cache validator signatures #415
Conversation
feuGeneA
requested review from
iansuvak,
geoff-vball,
minghinmatthewlam,
bernard-avalabs,
michaelkaplan13 and
cam-schultz
feuGeneA
force-pushed
the
signature-aggregation-api-cache
branch
3 times, most recently
from
542b851 to
546c918
Compare
|
|
||
| const ( | ||
| initialCapacity = 1024 | ||
| maxSize = 1024 * 1024 |
There was a problem hiding this comment.
MaxSize should be configurable via the application configs. We should have a sane default though
There was a problem hiding this comment.
done. I'm not sure what would be sane to you though. I left this number in place. Happy to change it to whatever the team thinks.
There was a problem hiding this comment.
My understanding was that we wanted to cache individual BLS signatures so that we could reconstruct the aggregate signature from the cache even if the validator set changes. By caching the full signed Warp message, we skip fetching signatures of already requested messages only if the validator set hasn't changed. We also need to be careful when caching the full signed message, since it will no longer be valid after the validator set changes.
Indeed this is the case. We want to cache individual signatures as well as full signature only (not the message). Before returning the full signature we can query for the current validator set to confirm if it's still correct |
feuGeneA
force-pushed
the
signature-aggregation-api-cache
branch
from
546c918 to
cd8e923
Compare
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
now that we're caching individual signatures rather than the aggregate signature
| type cacheKey ids.ID // warp message ID | ||
| type cacheValue map[PublicKeyBytes]SignatureBytes |
There was a problem hiding this comment.
Can we just use the regular types directly? It seems odd to have to wrap everything before passing them in
There was a problem hiding this comment.
For the public keys, we can use the regular types directly in cache.go but when the interactions happen from aggregator.go they will need to be wrapped in something either way, because warp.Validator.PublicKeyBytes is a slice, and a map key can only be a fixed length array, so even if we change to using regular types directly, we'll still have to wrap the arguments to Get and Add with [bls.PublicKeyLen]byte(...).
I'm fine with going either way on it, but at the time I wrote this it felt "cleaner" to have a name for a type that needs to be repeated several times over. (Note this is just like what's done with the type blsSignatureBuf [bls.SignatureLen]byte in aggregator.go.)
There was a problem hiding this comment.
I tried, without any luck:
gene-dev 08/13 22:21:21 (signature-aggregation-api-cache) 1 ~/dev/awm-relayer$ git diff signature-aggregator/
diff --git a/signature-aggregator/aggregator/aggregator.go b/signature-aggregator/aggregator/aggregator.go
index d500e82..73ee1da 100644
--- a/signature-aggregator/aggregator/aggregator.go
+++ b/signature-aggregator/aggregator/aggregator.go
@@ -412,7 +412,7 @@ func (s *SignatureAggregator) handleResponse(
signatureMap[vdrIndex] = signature
s.cache.Add(
unsignedMessage.ID(),
- cache.PublicKeyBytes(validator.PublicKeyBytes),
+ validator.PublicKeyBytes[:],
cache.SignatureBytes(signature),
)
accumulatedSignatureWeight.Add(accumulatedSignatureWeight, new(big.Int).SetUint64(validator.Weight))
diff --git a/signature-aggregator/aggregator/cache/cache.go b/signature-aggregator/aggregator/cache/cache.go
index e0fa57d..6d7a4e8 100644
--- a/signature-aggregator/aggregator/cache/cache.go
+++ b/signature-aggregator/aggregator/cache/cache.go
@@ -52,7 +52,7 @@ func (c *Cache) Get(msgID ids.ID) (cacheValue, bool) {
func (c *Cache) Add(
msgID ids.ID,
- pubKey PublicKeyBytes,
+ pubKey [bls.PublicKeyLen]byte,
signature SignatureBytes,
) {
var (
gene-dev 08/13 22:21:27 (signature-aggregation-api-cache) 0 ~/dev/awm-relayer$ scripts/build.sh
Running protobuf fmt...
Running protobuf lint check...
Re-generating protobuf...
Building AWM Relayer Version: v1.4.0-rc.2 at /home/gene/dev/awm-relayer/build/awm-relayer
# github.com/ava-labs/awm-relayer/signature-aggregator/aggregator
signature-aggregator/aggregator/aggregator.go:415:28: cannot use validator.PublicKeyBytes[:] (value of type []byte) as [48]byte value in argument to s.cache.Add
Building Signature Aggregator Version: v1.4.0-rc.2 at /home/gene/dev/awm-relayer/signature-aggregator/build/signature-aggregator
# github.com/ava-labs/awm-relayer/signature-aggregator/aggregator
aggregator/aggregator.go:415:28: cannot use validator.PublicKeyBytes[:] (value of type []byte) as [48]byte value in argument to s.cache.Add
Feel free to give it a try and let me know what you prefer.
There was a problem hiding this comment.
Yeah, okay I guess
type PublicKeyBytes [bls.PublicKeyLen]byte type SignatureBytes [bls.SignatureLen]byte
Is the easiest way to do that part, but I think
type cacheKey ids.ID // warp message ID type cacheValue map[PublicKeyBytes]SignatureBytes
are not necessary.
There was a problem hiding this comment.
addressed in aa631b6
addresses review comment #415 (comment)
addresses review comments #415 (comment) and #415 (comment)
addresses review comment #415 (comment)
|
Looks like this includes functionality of #389 . I want to take a more thorough look before shipping it but looks good so far. |
No, I didn't even realize that existed. I just took Geoff's suggestion and ran with it. Happy to convert it over though if that's what we think makes sense. It should be a pretty self-contained change. |
Signed-off-by: F. Eugene Aumson <feuGeneA@users.noreply.github.com>
| return cachedValue, true | ||
| } else { | ||
| c.logger.Debug("cache miss", zap.Stringer("msgID", msgID)) | ||
| return make(cacheValue), false |
There was a problem hiding this comment.
We can just return nil instead of allocating.
There was a problem hiding this comment.
addressed in d77300b
| if signatures, ok := c.Get(msgID); ok { | ||
| signatures[pubKey] = signature | ||
| } else { | ||
| signatures := make(cacheValue) | ||
| signatures[pubKey] = signature | ||
| c.signatures.Add(cacheKey(msgID), signatures) | ||
| } |
There was a problem hiding this comment.
This control flow is a bit awkward due to the multiple uses of signatures and the repeated assignment to the map. The following rewrite cleans it up a bit I think:
var (
sigs cacheValue
ok bool
)
if sigs, ok = c.Get(msgID); !ok {
sigs = make(cacheValue)
}
sigs[pubKey] = signature
c.signatures.Add(cacheKey(msgID), sigs)
There was a problem hiding this comment.
I like this, thanks. addressed in 7196197
addresses review comment #415 (comment)
addresses review comment #415 (comment)
addresses review comment #415 (comment)
addresses review comment #415 (comment)
| @@ -151,7 +151,13 @@ func (s *SignatureAggregator) CreateSignedMessage( | |||
| ) | |||
| } | |||
| } | |||
| s.metrics.SignatureCacheHits.Add(float64(len(signatureMap))) | |||
There was a problem hiding this comment.
What's the reasoning behind incrementing based on the number of signatures (i.e. the cache value) rather than the number of key hits? Signature-based metrics would make it more difficult to identify appropriate cache sizes based on usage.
There was a problem hiding this comment.
Not my PR but not sure what do you mean by this. The signatureMap here is just the number of key hits from my understanding.
There was a problem hiding this comment.
The cache is keyed by warpMessageID, but we're adding metrics based on the size of the corresponding value. If the Warp message is signed by 1 or 1000 validators, it's still a cache hit or miss, but the measuring the number of signatures would tell a wildly different story than measuring the actual cache hit/miss rate.
There was a problem hiding this comment.
as discussed on standup, I left the metric in place on a per-signature basis. also, I changed the "cache miss" metric to reflect the number of signatures that need to be requested from the network, in 70b7722
feuGeneA
force-pushed
the
signature-aggregation-api-cache
branch
from
a7066df to
70b7722
Compare
Co-authored-by: cam-schultz <78878559+cam-schultz@users.noreply.github.com> Signed-off-by: F. Eugene Aumson <feuGeneA@users.noreply.github.com>
addresses review comment #415 (comment)
| if len(signatureMap) > 0 { | ||
| s.metrics.SignatureCacheMisses.Add(float64(responsesExpected)) | ||
| } |
There was a problem hiding this comment.
Maybe I'm misunderstanding something, but this just seems like we're collecting the same metric multiple times (once per retry). The way you had it before seems like it achieves the stated goal of having the metric reflect the number of signatures that need to be requested from the network
There was a problem hiding this comment.
you're right! thank you! addressed in 0d6da49
Why this should be merged
fixes #382
fixes #389
How this was tested
see included test modifications