Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Additional Cryptography Primitives Usage / Devp2p #3246

Open
acolytec3 opened this issue Jan 19, 2024 · 5 comments
Open

Additional Cryptography Primitives Usage / Devp2p #3246

acolytec3 opened this issue Jan 19, 2024 · 5 comments

Comments

@acolytec3
Copy link
Contributor

Starting with #3192 and continuing in #3245, we have begun incorporating cryptographic primitives from @polkadot/wasm-crypto where applicable within our codebase in the name of improving performance (since the wasm versions of these primitives are 2-10x faster on average).

Outstanding items include

  • Deciding whether or not to expand usage of custom cryptographic primitives to util
  • Work through remaining devp2p crypto usage and figure out if the wasm-crypto primitives that seem to correspond to secp256k1.getPublicKey from ethereum-cryptograph can be adapted to work or not; figure out how to replace the keccak256 usage in mac.ts since this decomposes the hash function into constituent parts not available in the wasm equivalent
  • See if there are other cryptography usage we should be looking to migrate to wasm equivalents.
@paulmillr
Copy link
Member

paulmillr commented Jan 30, 2024

@acolytec3 @holgerd77 I've mentioned it several times - if hashing is the bottleneck, we can use the unrolled implementation of sha3, present in unrolled-nbl-hashes-sha3. It can also be audited.

Switching to the package gives 70-97% of the gained speed benefit: details, source code.

noble noble unrolled wasm
1k-3-32-ran 194 131 117
1k-5-32-ran 237 164 149
1k-9-32-ran 259 189 168
1k-1k-32-ran 272 192 175
1k-1k-32-mir 286 206 189
checkp: 5000 3901 5224 5373

wasm-crypto is basically 256 kilobytes of obfuscated, unauditable code. See bundle-polkadot-wasm-crypto.js. There are no reproducible deterministic builds, etc. How would you know it doesn't steal private keys?

@holgerd77
Copy link
Member

@paulmillr thanks for the summary!

This is not so much about a specific solution (WASM!) but the work we have done in e.g. #3192 and follow-up PRs is about generally getting more flexible about what crypto to use depending on the use case. So it is basically easier to swap the crypto libraries in a structured way now.

For the client we have decided to go WASM by default, since this is substantially faster for the different crypto primitives and the client both does not handle private keys and is mainly used for testnet/devnet runs, and there we benefit strongly from faster execution times and at the same time security requirements are not high.

If the client package is started to get adopted in more serious production cases in the future we might need to revise this decision. The unrolled version of the hashing package might definitely be an option to consider, thanks for the pointer.

@holgerd77 holgerd77 changed the title Cryptography primitive performance tracking issue Additional Cryptography Primitives Usage / Devp2p Sep 20, 2024
@holgerd77
Copy link
Member

Have renamed this with some more devp2p focus, since that might be the part still worth to tackle.

@acolytec3
Copy link
Contributor Author

Going to close since we're moving away from wasm deps where possible rather than looking to expand.

@holgerd77
Copy link
Member

Hmm, this is mainly targeted at the client, there we have all WASM in and still look for speed and security is not that much of a factor (and once we modularize we can still keep a fast less-secure WASM version), so I would tend to not close, these devp2p switches might bring somewhat significant improvements and reduce CPU load. Will reopen for now.

@holgerd77 holgerd77 reopened this Oct 23, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants