perf: Replace Vec w/ static arrays for act buffers

julianknutsen · julianknutsen · commit 9e79003474d0 · 2020-10-02T11:37:49.000-07:00
After reviewing lightningdevkit#494 there was design feedback on the use of Vec vs. arrays in this layer of the code for fragmentation reasons. To get ahead of the same issues in this new state machine and to limit the behavior changes from master, remove Vec from the state machine in favor of thin wrappers around fixed-size arrays. This patch reintroduces the Act object (a thin wrapper around fixed size arrays) with some convenience features to make them a bit easier to pass around and build. The Handshake code is still note Vec-clean as the encryption code uses Vecs during encryption, but it is one step closer to passing back slices to the peer_handler.
diff --git a/lightning/src/ln/peers/handshake/acts.rs b/lightning/src/ln/peers/handshake/acts.rs
@@ -0,0 +1,171 @@
+//! Helper library for working with NOISE handshake Act data. Contains utilities for passing Act
+//! objects around and building them from received data.
+//! Act objects are thin wrappers about raw arrays for stack-based processing as well as convenient
+//! coercion to slices for flexible use by the higher-level modules.
+
+use std::{cmp, ops};
+
+pub const ACT_ONE_TWO_LENGTH: usize = 50;
+pub const ACT_THREE_LENGTH: usize = 66;
+pub const EMPTY_ACT_ONE: ActOne = [0; ACT_ONE_TWO_LENGTH];
+pub const EMPTY_ACT_TWO: ActTwo = EMPTY_ACT_ONE;
+pub const EMPTY_ACT_THREE: ActThree = [0; ACT_THREE_LENGTH];
+type ActOne = [u8; ACT_ONE_TWO_LENGTH];
+type ActTwo = ActOne;
+type ActThree = [u8; ACT_THREE_LENGTH];
+
+/// Wrapper for any act message
+pub(super) enum Act {
+	One(ActOne),
+	Two(ActTwo),
+	Three(ActThree)
+}
+
+impl Act {
+	/// Returns the size of the underlying array
+	fn len(&self) -> usize {
+		self.as_ref().len()
+	}
+}
+
+impl From<ActBuilder> for Act {
+	/// Convert a finished ActBuilder into an Act
+	fn from(act_builder: ActBuilder) -> Self {
+		assert!(act_builder.is_finished());
+		act_builder.partial_act
+	}
+}
+
+impl ops::Deref for Act {
+	type Target = [u8];
+
+	/// Allows automatic coercion to slices in function calls
+	/// &Act -> &[u8]
+	fn deref(&self) -> &Self::Target {
+		match self {
+			&Act::One(ref act) => {
+				act
+			}
+			&Act::Two(ref act) => {
+				act
+			}
+			&Act::Three(ref act) => {
+				act
+			}
+		}
+	}
+}
+
+impl AsRef<[u8]> for Act {
+	/// Allow convenient exposure of the underlying array through as_ref()
+	/// Act.as_ref() -> &[u8]
+	fn as_ref(&self) -> &[u8] {
+		&self
+	}
+}
+
+// Simple fill implementation for both almost-identical structs to deduplicate code
+// $act: Act[One|Two|Three], $input: &[u8]; returns &[u8] of remaining input that was not processed
+macro_rules! fill_impl {
+	($act:expr, $write_pos:expr, $input:expr) => {{
+		let fill_amount = cmp::min($act.len() - $write_pos, $input.len());
+
+		$act[$write_pos..$write_pos + fill_amount].copy_from_slice(&$input[..fill_amount]);
+
+		$write_pos += fill_amount;
+		&$input[fill_amount..]
+	}}
+}
+
+/// Light wrapper around an Act that allows multiple fill() calls before finally
+/// converting to an Act via Act::from(act_builder). Handles all of the bookkeeping
+/// and edge cases of the array fill
+pub(super) struct ActBuilder {
+	partial_act: Act,
+	write_pos: usize
+}
+
+impl ActBuilder {
+	/// Returns a new ActBuilder for Act::One
+	pub(super) fn new(empty_act: Act) -> Self {
+		Self {
+			partial_act: empty_act,
+			write_pos: 0
+		}
+	}
+
+	/// Fills the Act with bytes from input and returns the unprocessed bytes
+	pub(super) fn fill<'a>(&mut self, input: &'a [u8]) -> &'a [u8] {
+		match &mut self.partial_act {
+			&mut Act::One(ref mut act) => {
+				fill_impl!(act, self.write_pos, input)
+			}
+			&mut Act::Two(ref mut act) => {
+				fill_impl!(act, self.write_pos, input)
+			}
+			&mut Act::Three(ref mut act) => {
+				fill_impl!(act, self.write_pos, input)
+			}
+		}
+	}
+
+	/// Returns true if the Act is finished building (enough bytes via fill())
+	pub(super) fn is_finished(&self) -> bool {
+		self.write_pos == self.partial_act.len()
+	}
+}
+
+#[cfg(test)]
+mod tests {
+	use super::*;
+
+	// Test bookkeeping of partial fill
+	#[test]
+	fn partial_fill() {
+		let mut builder = ActBuilder::new(Act::One(EMPTY_ACT_ONE));
+
+		let remaining = builder.fill(&[1, 2, 3]);
+		assert_eq!(builder.partial_act.len(), ACT_ONE_TWO_LENGTH);
+		assert_eq!(builder.write_pos, 3);
+		assert!(!builder.is_finished());
+		assert_eq!(remaining, &[]);
+	}
+
+	// Test bookkeeping of exact fill
+	#[test]
+	fn exact_fill() {
+		let mut builder = ActBuilder::new(Act::One(EMPTY_ACT_ONE));
+
+		let input = [0; 50];
+		let remaining = builder.fill(&input);
+		assert_eq!(builder.partial_act.len(), ACT_ONE_TWO_LENGTH);
+		assert_eq!(builder.write_pos, ACT_ONE_TWO_LENGTH);
+		assert!(builder.is_finished());
+		assert_eq!(Act::from(builder).as_ref(), &input[..]);
+		assert_eq!(remaining, &[]);
+	}
+
+	// Test bookkeeping of overfill
+	#[test]
+	fn over_fill() {
+		let mut builder = ActBuilder::new(Act::One(EMPTY_ACT_ONE));
+
+		let input = [0; 51];
+		let remaining = builder.fill(&input);
+
+		assert_eq!(builder.partial_act.len(), ACT_ONE_TWO_LENGTH);
+		assert_eq!(builder.write_pos, ACT_ONE_TWO_LENGTH);
+		assert!(builder.is_finished());
+		assert_eq!(Act::from(builder).as_ref(), &input[..50]);
+		assert_eq!(remaining, &[0]);
+	}
+
+	// Converting an unfinished ActBuilder panics
+	#[test]
+	#[should_panic(expected="as")]
+	fn convert_not_finished_panics() {
+		let builder = ActBuilder::new(Act::One(EMPTY_ACT_ONE));
+		let _should_panic = Act::from(builder);
+	}
+}
+
diff --git a/lightning/src/ln/peers/handshake/mod.rs b/lightning/src/ln/peers/handshake/mod.rs
@@ -7,6 +7,7 @@ use bitcoin::secp256k1::{PublicKey, SecretKey};
 use ln::peers::conduit::Conduit;
 use ln::peers::handshake::states::{HandshakeState, IHandshakeState};
 
+mod acts;
 mod states;
 
 /// Object for managing handshakes.
@@ -46,7 +47,7 @@ impl PeerHandshake {
 		self.state = Some(next_state);
 
 		self.ready_for_process = true;
-		response_vec_opt.unwrap()
+		response_vec_opt.unwrap().to_vec()
 	}
 
 	/// Process act dynamically
@@ -61,7 +62,12 @@ impl PeerHandshake {
 		assert!(self.ready_for_process);
 		let cur_state = self.state.take().unwrap();
 
-		let (act_opt, mut next_state) = cur_state.next(input)?;
+		// Convert the Act to a Vec before passing it back. Next patch removes this in favor
+		// of passing back a slice.
+		let (act_opt, mut next_state) = match cur_state.next(input)? {
+			(Some(act), next_state) => (Some(act.to_vec()), next_state),
+			(None, next_state) => (None, next_state)
+		};
 
 		let result = match next_state {
 			HandshakeState::Complete(ref mut conduit_and_pubkey) => {
diff --git a/lightning/src/ln/peers/handshake/states.rs b/lightning/src/ln/peers/handshake/states.rs
