Skip to content

Commit

Permalink
Merge from main
Browse files Browse the repository at this point in the history
  • Loading branch information
akoshelev committed Oct 9, 2024
2 parents 3409e93 + 7e1c180 commit 5211ad6
Show file tree
Hide file tree
Showing 113 changed files with 5,013 additions and 2,215 deletions.
2 changes: 2 additions & 0 deletions .clippy.toml
Original file line number Diff line number Diff line change
Expand Up @@ -7,3 +7,5 @@ disallowed-methods = [
{ path = "std::mem::ManuallyDrop::new", reason = "Not running the destructors on futures created inside seq_join module will cause UB in IPA. Make sure you don't leak any of those." },
{ path = "std::vec::Vec::leak", reason = "Not running the destructors on futures created inside seq_join module will cause UB in IPA. Make sure you don't leak any of those." },
]

future-size-threshold = 8192
28 changes: 18 additions & 10 deletions .github/workflows/check.yml
Original file line number Diff line number Diff line change
Expand Up @@ -53,7 +53,7 @@ jobs:

- name: Clippy
if: ${{ success() || failure() }}
run: cargo clippy --tests
run: cargo clippy --features "cli test-fixture" --tests

- name: Clippy concurrency tests
if: ${{ success() || failure() }}
Expand All @@ -68,17 +68,14 @@ jobs:
run: cargo build --tests

- name: Run tests
run: cargo test
run: cargo test --features "cli test-fixture relaxed-dp"

- name: Run tests with multithreading feature enabled
run: cargo test --features "multi-threading"

- name: Run Web Tests
run: cargo test -p ipa-core --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate"

- name: Run Integration Tests
run: cargo test --test encrypted_input --features "cli test-fixture web-app in-memory-infra"

release:
name: Release builds and tests
runs-on: ubuntu-latest
Expand Down Expand Up @@ -148,8 +145,11 @@ jobs:
- name: Run arithmetic bench
run: cargo bench --bench oneshot_arithmetic --no-default-features --features "enable-benches compact-gate"

- name: Run compact gate tests
- name: Run compact gate tests for HTTP stack
run: cargo test --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate"

- name: Run in-memory compact gate tests
run: cargo test --features "compact-gate"
slow:
name: Slow tests
env:
Expand All @@ -172,8 +172,17 @@ jobs:
target/
key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.toml') }}

- name: End-to-end tests
run: cargo test --release --test "*" --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate"
- name: Integration Tests - Compact Gate
run: cargo test --release --test "compact_gate" --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate"

- name: Integration Tests - Helper Networks
run: cargo test --release --test "helper_networks" --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate"

- name: Integration Tests - Hybrid
run: cargo test --release --test "hybrid" --features "cli test-fixture"

- name: Integration Tests - IPA with Relaxed DP
run: cargo test --release --test "ipa_with_relaxed_dp" --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate relaxed-dp"

# sanitizers currently require nightly https://github.com/rust-lang/rust/issues/39699
sanitize:
Expand All @@ -192,7 +201,7 @@ jobs:
- name: Add Rust sources
run: rustup component add rust-src
- name: Run tests with sanitizer
run: RUSTFLAGS="-Z sanitizer=${{ matrix.sanitizer }} -Z sanitizer-memory-track-origins" cargo test -Z build-std --target $TARGET --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate ${{ matrix.features }}"
run: RUSTFLAGS="-Z sanitizer=${{ matrix.sanitizer }} -Z sanitizer-memory-track-origins" cargo test -Z build-std -p ipa-core --target $TARGET --no-default-features --features "cli web-app real-world-infra test-fixture compact-gate ${{ matrix.features }}"

miri:
runs-on: ubuntu-latest
Expand Down Expand Up @@ -236,4 +245,3 @@ jobs:
token: ${{ secrets.CODECOV_TOKEN }}
file: ipa.cov
fail_ci_if_error: false

8 changes: 5 additions & 3 deletions .github/workflows/docker.yml
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,9 @@ jobs:
type=sha
- name: "Setup Docker Buildx"
uses: docker/setup-buildx-action@v2
uses: docker/setup-buildx-action@v3
with:
platforms: linux/amd64

- name: "Login to GitHub Container Registry"
uses: docker/login-action@v2
Expand All @@ -44,10 +46,10 @@ jobs:
password: ${{ secrets.GITHUB_TOKEN }}

- name: "Build and Publish Helper Image"
uses: docker/build-push-action@v4
uses: docker/build-push-action@v6
with:
context: .
file: ./docker/ci/helper.Dockerfile
file: ./docker/helper.Dockerfile
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
Expand Down
1 change: 1 addition & 0 deletions .gitignore
Original file line number Diff line number Diff line change
Expand Up @@ -11,3 +11,4 @@
/in-market-test/hpke/bin
/in-market-test/hpke/lib
/in-market-test/hpke/pyvenv.cfg
input-data-*.txt
13 changes: 0 additions & 13 deletions docker/ci/helper.Dockerfile

This file was deleted.

4 changes: 2 additions & 2 deletions docker/helper.Dockerfile
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
# syntax=docker/dockerfile:1
ARG SOURCES_DIR=/usr/src/ipa
FROM rust:bullseye AS builder
FROM rust:bookworm AS builder
ARG SOURCES_DIR

# Prepare helper binaries
Expand All @@ -10,7 +10,7 @@ RUN set -eux; \
cargo build --bin helper --release --no-default-features --features "web-app real-world-infra compact-gate"

# Copy them to the final image
FROM debian:bullseye-slim
FROM rust:slim-bookworm
ENV HELPER_BIN_PATH=/usr/local/bin/ipa-helper
ENV CONF_DIR=/etc/ipa
ARG SOURCES_DIR
Expand Down
33 changes: 28 additions & 5 deletions ipa-core/Cargo.toml
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,8 @@ reveal-aggregation = []
aggregate-circuit = []
# IPA protocol based on OPRF
ipa-prf = []
# relaxed DP, off by default
relaxed-dp = []

[dependencies]
ipa-step = { version = "*", path = "../ipa-step" }
Expand All @@ -87,16 +89,14 @@ async-scoped = { version = "0.9.0", features = ["use-tokio"], optional = true }
axum = { version = "0.7.5", optional = true, features = ["http2", "macros"] }
# The following is a temporary version until we can stabilize the build on a higher version
# of axum, rustls and the http stack.
axum-server = { git = "https://github.com/cberkhoff/axum-server/", branch = "0.6.1", version = "0.6.1", optional = true, features = [
"tls-rustls",
] }
axum-server = { version = "0.7.1", optional = true, features = ["tls-rustls"] }
base64 = { version = "0.21.2", optional = true }
bitvec = "1.0"
bytes = "1.4"
clap = { version = "4.3.2", optional = true, features = ["derive"] }
comfy-table = { version = "7.0", optional = true }
config = "0.14"
console-subscriber = { version = "0.2", optional = true }
console-subscriber = { version = "0.4", optional = true }
criterion = { version = "0.5.1", optional = true, default-features = false, features = [
"async_tokio",
"plotters",
Expand Down Expand Up @@ -152,7 +152,7 @@ typenum = { version = "1.17", features = ["i128"] }
# hpke is pinned to it
x25519-dalek = "2.0.0-rc.3"

[target.'cfg(not(target_env = "msvc"))'.dependencies]
[target.'cfg(all(not(target_env = "msvc"), not(target_os = "macos")))'.dependencies]
tikv-jemallocator = "0.5.0"

[build-dependencies]
Expand Down Expand Up @@ -203,6 +203,11 @@ name = "crypto_util"
required-features = ["cli", "test-fixture", "web-app"]
bench = false

[[bin]]
name = "in_the_clear"
required-features = ["cli", "test-fixture", "web-app"]
bench = false

[[bench]]
name = "criterion_arithmetic"
path = "benches/ct/arithmetic_circuit.rs"
Expand Down Expand Up @@ -256,3 +261,21 @@ required-features = [
"real-world-infra",
"test-fixture",
]

[[test]]
name = "ipa_with_relaxed_dp"
required-features = [
"cli",
"compact-gate",
"web-app",
"real-world-infra",
"test-fixture",
"relaxed-dp",
]

[[test]]
name = "hybrid"
required-features = [
"test-fixture",
"cli",
]
7 changes: 6 additions & 1 deletion ipa-core/benches/oneshot/ipa.rs
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,11 @@ use ipa_step::StepNarrow;
use rand::{random, rngs::StdRng, SeedableRng};
use tokio::runtime::Builder;

#[cfg(all(not(target_env = "msvc"), not(feature = "dhat-heap")))]
#[cfg(all(
not(target_env = "msvc"),
not(feature = "dhat-heap"),
not(target_os = "macos")
))]
#[global_allocator]
static GLOBAL: tikv_jemallocator::Jemalloc = tikv_jemallocator::Jemalloc;

Expand Down Expand Up @@ -82,6 +86,7 @@ impl Args {
self.active_work
.map(NonZeroUsize::get)
.unwrap_or_else(|| self.query_size.clamp(16, 1024))
.next_power_of_two()
}

fn attribution_window(&self) -> Option<NonZeroU32> {
Expand Down
1 change: 0 additions & 1 deletion ipa-core/build.rs
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,6 @@ track_steps!(
dp::step,
step,
},
test_fixture::step
);

fn main() {
Expand Down
21 changes: 17 additions & 4 deletions ipa-core/src/app.rs
Original file line number Diff line number Diff line change
@@ -1,8 +1,9 @@
use std::{num::NonZeroUsize, sync::Weak};
use std::sync::Weak;

use async_trait::async_trait;

use crate::{
executor::IpaRuntime,
helpers::{
query::{PrepareQuery, QueryConfig, QueryInput},
routing::{Addr, RouteId},
Expand All @@ -13,17 +14,19 @@ use crate::{
protocol::QueryId,
query::{NewQueryError, QueryProcessor, QueryStatus},
sync::Arc,
utils::NonZeroU32PowerOfTwo,
};

#[derive(Default)]
pub struct AppConfig {
active_work: Option<NonZeroUsize>,
active_work: Option<NonZeroU32PowerOfTwo>,
key_registry: Option<KeyRegistry<PrivateKeyOnly>>,
runtime: IpaRuntime,
}

impl AppConfig {
#[must_use]
pub fn with_active_work(mut self, active_work: Option<NonZeroUsize>) -> Self {
pub fn with_active_work(mut self, active_work: Option<NonZeroU32PowerOfTwo>) -> Self {
self.active_work = active_work;
self
}
Expand All @@ -33,6 +36,12 @@ impl AppConfig {
self.key_registry = Some(key_registry);
self
}

#[must_use]
pub fn with_runtime(mut self, runtime: IpaRuntime) -> Self {
self.runtime = runtime;
self
}
}

pub struct Setup {
Expand Down Expand Up @@ -60,7 +69,7 @@ impl Setup {
#[must_use]
pub fn new(config: AppConfig) -> (Self, HandlerRef) {
let key_registry = config.key_registry.unwrap_or_else(KeyRegistry::empty);
let query_processor = QueryProcessor::new(key_registry, config.active_work);
let query_processor = QueryProcessor::new(key_registry, config.active_work, config.runtime);
let handler = HandlerBox::empty();
let this = Self {
query_processor,
Expand Down Expand Up @@ -203,6 +212,10 @@ impl RequestHandler for Inner {
let query_id = ext_query_id(&req)?;
HelperResponse::from(qp.complete(query_id).await?)
}
RouteId::KillQuery => {
let query_id = ext_query_id(&req)?;
HelperResponse::from(qp.kill(query_id)?)
}
})
}
}
6 changes: 3 additions & 3 deletions ipa-core/src/bin/crypto_util.rs
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ use std::fmt::Debug;

use clap::{Parser, Subcommand};
use ipa_core::{
cli::crypto::{decrypt_and_reconstruct, encrypt, DecryptArgs, EncryptArgs},
cli::crypto::{DecryptArgs, EncryptArgs},
error::BoxError,
};

Expand All @@ -24,8 +24,8 @@ enum CryptoUtilCommand {
async fn main() -> Result<(), BoxError> {
let args = Args::parse();
match args.action {
CryptoUtilCommand::Encrypt(encrypt_args) => encrypt(&encrypt_args)?,
CryptoUtilCommand::Decrypt(decrypt_args) => decrypt_and_reconstruct(decrypt_args).await?,
CryptoUtilCommand::Encrypt(encrypt_args) => encrypt_args.encrypt()?,
CryptoUtilCommand::Decrypt(decrypt_args) => decrypt_args.decrypt_and_reconstruct().await?,
}
Ok(())
}
7 changes: 3 additions & 4 deletions ipa-core/src/bin/helper.rs
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,6 @@ use std::{
fs,
io::BufReader,
net::TcpListener,
num::NonZeroUsize,
os::fd::{FromRawFd, RawFd},
path::{Path, PathBuf},
process,
Expand All @@ -18,11 +17,11 @@ use ipa_core::{
error::BoxError,
helpers::HelperIdentity,
net::{ClientIdentity, HttpShardTransport, HttpTransport, MpcHelperClient},
AppConfig, AppSetup,
AppConfig, AppSetup, NonZeroU32PowerOfTwo,
};
use tracing::{error, info};

#[cfg(not(target_env = "msvc"))]
#[cfg(all(not(target_env = "msvc"), not(target_os = "macos")))]
#[global_allocator]
static GLOBAL: tikv_jemallocator::Jemalloc = tikv_jemallocator::Jemalloc;

Expand Down Expand Up @@ -93,7 +92,7 @@ struct ServerArgs {

/// Override the amount of active work processed in parallel
#[arg(long)]
active_work: Option<NonZeroUsize>,
active_work: Option<NonZeroU32PowerOfTwo>,
}

#[derive(Debug, Subcommand)]
Expand Down
Loading

0 comments on commit 5211ad6

Please sign in to comment.