feat: adjust witness size limits

[pugachAG]

This PR includes the following:

• Set size limit for compressed witness to 32MiB. This is at least twice as big as the witness we expected to handle, so it give us quite some safety margin.
• Set size limit for the compressed witness to 64MiB. Same as above, this values give us pretty big margin on top of witness sizes we expect.
• Reduce partial witness cache size to 40 entries to limit memory usage at ~1.3GiB. 40 entries should be more than enough to handle all kinds of crazy chain forks 🙃

[shreyan-gupta]

Verifying, we have both MAX_COMPRESSED_STATE_WITNESS_SIZE and MAX_RAW_STATE_WITNESS_SIZE to take into account decoding size bomb thingi issue?

[pugachAG]

@shreyan-gupta only MAX_RAW_STATE_WITNESS_SIZE is used for that (in fact that is the only place where that is currently used). MAX_COMPRESSED_STATE_WITNESS_SIZE limit is applied before that when verifying partial witness.
So yeah, effectively both limits are currently applied.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 71.41%. Comparing base (cceb7b5) to head (f91fc2c).
Report is 14 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #11511      +/-   ##
==========================================
+ Coverage   71.35%   71.41%   +0.05%     
==========================================
  Files         787      788       +1     
  Lines      159385   159881     +496     
  Branches   159385   159881     +496     
==========================================
+ Hits       113734   114178     +444     
  Misses      40734    40734              
- Partials     4917     4969      +52     

Flag	Coverage Δ
backward-compatibility	0.23% <0.00%> (-0.01%)	⬇️
db-migration	0.23% <0.00%> (-0.01%)	⬇️
genesis-check	1.36% <0.00%> (-0.01%)	⬇️
integration-tests	37.69% <100.00%> (+0.15%)	⬆️
linux	68.83% <100.00%> (+0.07%)	⬆️
linux-nightly	70.93% <100.00%> (+0.04%)	⬆️
macos	52.45% <100.00%> (+1.66%)	⬆️
pytests	1.57% <0.00%> (-0.01%)	⬇️
sanity-checks	1.37% <0.00%> (-0.01%)	⬇️
unittests	66.10% <100.00%> (+0.03%)	⬆️
upgradability	0.28% <0.00%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[tayfunelmas]

nit. I think MAX_UNCOMPRESSED_STATE_WITNESS_SIZE could be clearer. or maybe MAX_STATE_WITNESS_SIZE? "raw" is ambiguous.

[pugachAG]

agree, done in f91fc2c

[tayfunelmas]

Can we even reduce it further like 16M and 32M respectively? maybe experiment with it later, do not want to block this one as it also clarifies the constant names etc.

[jancionear]

LGTM, with all the limits we don't expect the witness to be larger than 16MB, so 32MB should give us a safe margin.

[jancionear]

Can we even reduce it further like 16M and 32M respectively? maybe experiment with it later, do not want to block this one as it also clarifies the constant names etc.

I would leave it at 32/64, it's safer this way. There might be some weird case where the witness gets above 16MB and with 16MB limit the network would stall. 32MB is safer, and doesn't really hurt.

[pugachAG]

@tayfunelmas Yes, I think we could reduce it further. For that we would need to carefully consider all current size limits in place (storage proof, transactions, current WIP with receipts). Currently selected values still have a lot of margin to be on the safe side, but I want to merge it ASAP to replace the current limit of 512MiB with something more reasonable.