perf(light): Use cache when verifying signatures

[wllmshao]

Closes #2365

This PR adds two new methods to light package: VerifyCommitLightTrustingWithCache and VerifyCommitLightWithCache so that we don't have to verify the same signatures twice.

Pending some perf tests/benchmarks to measure performance improvement.

[ValarDragon]

Nice! This has a malleabiltiy vector though if addresses weren't fixed size. Its also not zero-allocation, which is good to have at the sig verification level.

Perhaps structure the map using vote sign bytes as the key, and then the val address as the value? Not sure we can avoid the string casts for immutability reasons, so maybe we just live with the allocs. Should see how much it slows it down in the normal case.

Also can we allow passing in a nil map (skipping the check if nil)

[wllmshao]

Updated to make these changes.

• Using string(voteSignBytes) as the key and val address as the value
• Check verifiedSignatureCache != nil before any usage. Pass nil where ever the cache does not need to be used

[ValarDragon]

LGTM, nice work!

But we should add a tests around non-nil caches being provided, and tally logic for counting to 2/3rds still working!

[wllmshao]

@ValarDragon thinking about this more, aren't the VoteSignBytes actually likely to be the same across signatures? I see a comment that says they differ only in the timestamp, the rest of the fields are identical. Would it not be better to use the validator address or the commit signature as the cache key?

[ValarDragon]

So we need to be sure that all 3 arguments for Verify(sign_bytes, signature, public_key) are the same, ideally with 0 allocations.

The key being the signature makes sense to me, since your right sign_bytes can get re-used. And then the value of the map being struct{sign_bytes, public_key} perhaps, where we check those two fields

[wllmshao]

I added unit tests and changed the cache schema. Opening this for review.

Will still do some perf tests / benchmarks to try to measure performance improvement.

[melekes]

Thanks @wllmshao ❤️ Would love to see this merged

[melekes]

Please don't force-push. It makes reviewing impossible

[cason]

I wonder whether the signatures cache should I type by itself, instead of using a map[string]SignatureCacheValue. This will probably render it simple to implement and test.

Moreover, I wonder whether the tests can indeed confirm that the cache is being used. I think that a mock signature verifier/key should be used in this case, so we are really sure that the verification methods are not invoked.

[cason]

This PR assumes that pubkeys are uniquely identified by the Address. Is that safe?

Yes. The consensus logic uses it, for instance proposerAddr := cs.privValidatorPubKey.Address(). And the Vote type include the same Address() that should match the address in the validator set.

[wllmshao]

I wonder whether the signatures cache should I type by itself, instead of using a map[string]SignatureCacheValue. This will probably render it simple to implement and test.

Moreover, I wonder whether the tests can indeed confirm that the cache is being used. I think that a mock signature verifier/key should be used in this case, so we are really sure that the verification methods are not invoked.

Created a new type for SignatureCache to replace the map usage.
Added unit tests that use mocks to ensure that the cache is being used and signature verifications are not happening.

[melekes]

Thanks 🙏

[melekes]

I don't see how this is better than the original map[string]SignatureCacheValue. @cason is this what you had in mind?

[cason]

Yes, so we can implement this abstraction in the way we prefer.

[cason]

Thank you a lot for this effort.

There are some details that we should take care of, but I'd say that we can take it over from here.

[cason]

Yes, so we can implement this abstraction in the way we prefer.

[cason]

This call requires proto encoding, namely is kind of expensive. Don't we have these bytes already computed?

[cason]

This cache grows over time, should we somehow restrict its size?

[cason]

Should we add a new changelog entry for the creation of the SignatureCache type?