certspotter icon indicating copy to clipboard operation
certspotter copied to clipboard
verified publisher icon SSLMate

Download entries in parallel

Open AGWA opened this issue 6 years ago • 1 comments

It's possible to obtain significantly higher throughput by downloading entries in parallel. There are several challenges with this approach, however:

  1. We don't know how many entries a log will return, so it's hard to know what the optimal job size is.
  2. We'll need to gracefully handle rate limiting.
  3. It's much easier to update the Collapsed Merkle Tree serially. I see a few ways to handle this:
    1. We could force the entries to be processed in serial by using a buffered channel of buffered channels. However, I think it will be difficult to reason about buffers.
    2. We could split up jobs on subtree boundaries, making it easy to merge the Collapsed Merkle Trees of all the jobs at the end.
    3. We could devise a sparse Collapsed Merkle Tree data structure which allows nodes to be appended in any order.

AGWA avatar Jan 16 '19 18:01 AGWA

A data structure like this might be useful:

type DiscontiguousCollapsedTree []CollapsedTreeSegment
type CollapsedTreeSegment struct {
    Index uint64
    Tree  CollapsedTree
}
func (t *DiscontiguousCollapsedTree) Add(index uint64, tree CollapsedTree) {
    maxSize := uint64(1) << bits.TrailingZeros64(index)
    if tree.size > maxSize {
        // error: tree too large to be placed at this index
    }
    // find segment prior to index in *t. append tree to this segment if tree is contiguous (and also see if we can merge in the following segment), otherwise insert a new segment in *t at this location
}

AGWA avatar Feb 09 '24 12:02 AGWA