feat(code): limit the number of values in a sync response based on upper limit

[insumity]

Closes: #1164

We introduce a check so that a peer only sends values of at most cfg.sync.max_response_size.
The retrieval of the right amount of values is performed when handling the Effect::GetDecidedValues effect in the engine and not in sync in order to avoid sending a huge amount of values to sync and then have sync do the retrieval.

We manually tested these changes by running the tests from the value_sync.rs file and looking at the logs. With testing, we identified an issue where in case a syncing peer got a partial response (i.e., some of the values) back, it immediately re-requests the exact same range - because the partial values are not yet processed by the consensus engine - flooding the network. We fixed this issue in this PR.

---

PR author checklist

For all contributors

• Reference a GitHub issue
• Ensure the PR title follows the conventional commits spec
• Add a release note in RELEASE_NOTES.md if the change warrants it
• Add an entry in BREAKING_CHANGES.md if the change warrants it

For external contributors

• Maintainers of Malachite are allowed to push changes to the branch

[hvanz]

I would declare these variables close to the declarations of the address and signature types. Also, each app will have its own definition of address and signature.

[insumity]

Not sure I fully follow your comment: Are you suggesting contacting the app to receive the sizes of addresses and signatures? If not, where exactly would you declare those constants?

[romac]

We could add them as static const to the Address and SigningScheme traits.

[romac]

But that's pretty brittle as well, and could break things if the upper bound is not tight enough, eg. some application uses a signature scheme with variable-size signatures and defines Signature::MAX_SIZE to a large value just in case.

[romac]

The best way would probably be to encode the commit certificate (or even the full sync response) using the (Network)Codec and use the actual computed size. Not great for performance, we should probably either measure the impact upfront, or go with it and only optimize this if we see too big a perf impact. What do you think?

[insumity]

The best way would probably be to encode the commit certificate (or even the full sync response) using the (Network)Codec and use the actual computed size.

I agree this is the right away to go about it. I'll rewrite the PR to take this into account.

[romac]

We should probably use this PR to abort processing the response in the case where we got a response from another peer than the one we expected.

[romac]

It would be good to add an integration test that exercises the new code path.

[insumity]

Thanks you very much for the updates and your comments @romac.

It would be good to add an integration test that exercises the new code path.

I'll do that, and will also look into the network codec to get the actual size as you suggest. Just a note that I’ll probably only be able to look into this tomorrow afternoon and early next week (doubt I can finish it by tomorrow).

[romac]

Just a note that I’ll probably only be able to look into this tomorrow afternoon and early next week (doubt I can finish it by tomorrow).

No problem, thank you!

[romac]

Superseded by #1184