[Quorum Store] Implementation of quorum store components

[bchocho]

Description

Implementation of Quorum Store. See component diagram at https://drive.google.com/file/d/1Vu3G_z6zOueljBnnPLZp4VIZp4Oo_AwQ/view?usp=sharing

Quorum store is still disabled by default (via onchain config).

Test Plan

All tests pass without quorum store enabled.

With quorum store enabled (by hard-coding the onchain config):

• All unit tests pass, except twins tests. It's tricky to enable twins to run in both modes, we can clean this up when quorum store becomes the default.
• All smoke tests pass, except test_upgrade_flow. This needs some investigation.
• Land-blocking forge tests pass.
• Consensus-only forge tests passes.

Before enabling quorum store, we additionally need to:

• Pass all forge non-flaky tests when quorum store = true
• Add new tests:
  • Smoke test for onchain config flip
  • Forge test for onchain config flip
  • New failpoint tests
  • Smoke/forge test for a malicious node running a different quorum store mode

[github-actions]

✅ Forge suite land_blocking success on fc7cfc26d2e2e7204fbbb65e2769a08558168242

performance benchmark with full nodes : 5888 TPS, 6709 ms latency, 10500 ms p99 latency,(!) expired 700 out of 2514960 txns
Test Ok

• Grafana dashboard
• Humio Logs
• Pyroscope Profiling
• Test runner output
• Test run is land-blocking

[github-actions]

✅ Forge suite compat success on testnet_2d8b1b57553d869190f61df1aaf7f31a8fc19a7b ==> fc7cfc26d2e2e7204fbbb65e2769a08558168242

Compatibility test results for testnet_2d8b1b57553d869190f61df1aaf7f31a8fc19a7b ==> fc7cfc26d2e2e7204fbbb65e2769a08558168242 (PR)
1. Check liveness of validators at old version: testnet_2d8b1b57553d869190f61df1aaf7f31a8fc19a7b
compatibility::simple-validator-upgrade::liveness-check : 7783 TPS, 4948 ms latency, 7200 ms p99 latency,no expired txns
2. Upgrading first Validator to new version: fc7cfc26d2e2e7204fbbb65e2769a08558168242
compatibility::simple-validator-upgrade::single-validator-upgrade : 5227 TPS, 7602 ms latency, 9300 ms p99 latency,no expired txns
3. Upgrading rest of first batch to new version: fc7cfc26d2e2e7204fbbb65e2769a08558168242
compatibility::simple-validator-upgrade::half-validator-upgrade : 4520 TPS, 8894 ms latency, 11100 ms p99 latency,no expired txns
4. upgrading second batch to new version: fc7cfc26d2e2e7204fbbb65e2769a08558168242
compatibility::simple-validator-upgrade::rest-validator-upgrade : 6873 TPS, 5628 ms latency, 11300 ms p99 latency,no expired txns
5. check swarm health
Compatibility test for testnet_2d8b1b57553d869190f61df1aaf7f31a8fc19a7b ==> fc7cfc26d2e2e7204fbbb65e2769a08558168242 passed
Test Ok

• Grafana dashboard
• Humio Logs
• Pyroscope Profiling
• Test runner output
• Test run is land-blocking

[github-actions]

✅ Forge suite consensus_only_perf_benchmark success on consensus_only_perf_test_fc7cfc26d2e2e7204fbbb65e2769a08558168242 ==> fc7cfc26d2e2e7204fbbb65e2769a08558168242

Test Ok

• Grafana dashboard
• Humio Logs
• Pyroscope Profiling
• Test runner output
• Test run is land-blocking

[igor-aptos]

overall, looks good! I've made bunch of comments/questions/suggestions inline, but even if you want to address any of those, you can do so in the followup PR, I am accepting as this one is huge, and there is nothing important that is off.

[igor-aptos]

yeah, we cannot really change these now.

either :

• keep them as is, and then increase in the next release once QS is enabled in main
• or have new fields (qs_max_sending_block_txns, and others) in the interrim, before the cleanup)

[igor-aptos]

can you add some more comments what are the constants and what are they referring to? for example what channel is "channel_size" here

[igor-aptos]

should this be "GetBlockProposalCommand" ?

proposal generator issues this, and then it proposes there. this command prepares the proposal only?

[igor-aptos]

use the same convention :
consensus::send_batch_request => consensus::send::batch_request

and for consensus::send_batch and consensus::send_signed_digest below

[bchocho]

Good catch! #6650

[igor-aptos]

What does "In" here refer to?

[igor-aptos]

I maybe missing something, but shouldn't remote batch coordinator be creating batches authored by a remote node , not local peer id? Or is this used for something else?

[igor-aptos]

what's the reason for having separate batch coordinator for each "batch author"?

Is it because we want to process each stream independently (i.e. have 100 receiver loops), or because it makes BatchCoordinator code cleaner to care about the single author? If the second, should we have a single channel, and have a dispatcher to give the message to appropriate coordinator, instead of having 100 loops?

[bchocho]

We create batch coordinator workers == num_workers_for_remote_fragments (which can be smaller than the number of peers).

The reason is closer to the former. Most importantly, we want the remote fragments not to block the local fragments (which is even accomplished with == 1). Then we want the remote fragments to not block each other.

[igor-aptos]

this confused me, these is not recording what has timeouted, but at what point in the future something will expire

maybe expirations is better?

[igor-aptos]

add comment:

// check if proof hasn't completed already

as that is the reason for there not being a value

[igor-aptos]

where does the remote_batch_coordinator receive EndBatch?

also if processing remote and local fragments is different, why don't we have two classes - LocalBatchCoordinator and RemoteBatchCoordinator, if they have no overlap?

[bchocho]

@zekun000 had the same comment. I'll create an item to work on this.