncode(resp) |
There was a problem hiding this comment.
As above, can't we just encode resp into the stream instead of using an intermediate buffer?
There was a problem hiding this comment.
To do this one must know to which length the type is going to encode into without really encoding it (since you must encode how many bytes are in the response before actually writing them into the response). While it is possible, it's probably something that the scale package should offer instead of writing it by hand which would be fragile. Any ideas on how to do this?
There was a problem hiding this comment.
Why do you need to encode the length first?
There was a problem hiding this comment.
Because you need to know how many bytes to read out of the stream.
There was a problem hiding this comment.
AFAIR, the scale decoding would fail if the response had the wrong length anyway.
There was a problem hiding this comment.
well, while we could do smth like this in go-scale, it is not really fragile if the data are an array of fixed-size IDs.
pls check how it's done in the fetch package, e.g. epoch stream handler
Line 115 in 13dfb49
Lines 140 to 185 in 13dfb49
and the client part
go-spacemesh/fetch/mesh_data.go
Line 275 in 13dfb49
go-spacemesh/fetch/mesh_data.go
Lines 461 to 481 in 13dfb49
The client part is not perfect b/c we could be handling each ID right away instead of waiting for the whole slice to be sent, but that would require further refactoring of the fetcher code; not sure whether it is applicable here.
Nevertheless, the server side can be improved here I think
Maybe we could move some helpers to the codec package
There was a problem hiding this comment.
AFAIR, the scale decoding would fail if the response had the wrong length anyway.
So the reason it is done this way is the following:
When you read a response from a peer you want to avoid a situation where you read a stream until an EOF - this is generally bad because you put yourself in the risk of having a malicious peer to just feed you data which is read all into memory, resulting in the node memory usage going through the roof.
That's why you want to know how long is the data in advance.
There was a problem hiding this comment.
@ivan4th the server.ReadResponse part implicitly reads the respLen which encodes the whole message size in advance https://github.com/spacemeshos/go-spacemesh/blob/develop/p2p/server/server.go#L511
Which is exactly what I'm doing here, except I don't want to use the leaky server abstraction because it does a bunch of things I'm not interested in.
hare4/hare_test.go
Outdated
| calls := [3]int{} | ||
| for i, n := range cluster.nodes { | ||
| n.mverifier.EXPECT().Verify(gomock.Any(), gomock.Any(), gomock.Any(), gomock.Any()). | ||
| DoAndReturn(func(_ signing.Domain, _ types.NodeID, _ []byte, _ types.EdSignature) bool { | ||
| calls[i] = calls[i] + 1 | ||
| // when first call return false, other | ||
| return !(calls[i] == 1) | ||
| }).AnyTimes() | ||
| } |
There was a problem hiding this comment.
How about creating proposals with invalid signatures instead of mocking the verifier?
If mocking is easier/better, consider rewriting this as:
for _, n := range cluster.nodes {
gomock.InOrder(
n.mverifier.EXPECT().
Verify(signing.PROPOSAL, gomock.Any(), gomock.Any(), gomock.Any()).
Return(false).
MaxTimes(1),
n.mverifier.EXPECT().
Verify(signing.PROPOSAL, gomock.Any(), gomock.Any(), gomock.Any()).
Return(true).
AnyTimes(),
)
}There was a problem hiding this comment.
This is a bit more complicated because the mocked Verify is not because the proposal signatures are incorrect, but because the node which receives the proposal matches the wrong proposal because it has some collision locally, and then cannot verify the signature correctly.
There was a problem hiding this comment.
OK, I understand. Why not generate colliding proposals in a way that would trigger the desired flow? I generally prefer to simulate real flow (by creating realistic conditions that trigger the tested behavior) rather than hacking the insides of the implementation. Such tests are easier to understand and maintain.
There was a problem hiding this comment.
Because those things require mining of the actual data, building external tools, the tests would start breaking in case we change small details inside of the actual domain object. Pluggable implementations are standard practice and personally I'd rather go down that way.
|
bors try |
tryBuild failed: |
|
bors try |
tryBuild succeeded: |
|
@poszu can I have another review please? |
acud
force-pushed
the
hare-compact-encoding-3
branch
from
6d3ef2e to
f75c44c
Compare
…re-compact-encoding-3
| if !cl.collidingProposals { | ||
| // if we want non-colliding proposals we copy from the rng | ||
| // otherwise it is kept as an array of zeroes | ||
| cl.t.rng.Read(vrf[:]) | ||
| } |
There was a problem hiding this comment.
How about just overwriting the first bytes?
| if !cl.collidingProposals { | |
| // if we want non-colliding proposals we copy from the rng | |
| // otherwise it is kept as an array of zeroes | |
| cl.t.rng.Read(vrf[:]) | |
| } | |
| cl.t.rng.Read(vrf[:]) | |
| if cl.collidingProposals { | |
| copy(vrf[:4], []byte("1234")) | |
| } |
| return fmt.Errorf("message %s: cache miss", compactProps.MsgId) | ||
| } | ||
| resp := &CompactIdResponse{Ids: m.Body.Value.Proposals} | ||
| respBytes := codec.MustEncode(resp) |
There was a problem hiding this comment.
AFAIR, the scale decoding would fail if the response had the wrong length anyway.
Co-authored-by: Bartosz Różański <bartek.roza@gmail.com>
Co-authored-by: Bartosz Różański <bartek.roza@gmail.com>
|
bors try |
tryBuild failed: |
|
bors merge |
## Motivation Current `hare` prerounds use 20-byte `blake3` hashes of the proposals. This PR aims to reduce the message size by adopting the changes described in #5606 with further [discussions](https://community.spacemesh.io/t/compact-encoding-for-hare/427) in the research forum
|
Pull request successfully merged into develop. Build succeeded: |
spacemesh-bors
bot
changed the title
Motivation
Current
hareprerounds use 20-byteblake3hashes of the proposals. This PR aims to reduce the message size by adopting the changes described in #5606 with further discussions in the research forumDescription
Adopts the changes by adding a field onto the
Valuetype which encodes the shorter IDs (the first few bytes of the VRF signature for the block proposal. This field is to be used only on the preround.Closes #5606
Supersedes #6060
Ref #5256 #4765
Test Plan
TODO
reconstructProposalscould probably be improved to just fallback into a full proposals list exchange instead of returning the error