blockstore: compute and populate DoubleMerkleRootMeta

[AshwinSekar]

Adds an unoptimized double merkle root computation to get the ball rolling.

Computes and stores the double merkle root and associated proofs once the block is full.
This places all the blockstore lookups in the hot path (computation will run once block has been frozen).

Future optimizations:

1. Join nodes as each FEC set comes in, no need to wait until the end and perform up to 1000 blockstore lookups for FEC set roots, this can be done in line when populating new MerkleRootMetas
2. Generate proofs only when the first repair request comes in. The majority of blocks should not be repaired - we can defer this out of the hot path.

Next PR will actually call this fn and set block id in either replay or broadcast

[AshwinSekar]

opted to just store the proof as flattened to avoid the extra work when serving repair - will have to flatten when sending over the wire and unflatten when receiver verifies anyway

[ksn6]

oof, good catch

[ksn6]

Next PR will actually call this fn and set block id in either replay or broadcast

We'll need to set the block id for the header in broadcast atm, as that's where we construct the header.

[ksn6]

Join nodes as each FEC set comes in, no need to wait until the end and perform up to 1000 blockstore lookups for FEC set roots, this can be done in line when populating new MerkleRootMetas

to clarify - this would be an online algorithm to calculate the double merkle root + merkle proofs, correct? would we store the intermediate state in an in-memory map? or blockstore as well?

and - we aren't really performing 1000 blockstore lookups right? get_or_compute_double_merkle_root performs exactly one lookup per FEC set atm

[ksn6]

debug_assert_eq!

[ksn6]

Rather than let-else-return error, we can do (here and elsewhere in the function):

Suggested change

	let Some(slot_meta) = self
	.meta_cf
	.get(slot)
	.expect("Blockstore operations must succeed")
	else {
	return Err(BlockstoreProcessorError::FailedToLoadMeta);
	};
	let slot_meta = self
	.meta_cf
	.get(slot)
	.expect("Blockstore operations must succeed")
	.ok_or(BlockstoreProcessorError::FailedToLoadMeta)?;

[AshwinSekar]

yeah good call, this fn can just return an Option, any error apart from the slot not being full indicates an inconsistency in blockstore or a bug in the merkle tree impl

[ksn6]

Suggested change

	if !slot_meta.is_full() {
	return Err(BlockstoreProcessorError::SlotNotFull(slot, block_location));
	}
	let Some(last_index) = slot_meta.last_index else {
	return Err(BlockstoreProcessorError::SlotNotFull(slot, block_location));
	};
	let last_index = slot_meta
	.last_index
	.filter(|_| slot_meta.is_full())
	.ok_or(BlockstoreProcessorError::SlotNotFull(slot, block_location))?;

[ksn6]

A single invocation to .multi_get_keys is probably better here, in case we don't get to the online merkle idea.

[AshwinSekar]

yeah good call that's definitely better - updated

[ksn6]

LGTM

[ksn6]

nit: implicitly

[ksn6]

Would use checked_mul + return None on failure, just in case.

Slightly far-fetched - given proposals to remove CU limits and have block limits only be time-based, if a malicious leader constructed a block with a very large number of no-ops, I wonder whether we could have 2^32 / DATA_SHREDS_PER_FEC_SET_BLOCK ~ 135M FEC sets, which would then cause the cluster to crash here.

[AshwinSekar]

we're actually protected by that type of attack here

alpenglow/ledger/src/shred.rs

Lines 801 to 803 in 079cd89

	if index >= MAX_DATA_SHREDS_PER_SLOT as u32 {
	stats.index_out_of_bounds += 1;
	return true;

Before the shred is even inserted into blockstore we verify that the index is less than 32k, so fec_set_count cannot be more than ~1000

[ksn6]

Suggested change

	let mut merkle_tree_leaves = self
	.merkle_root_meta_cf
	.multi_get_bytes(&keys)
	.map(|get_result| {
	let bytes = get_result
	.expect("Blockstore operations must succeed")
	.expect("Merkle root meta must exist for all fec sets in full slot");
	let merkle_root = bincode::deserialize::<MerkleRootMeta>(bytes.as_ref())
	.expect("Merkle root meta column only contains valid MerkleRootMetas")
	.merkle_root()
	.expect("Legacy shreds no longer exist, merkle root must be present");
	Ok(merkle_root)
	})
	.collect::<Vec<_>>();
	// Add parent info as the last leaf
	let parent_info_hash = hashv(&[
	&parent_meta.parent_slot.to_le_bytes(),
	parent_meta.parent_block_id.as_ref(),
	]);
	merkle_tree_leaves.push(Ok(parent_info_hash));
	let merkle_tree_leaves: Vec<_> = self
	.merkle_root_meta_cf
	.multi_get_bytes(&keys)
	.map(|get_result| {
	let bytes = get_result
	.expect("Blockstore operations must succeed")
	.expect("Merkle root meta must exist for all fec sets in full slot");
	bincode::deserialize::<MerkleRootMeta>(bytes.as_ref())
	.expect("Merkle root meta column only contains valid MerkleRootMetas")
	.merkle_root()
	.expect("Legacy shreds no longer exist, merkle root must be present")
	})
	// Add parent info as the last leaf
	.chain(std::iter::once(hashv(&[
	&parent_meta.parent_slot.to_le_bytes(),
	parent_meta.parent_block_id.as_ref(),
	])))
	.collect();

[ksn6]

Suggested change

	let tree_size = fec_set_count + 1;
	let mut proofs = Vec::with_capacity(tree_size);
	for leaf_index in 0..tree_size {
	let proof_iter = make_merkle_proof(leaf_index, tree_size, &merkle_tree);
	let proof: Vec<u8> = proof_iter
	.flat_map(|proof| {
	proof
	.expect("Merkle proof construction cannot have failed")
	.as_slice()
	})
	.copied()
	.collect();
	debug_assert_eq!(
	proof.len(),
	get_proof_size(tree_size) as usize * SIZE_OF_MERKLE_PROOF_ENTRY
	);
	proofs.push(proof);
	}
	let tree_size = fec_set_count + 1;
	let proofs: Vec<Vec<u8>> = (0..tree_size)
	.map(|leaf_index| {
	make_merkle_proof(leaf_index, tree_size, &merkle_tree)
	.map(|hash| hash.expect("Merkle proof construction cannot fail"))
	.flat_map(|hash| hash.as_ref())
	.copied()
	.collect()
	})
	.inspect(|proof| {
	debug_assert_eq!(
	proof.len(),
	get_proof_size(tree_size) as usize * SIZE_OF_MERKLE_PROOF_ENTRY
	);
	})
	.collect();

[ksn6]

LGTM