WIP: generating rewards certs and adding them to the block footer

[akhi3030]

See https://docs.google.com/document/d/1jyycl6EwP8eVqdrYj3tmFHfG5U86SPr91WXG3DvNyWQ/edit?tab=t.0 for a design doc

This is a WIP of how we can generate and add rewards certificates in the block footer.

The approach taken here completely bypasses the consensus pool which means that for the votes relevant for rewards, we are copying them an additional time and aggregating them into certificates an additional time.

[akhi3030]

feedback from Brennan: maybe we can do this inline if we can demonstrate that we have enough compute resources to handle the additional verification. This will also require ensuring that the dedup can handle the DDoS vectors we are worried about.

[akhi3030]

Potential optimisation: if we look up how many validators we have for this epoch, then we can detect here if we have received votes from all the validators and pre-generate the certificates in this function instead of build_rewards_certs. build_rewards_certs is more in the critical path than this function is. Not sure how often we will actually hit this case though.

[steviez]

Briefly glanced. I still need to work through bls sigverifier to be able to give more in depth reviews on approach. Pretty strapped for time at the moment tho

[steviez]

pub struct ConsensusRewards {
    /// Per [`Slot`], stores skip and notar votes.
    votes: BTreeMap<Slot, Entry>,
    /// Stores the latest pubkey for the current node.
    cluster_info: Arc<ClusterInfo>,
    /// Stores the leader schedules.
    leader_schedule_cache: Arc<LeaderScheduleCache>,
}

I have some concerns about allocations, this is several layers deep of BTreeMap nesting. It looks like we'd also be doing this with a lock held

[akhi3030]

Agreed. What if I switch to HashMap and use with_capacity()? In almost all of the instances, we have a good idea of what the expected size of the containers will be.

[akhi3030]

replaced most of the btreemaps with hashmaps now. One remains where we are actually relying on the ordering or keys so not so easy to remove.

[steviez]

I know this isn't final, but spawning unnamed threads like this is not how we typically like to do stuff in parallel

[akhi3030]

absolutely, this was just to show what I propose to do. Is there an example that I can follow on how I could do something like this?

[steviez]

Why this over std::sync::RwLock ?

[akhi3030]

A couple of reasons:

• My understanding is that parking lot is fairer to writers and ensures that writers do not starve. In particular, if there is a writer waiting, then additional readers also have to wait
• for small critical sections, benchmarks seems to suggest that parking lot does better.

[akhi3030]

thanks for the feedback Steve. I'll push a change to use HashMap and with_capacity to minimise allocations.

[akhi3030]

A couple of reasons:

• My understanding is that parking lot is fairer to writers and ensures that writers do not starve. In particular, if there is a writer waiting, then additional readers also have to wait
• for small critical sections, benchmarks seems to suggest that parking lot does better.

[akhi3030]

absolutely, this was just to show what I propose to do. Is there an example that I can follow on how I could do something like this?

[akhi3030]

Agreed. What if I switch to HashMap and use with_capacity()? In almost all of the instances, we have a good idea of what the expected size of the containers will be.

[akhi3030]

Feedback from @AshwinSekar: #607 (comment)

[akhi3030]

@AshwinSekar : I've reworked the PR to use channels and a dedicated thread now. There is also a "stateless" version of wants_vote that we could call from the BLS sigverifier to do some filtering and avoid cloning all votes. I'll add support for that as a separate commit.