Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Overwinter SignatureHash #2903

Merged
merged 18 commits into from Feb 20, 2018
Merged

Overwinter SignatureHash #2903

merged 18 commits into from Feb 20, 2018

Conversation

str4d
Copy link
Contributor

@str4d str4d commented Jan 25, 2018
edited

@str4d str4d added C-upstream-port Category: Changes that are ported from the Bitcoin Core codebase. A-consensus Area: Consensus rules network upgrade management M-requires-nu A network upgrade is required to implement this. D-bitcoin-divergence Design issue: Divergence from Bitcoin (upstream code and/or architecture). work-in-progress M-potential-loss-of-funds This issue risks a potential loss of funds for a user. Z-NU0 wishlist labels Jan 25, 2018
@str4d str4d added this to the 1.0.15 milestone Jan 25, 2018
@str4d str4d added this to Work Queue in Network Upgrade 0 via automation Jan 25, 2018
@str4d str4d mentioned this pull request Jan 25, 2018
Closed
@str4d
Copy link
Contributor Author

str4d commented Jan 25, 2018
edited

This is a rebased and cleaned-up version of #2896. Still todo:

  • Rebase on top of activation logic.
  • Implement version-handling (making parts of the transaction validation branch ID-aware).
  • Switch inner hashes to use BLAKE2b-256.
  • Rebase on top of transaction format changes.
  • Add / update tests.
  • Update zcbenchmark to use new transaction format with caching.

@str4d str4d force-pushed the 1408-sighash branch 2 times, most recently from 74a57e1 to e92418b Compare February 1, 2018 15:25
@str4d str4d self-assigned this Feb 2, 2018
@str4d str4d force-pushed the 1408-sighash branch 3 times, most recently from 516a278 to 7eeb9fe Compare February 3, 2018 00:00
@str4d
Copy link
Contributor Author

str4d commented Feb 3, 2018

Note to reviewers: do not trust the commit ordering on GitHub, it does not handle the rebasing well.

@str4d
Copy link
Contributor Author

str4d commented Feb 3, 2018

Just to check that nothing was horribly broken, I adjusted zcbenchmark to use the more efficient sighash, and compared it to current master. Results (measured on my dev laptop, so take values with a grain of salt):

Current SigHash

[
  {
    "runningtime": 0.122434
  },
  {
    "runningtime": 0.117106
  },
  {
    "runningtime": 0.117861
  },
  {
    "runningtime": 0.120877
  },
  {
    "runningtime": 0.119742
  }
]

New SigHash

[
  {
    "runningtime": 0.118283
  },
  {
    "runningtime": 0.108241
  },
  {
    "runningtime": 0.106504
  },
  {
    "runningtime": 0.110444
  },
  {
    "runningtime": 0.109168
  }
]

New SigHash, with caching

[
  {
    "runningtime": 0.041709
  },
  {
    "runningtime": 0.042964
  },
  {
    "runningtime": 0.040389
  },
  {
    "runningtime": 0.04138
  },
  {
    "runningtime": 0.041503
  }
]

@str4d str4d force-pushed the 1408-sighash branch 2 times, most recently from 9d5c135 to 44212dd Compare February 5, 2018 00:15
@str4d
Copy link
Contributor Author

str4d commented Feb 5, 2018

Once I rebase this on #2925 (so all the underlying pieces are in place, and this code can be finished), I will collect benchmark data for both the old and new SignatureHash as a function of the number of inputs, to verify that this PR does indeed address the performance problem sufficiently.

@zkbot
Copy link
Contributor

zkbot commented Feb 7, 2018

☔ The latest upstream changes (presumably #2898) made this pull request unmergeable. Please resolve the merge conflicts.

str4d and others added 7 commits February 20, 2018 04:22
@str4d
Add consensus branch ID parameter to SignatureHash, remove SigVersion…
be12669 
… parameter

We do not need to be able to calculate multiple SignatureHash versions for a
single transaction format; instead, we use the transaction format to determine
the SigVersion.

The consensus branch ID *does* need to be passed in from the outside, as only
the caller knows the context in which the SignatureHash is being calculated
(ie. mempool acceptance vs. block validation).

JoinSplit signature verification has been moved into ContextualCheckTransaction,
where the consensus branch ID can be obtained.

The argument to the sign command for zcash-tx has been modified to take a height
in addition to the optional sigtype flags.
@str4d
Cleanup: Wrap function arguments
d55e5e7
@arielgabizon @str4d
add blake2b writer
132dc81
@arielgabizon @str4d
update SignatureHash according to Overwinter spec
7245f32 
with help from str4d
@str4d
Regenerate SignatureHash tests
a3353b4
@str4d
Make number of inputs configurable in validatelargetx test
818b94f
@str4d
Use v3 transactions with caching for validatelargetx benchmark
4553901
@zkbot
Copy link
Contributor

zkbot commented Feb 20, 2018

☔ The latest upstream changes (presumably #2940) made this pull request unmergeable. Please resolve the merge conflicts.

@str4d
Copy link
Contributor Author

str4d commented Feb 20, 2018

Rebased on master to fix merge conflicts, namely removing the partial commit from bitcoin/bitcoin#6915 which was fully back-ported in #2940.

@zkbot try

@zkbot
Copy link
Contributor

zkbot commented Feb 20, 2018

⌛ Trying commit 4553901 with merge 6db1012...

zkbot added a commit that referenced this pull request Feb 20, 2018
@zkbot
Auto merge of #2903 - str4d:1408-sighash, r=<try>
6db1012 
Overwinter SignatureHash

Implements ZIP 143.

Includes code cherry-picked from the following upstream PRs:

- bitcoin/bitcoin#7276
- bitcoin/bitcoin#7976
- bitcoin/bitcoin#8118
- bitcoin/bitcoin#8149
  - Only amount validation and SignatureHash commits.
- bitcoin/bitcoin#8346
- bitcoin/bitcoin#8524

Part of #2074 and #2254. Closes #1408 and #2584.
@zkbot
Copy link
Contributor

zkbot commented Feb 20, 2018

💔 Test failed - pr-try

@daira
Copy link
Contributor

daira commented Feb 20, 2018

ACK https://gist.github.com/str4d/ea30aa290d3a84555e973f44a9c0c0e0

@arielgabizon
Copy link
Contributor

image
why are we running this test that always fails?

@str4d
Copy link
Contributor Author

str4d commented Feb 20, 2018

@arielgabizon so we know that the expected-failures builder is working. We added that builder so we had the abillity to merge known-failing tests before we merged something to make them pass. There have been several instances of wanting to do this, but obviously making them regular tests that fail would mean our CI system would refuse to merge the PR 🙃

@str4d
Copy link
Contributor Author

str4d commented Feb 20, 2018

The failure in the try above was a spurious hang in the RPC tests.

Thanks all! Any further issues raised can be addressed in subsequent PRs.

@zkbot r+

@zkbot
Copy link
Contributor

zkbot commented Feb 20, 2018

📌 Commit 4553901 has been approved by str4d

@zkbot
Copy link
Contributor

zkbot commented Feb 20, 2018

⌛ Testing commit 4553901 with merge 8487be8...

zkbot added a commit that referenced this pull request Feb 20, 2018
@zkbot
Auto merge of #2903 - str4d:1408-sighash, r=str4d
8487be8 
Overwinter SignatureHash

Implements ZIP 143.

Includes code cherry-picked from the following upstream PRs:

- bitcoin/bitcoin#7276
- bitcoin/bitcoin#7976
- bitcoin/bitcoin#8118
- bitcoin/bitcoin#8149
  - Only amount validation and SignatureHash commits.
- bitcoin/bitcoin#8346
- bitcoin/bitcoin#8524

Part of #2074 and #2254. Closes #1408 and #2584.
@zkbot
Copy link
Contributor

zkbot commented Feb 20, 2018

☀️ Test successful - pr-merge
Approved by: str4d
Pushing 8487be8 to master...

@zkbot zkbot merged commit 4553901 into zcash:master Feb 20, 2018
Network Upgrade 0 automation moved this from Work Queue to Complete Feb 20, 2018
This was referenced Feb 20, 2018
Closed
Closed
Merged
This was referenced Feb 20, 2018
Closed
Open
@str4d str4d deleted the 1408-sighash branch February 22, 2018 17:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@daira daira daira approved these changes

@arielgabizon arielgabizon arielgabizon approved these changes

@bitcartel bitcartel Awaiting requested review from bitcartel

@ebfull ebfull Awaiting requested review from ebfull

@arcalinea arcalinea Awaiting requested review from arcalinea

Assignees

@str4d str4d

Labels
A-consensus Area: Consensus rules C-upstream-port Category: Changes that are ported from the Bitcoin Core codebase. D-bitcoin-divergence Design issue: Divergence from Bitcoin (upstream code and/or architecture). M-potential-loss-of-funds This issue risks a potential loss of funds for a user. M-requires-nu A network upgrade is required to implement this. network upgrade management Z-NU0 wishlist
Projects
No open projects
Network Upgrade 0
  
Complete
Milestone
v1.0.15
Development

Successfully merging this pull request may close these issues.

None yet
8 participants
@str4d @zkbot @arielgabizon @daira @sipa @jonasnick @jtimon @NicolasDorier