Efficient Fiat-Shamir challenges using hashing #15

Inphi · 2022-08-22T16:01:54Z

By avoiding ssz merklelization, we significantly reduce the latency of generating FS
challenges.

name                 old time/op    new time/op    delta
VerifyMultiple/8-6     73.9ms ± 0%    40.7ms ± 0%   ~     (p=1.000 n=1+1)
VerifyMultiple/16-6     138ms ± 0%      81ms ± 0%   ~     (p=1.000 n=1+1)

name                 old alloc/op   new alloc/op   delta
VerifyMultiple/8-6     25.2MB ± 0%    22.1MB ± 0%   ~     (p=1.000 n=1+1)
VerifyMultiple/16-6    50.4MB ± 0%    44.1MB ± 0%   ~     (p=1.000 n=1+1)

name                 old allocs/op  new allocs/op  delta
VerifyMultiple/8-6       400k ± 0%      301k ± 0%   ~     (p=1.000 n=1+1)
VerifyMultiple/16-6      800k ± 0%      603k ± 0%   ~     (p=1.000 n=1+1)

By avoiding ssz merklelization, we significantly reduce the latency of generating FS challenges. Before: ``` BenchmarkVerifyMultiple/8-6 16 69890960 ns/op 25221325 B/op 399904 allocs/op BenchmarkVerifyMultiple/16-6 8 138506286 ns/op 50439658 B/op 799792 allocs/op ``` After: ``` BenchmarkVerifyMultiple/8-6 27 41349482 ns/op 22059083 B/op 301451 allocs/op BenchmarkVerifyMultiple/16-6 14 80868200 ns/op 44114668 B/op 602909 allocs/op ```

roberto-bayardo · 2022-08-22T19:04:56Z

This is great! I assume this is not a backwards compatible change since the hash values presumably change?

Inphi · 2022-08-22T19:40:02Z

yup. This isnt backwards compatible

roberto-bayardo · 2022-08-22T21:07:53Z

OK, will try to implement in prysm soon then.

roberto-bayardo · 2022-08-22T21:13:35Z

core/types/hashing.go

+
+// sszHash returns the hash ot the raw serialized ssz-container (i.e. without merkelization)
+func sszHash(c codec.Serializable) ([32]byte, error) {
+	sha := sha256.New()


why sha256 and not keccak/sha3? I guess it might be faster but possibly less future proof?

No real reason other than to be consistent with how hashing is already done on the beacon chain. sha256 is the only hash being used on the beacon chain.

Thanks, implementation consistency is certainly a good reason.

Inphi · 2022-08-23T13:30:33Z

Will merge once the spec has been updated for sha256 challenges.

Inphi mentioned this pull request Aug 22, 2022

EIP4844: Impove performance by avoiding merkle trees when generating KZG challenges ethereum/consensus-specs#2980

Closed

Inphi marked this pull request as ready for review August 22, 2022 18:45

Inphi requested review from roberto-bayardo and mdehoog August 22, 2022 18:45

roberto-bayardo reviewed Aug 22, 2022

View reviewed changes

roberto-bayardo approved these changes Aug 22, 2022

View reviewed changes

Inphi merged commit fce14ba into mdehoog:eip-4844 Aug 25, 2022

Inphi deleted the inphi/fs-hash branch August 25, 2022 19:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Efficient Fiat-Shamir challenges using hashing #15

Efficient Fiat-Shamir challenges using hashing #15

Inphi commented Aug 22, 2022

roberto-bayardo commented Aug 22, 2022

Inphi commented Aug 22, 2022

roberto-bayardo commented Aug 22, 2022

roberto-bayardo Aug 22, 2022

Inphi Aug 22, 2022

roberto-bayardo Aug 22, 2022

Inphi commented Aug 23, 2022

Efficient Fiat-Shamir challenges using hashing #15

Efficient Fiat-Shamir challenges using hashing #15

Conversation

Inphi commented Aug 22, 2022

roberto-bayardo commented Aug 22, 2022

Inphi commented Aug 22, 2022

roberto-bayardo commented Aug 22, 2022

roberto-bayardo Aug 22, 2022

Choose a reason for hiding this comment

Inphi Aug 22, 2022

Choose a reason for hiding this comment

roberto-bayardo Aug 22, 2022

Choose a reason for hiding this comment

Inphi commented Aug 23, 2022