Skip to content

Commit

Permalink
Merge pull request #453 from Chia-Network/bls_cache_rebased
Browse files Browse the repository at this point in the history 
Create a cache for BLS
  • Loading branch information
@matt-o-how
matt-o-how authored May 14, 2024
2 parents 95b34fa + c617acd commit 090ff48
Show file tree
Hide file tree
Showing 12 changed files with 801 additions and 274 deletions.
542 changes: 270 additions & 272 deletions Cargo.lock
View file

Large diffs are not rendered by default.

1 change: 1 addition & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -34,6 +34,7 @@ cargo test --workspace --release

### Python Linking


You may need a Python virtual environment activated for the tests to link properly, due to the `pyo3` dependency in `wheel`.

You can setup a virtual environment with the following command:
Expand Down
8 changes: 7 additions & 1 deletion crates/chia-bls/Cargo.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,9 @@ blst = { version = "0.3.11", git = "https://github.com/supranational/blst.git",
hex = "0.4.3"
thiserror = "1.0.44"
pyo3 = { version = "0.19.0", features = ["multiple-pymethods"], optional = true }
arbitrary = { version = "1.3.0", optional = true }
arbitrary = { version = "1.3.0" , optional = true}
lru = "0.12.2"


[dev-dependencies]
rand = "0.8.5"
Expand All @@ -48,3 +50,7 @@ harness = false
[[bench]]
name = "parse"
harness = false

[[bench]]
name = "cache"
harness = false
82 changes: 82 additions & 0 deletions crates/chia-bls/benches/cache.rs
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,82 @@
use chia_bls::aggregate_verify;
use chia_bls::{sign, BLSCache, PublicKey, SecretKey, Signature};
use criterion::{criterion_group, criterion_main, Criterion};
use rand::rngs::StdRng;
use rand::{Rng, SeedableRng};

fn cache_benchmark(c: &mut Criterion) {
let mut rng = StdRng::seed_from_u64(1337);
let mut data = [0u8; 32];
rng.fill(data.as_mut_slice());

let sk = SecretKey::from_seed(&data);
let msg = b"The quick brown fox jumps over the lazy dog";

let mut pks = Vec::<PublicKey>::new();

let mut agg_sig = Signature::default();
for i in 0..1000 {
let derived = sk.derive_hardened(i as u32);
let pk = derived.public_key();
let sig = sign(&derived, msg);
agg_sig.aggregate(&sig);
pks.push(pk);
}

let mut bls_cache: BLSCache = BLSCache::default();

c.bench_function("bls_cache.aggregate_verify, 0% cache hits", |b| {
let mut cache = bls_cache.clone();
b.iter(|| {
assert!(cache.aggregate_verify(&pks, [&msg].iter().cycle(), &agg_sig));
});
});

// populate 10% of keys
bls_cache.aggregate_verify(&pks[0..100], [&msg].iter().cycle(), &agg_sig);
c.bench_function("bls_cache.aggregate_verify, 10% cache hits", |b| {
let mut cache = bls_cache.clone();
b.iter(|| {
assert!(cache.aggregate_verify(&pks, [&msg].iter().cycle(), &agg_sig));
});
});

// populate another 10% of keys
bls_cache.aggregate_verify(&pks[100..200], [&msg].iter().cycle(), &agg_sig);
c.bench_function("bls_cache.aggregate_verify, 20% cache hits", |b| {
let mut cache = bls_cache.clone();
b.iter(|| {
assert!(cache.aggregate_verify(&pks, [&msg].iter().cycle(), &agg_sig));
});
});

// populate another 30% of keys
bls_cache.aggregate_verify(&pks[200..500], [&msg].iter().cycle(), &agg_sig);
c.bench_function("bls_cache.aggregate_verify, 50% cache hits", |b| {
let mut cache = bls_cache.clone();
b.iter(|| {
assert!(cache.aggregate_verify(&pks, [&msg].iter().cycle(), &agg_sig));
});
});

// populate all other keys
bls_cache.aggregate_verify(&pks[500..1000], [&msg].iter().cycle(), &agg_sig);
c.bench_function("bls_cache.aggregate_verify, 100% cache hits", |b| {
let mut cache = bls_cache.clone();
b.iter(|| {
assert!(cache.aggregate_verify(&pks, [&msg].iter().cycle(), &agg_sig));
});
});

c.bench_function("bls_cache.aggregate_verify, no cache", |b| {
b.iter(|| {
assert!(aggregate_verify(
&agg_sig,
pks.iter().map(|pk| (pk, &msg[..]))
));
});
});
}

criterion_group!(cache, cache_benchmark);
criterion_main!(cache);
243 changes: 243 additions & 0 deletions crates/chia-bls/src/cached_bls.rs
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,243 @@
// This cache is a bit weird because it's trying to account for validating
// mempool signatures versus block signatures. When validating block signatures,
// there's not much point in caching the pairings because we're probably not going
// to see them again unless there's a reorg. However, a spend in the mempool
// is likely to reappear in a block later, so we can save having to do the pairing
// again. So caching is primarily useful when synced and monitoring the mempool in real-time.

use crate::aggregate_verify_gt as agg_ver_gt;
use crate::gtelement::GTElement;
use crate::hash_to_g2;
use crate::PublicKey;
use crate::Signature;
use lru::LruCache;

use sha2::{Digest, Sha256};
use std::borrow::Borrow;
use std::num::NonZeroUsize;

#[cfg(feature = "py-bindings")]
use pyo3::exceptions::PyValueError;
#[cfg(feature = "py-bindings")]
use pyo3::types::PyList;
#[cfg(feature = "py-bindings")]
use pyo3::{pyclass, pymethods, PyResult};

#[cfg_attr(feature = "py-bindings", pyclass(name = "BLSCache"))]
#[derive(Clone)]
pub struct BLSCache {
cache: LruCache<[u8; 32], GTElement>, // LRUCache of hash(pubkey + message) -> GTElement
}

impl Default for BLSCache {
fn default() -> Self {
Self::new(None)
}
}

impl BLSCache {
pub fn new(cache_size: Option<NonZeroUsize>) -> BLSCache {
let cache: LruCache<[u8; 32], GTElement> = LruCache::new(
cache_size.unwrap_or(NonZeroUsize::new(50000).expect("50000 should be non-zero")),
);
Self { cache }
}

pub fn aggregate_verify<
M: IntoIterator<Item = T>,
T: AsRef<[u8]>,
P: IntoIterator<Item = U>,
U: Borrow<PublicKey>,
>(
&mut self,
pks: P,
msgs: M,
sig: &Signature,
) -> bool {
let iter = pks.into_iter().zip(msgs).map(|(pk, msg)| -> GTElement {
let mut hasher = Sha256::new();
hasher.update(pk.borrow().to_bytes());
hasher.update(msg.as_ref()); // pk + msg
let h: [u8; 32] = hasher.finalize().into();

if let Some(pairing) = self.cache.get(&h).cloned() {
// equivalent to `if pairing is not None`
return pairing;
}
// if pairing is None then make pairing and add to cache
let mut aug_msg = pk.borrow().to_bytes().to_vec();
aug_msg.extend_from_slice(msg.as_ref()); // pk + msg
let aug_hash: Signature = hash_to_g2(&aug_msg);

let pairing: GTElement = aug_hash.pair(pk.borrow());
let mut hasher = Sha256::new();
hasher.update(&aug_msg);
let h: [u8; 32] = hasher.finalize().into();
self.cache.put(h, pairing.clone());
pairing
});
agg_ver_gt(sig, iter)
}
}

// Python Functions

// Commented out for now as we may remove these
// as the python consensus code that uses it is being ported to rust.

#[cfg(feature = "py-bindings")]
#[pymethods]
impl BLSCache {
#[new]
pub fn init(size: Option<u32>) -> PyResult<Self> {
match size {
Some(p_size) => {
if p_size < 1 {
Err(PyValueError::new_err(
"Cannot have a cache size less than one.",
))
} else {
Ok(Self::new(NonZeroUsize::new(p_size as usize)))
}
}
None => Ok(Self::default()),
}
}

#[pyo3(name = "aggregate_verify")]
pub fn py_aggregate_verify(
&mut self,
pks: &PyList,
msgs: &PyList,
sig: &Signature,
) -> PyResult<bool> {
let pks_r = pks.iter().map(|item| item.extract::<PublicKey>().unwrap());
let msgs_r = msgs.iter().map(|item| item.extract::<&[u8]>().unwrap());
Ok(self.aggregate_verify(pks_r, msgs_r, sig))
}

#[pyo3(name = "len")]
pub fn py_len(&self) -> PyResult<usize> {
Ok(self.cache.len())
}
}

#[cfg(test)]
pub mod tests {
use super::*;
use crate::aggregate;
use crate::sign;
use crate::SecretKey;

#[test]
fn test_instantiation() {
let mut bls_cache: BLSCache = BLSCache::default();
let byte_array: [u8; 32] = [0; 32];
let sk: SecretKey = SecretKey::from_seed(&byte_array);
let pk: PublicKey = sk.public_key();
let msg: [u8; 32] = [106; 32];
let mut aug_msg: Vec<u8> = pk.clone().to_bytes().to_vec();
aug_msg.extend_from_slice(&msg); // pk + msg
let aug_hash = hash_to_g2(&aug_msg);
let pairing = aug_hash.pair(&pk);
let mut hasher = Sha256::new();
hasher.update(&aug_msg);
let h: [u8; 32] = hasher.finalize().into();
bls_cache.cache.put(h, pairing.clone());
assert_eq!(*bls_cache.cache.get(&h).unwrap(), pairing);
}

#[test]
fn test_aggregate_verify() {
let mut bls_cache: BLSCache = BLSCache::default();
assert_eq!(bls_cache.cache.len(), 0);
let byte_array: [u8; 32] = [0; 32];
let sk: SecretKey = SecretKey::from_seed(&byte_array);
let pk: PublicKey = sk.public_key();
let msg: &[u8] = &[106; 32];
let sig: Signature = sign(&sk, msg);
let pk_list: Vec<PublicKey> = [pk].to_vec();
let msg_list: Vec<&[u8]> = [msg].to_vec();
assert!(bls_cache.aggregate_verify(pk_list.iter(), msg_list.iter(), &sig));
assert_eq!(bls_cache.cache.len(), 1);
// try again with (pk, msg) cached
assert!(bls_cache.aggregate_verify(pk_list, msg_list, &sig));
assert_eq!(bls_cache.cache.len(), 1);
}

#[test]
fn test_cache() {
let mut bls_cache: BLSCache = BLSCache::default();
assert_eq!(bls_cache.cache.len(), 0);
let byte_array: [u8; 32] = [0; 32];
let sk: SecretKey = SecretKey::from_seed(&byte_array);
let pk: PublicKey = sk.public_key();
let msg: &[u8] = &[106; 32];
let sig: Signature = sign(&sk, msg);
let mut pk_list: Vec<PublicKey> = [pk].to_vec();
let mut msg_list: Vec<&[u8]> = [msg].to_vec();
// add first to cache
// try one cached, one not cached
assert!(bls_cache.aggregate_verify(&pk_list, &msg_list, &sig));
assert_eq!(bls_cache.cache.len(), 1);
let byte_array: [u8; 32] = [1; 32];
let sk: SecretKey = SecretKey::from_seed(&byte_array);
let pk: PublicKey = sk.public_key();
let msg: &[u8] = &[107; 32];
let sig = aggregate([sig, sign(&sk, msg)]);
pk_list.push(pk);
msg_list.push(msg);
assert!(bls_cache.aggregate_verify(&pk_list, &msg_list, &sig));
assert_eq!(bls_cache.cache.len(), 2);
// try reusing a pubkey
let pk: PublicKey = sk.public_key();
let msg: &[u8] = &[108; 32];
let sig = aggregate([sig, sign(&sk, msg)]);
pk_list.push(pk);
msg_list.push(msg);
// check verification
assert!(bls_cache.aggregate_verify(&pk_list, &msg_list, &sig));
assert_eq!(bls_cache.cache.len(), 3);
}

#[test]
fn test_cache_limit() {
// set cache size to 3
let mut bls_cache: BLSCache = BLSCache::new(NonZeroUsize::new(3));
assert_eq!(bls_cache.cache.len(), 0);
// create 5 pk/msg combos
for i in 1..=5 {
let byte_array: [u8; 32] = [i as u8; 32];
let sk: SecretKey = SecretKey::from_seed(&byte_array);
let pk: PublicKey = sk.public_key();
let msg: &[u8] = &[106; 32];
let sig: Signature = sign(&sk, msg);
let pk_list: Vec<PublicKey> = [pk].to_vec();
let msg_list: Vec<&[u8]> = vec![msg];
// add to cache by validating them one at a time
assert!(bls_cache.aggregate_verify(pk_list.iter(), msg_list.iter(), &sig));
}
assert_eq!(bls_cache.cache.len(), 3);
// recreate first key
let byte_array: [u8; 32] = [1; 32];
let sk: SecretKey = SecretKey::from_seed(&byte_array);
let pk: PublicKey = sk.public_key();
let msg: Vec<u8> = vec![106; 32];
let mut aug_msg = pk.to_bytes().to_vec();
aug_msg.extend_from_slice(&msg); // pk + msg
let mut hasher = Sha256::new();
hasher.update(aug_msg);
let h: [u8; 32] = hasher.finalize().into();
// assert first key has been removed
assert!(bls_cache.cache.get(&h).is_none());
}

#[test]
fn test_empty_sig() {
let mut bls_cache: BLSCache = BLSCache::default();
let sig: Signature = aggregate(&[]);
let pk_list: [PublicKey; 0] = [];
let msg_list: Vec<&[u8]> = vec![];
assert!(bls_cache.aggregate_verify(pk_list, msg_list, &sig));
}
}
2 changes: 2 additions & 0 deletions crates/chia-bls/src/lib.rs
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
pub mod cached_bls;
pub mod derivable_key;
pub mod derive_keys;
pub mod error;
Expand All @@ -7,6 +8,7 @@ pub mod public_key;
pub mod secret_key;
pub mod signature;

pub use cached_bls::BLSCache;
pub use derivable_key::DerivableKey;
pub use error::{Error, Result};
pub use gtelement::GTElement;
Expand Down
Loading

0 comments on commit 090ff48

Please sign in to comment.