feat: benchmark use integration test and CRISP for gas [skip-line-limit]

[0xjei]

Summary by CodeRabbit

• New Features

  • Configurable key-collection timeouts via environment variables.
  • Richer benchmark outputs: integration summaries, per-operation timings, multithread stats, and embedded folded artifacts.
  • New CLI helpers to regenerate reports from saved artifacts, replay folded gas estimations, and improved benchmark run controls (verbose, preflight build).

• Documentation

  • Updated benchmark README with recovery procedures for partial gas/integration data.

• Chores

  • Trimmed benchmark circuit list and refreshed result artifacts and reports.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
crisp	Ready	Preview, Comment	Apr 29, 2026 2:56pm
enclave-docs	Ready	Preview, Comment	Apr 29, 2026 2:56pm

[coderabbitai]

Warning

Rate limit exceeded

@0xjei has exceeded the limit for the number of commits that can be reviewed per hour. Please wait 15 minutes and 27 seconds before requesting another review.

To keep reviews running without waiting, you can enable usage-based add-on for your organization. This allows additional reviews beyond the hourly cap. Account admins can enable it under billing.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 4275b42c-9699-4453-99f2-d3c0d295aaa5

📥 Commits

Reviewing files that changed from the base of the PR and between 432e829 and be690df.

📒 Files selected for processing (19)

• circuits/benchmarks/README.md
• circuits/benchmarks/config.json
• circuits/benchmarks/regenerate_report.sh
• circuits/benchmarks/results_insecure/crisp_verify_gas.json
• circuits/benchmarks/results_insecure/integration_summary.json
• circuits/benchmarks/results_insecure/report.md
• circuits/benchmarks/results_secure/crisp_verify_gas.json
• circuits/benchmarks/results_secure/integration_summary.json
• circuits/benchmarks/results_secure/report.md
• circuits/benchmarks/scripts/extract_crisp_verify_gas.sh
• circuits/benchmarks/scripts/generate_report.sh
• circuits/benchmarks/scripts/regenerate_report.sh
• circuits/benchmarks/scripts/replay_folded_verify_gas.sh
• circuits/benchmarks/scripts/run_benchmarks.sh
• crates/keyshare/src/decryption_key_shared_collector.rs
• crates/keyshare/src/encryption_key_collector.rs
• crates/keyshare/src/threshold_share_collector.rs
• crates/multithread/src/report.rs
• crates/tests/tests/integration.rs

📝 Walkthrough

Walkthrough

Extends benchmarking pipeline and artifacts: adds report-only regeneration and recovery scripts, records integration/multithread timings and folded artifacts, updates benchmark reports/JSONs, makes keyshare collection timeouts configurable via env vars, and exposes multithread timing APIs for reporting.

Changes

Cohort / File(s)	Summary
Benchmarking README & Config circuits/benchmarks/README.md, circuits/benchmarks/config.json	Docs updated to describe full-run artifacts, report regeneration, and recovery paths; removed threshold/user_data_encryption from config.
Benchmark Scripts (extract/generate/run) circuits/benchmarks/scripts/extract_crisp_verify_gas.sh, circuits/benchmarks/scripts/generate_report.sh, circuits/benchmarks/scripts/run_benchmarks.sh	Added CLI flags (--mode, --verbose, --integration-summary), build preset selection, tee'd logging with preserved exit codes, integration-summary parsing, hex→byte/calldata computation, and integration-timing-driven overrides in report generation.
Report Regeneration & Recovery circuits/benchmarks/regenerate_report.sh, circuits/benchmarks/scripts/regenerate_report.sh, circuits/benchmarks/scripts/replay_folded_verify_gas.sh	New wrapper and main regenerate scripts to rebuild report.md from saved outputs; new replay script to rerun Hardhat estimateGas for DKG/DEC from folded proof hex and patch crisp_verify_gas.json.
Benchmark Results & Reports circuits/benchmarks/results_*/crisp_verify_gas.json, circuits/benchmarks/results_*/integration_summary.json, circuits/benchmarks/results_*/report.md	Gas JSONs enriched with artifact_sizes_bytes, calldata_gas, integration_summary (multithread config, per-operation timings, folded artifacts); new integration_summary artifacts and regenerated report.md including integration-test timing sections and committee parameters.
Test Bench / Integration crates/tests/tests/integration.rs	Benchmark-mode fixture selection (secure/insecure), BFV param selection, optional benchmark JSON emission (BENCHMARK_SUMMARY_OUTPUT) with multithread stats, per-operation timings, and folded-hex artifacts; added progress logging and timeout handling.
Keyshare Collectors (timeouts) crates/keyshare/src/decryption_key_shared_collector.rs, crates/keyshare/src/encryption_key_collector.rs, crates/keyshare/src/threshold_share_collector.rs	Collection timeouts made configurable via env vars (E3_*_TIMEOUT_SECS) with parsing/fallback logic and updated scheduling/logging to use computed durations.
Multithread Reporting API crates/multithread/src/report.rs	Added public OperationTimingSec struct and accessors on FlattenedReport: rayon_threads, max_simultaneous_rayon_tasks, cores_available, tracked_total_seconds, and operation_timings_sec to expose per-operation seconds-based metrics.

Sequence Diagram(s)

sequenceDiagram
    participant Test as Integration Test
    participant BenchScript as Extract Script
    participant Hardhat as Hardhat Benchmark
    participant Generator as generate_report.sh
    participant Files as Results Dir

    Test->>BenchScript: run integration with BENCHMARK_SUMMARY_OUTPUT
    BenchScript->>Files: write integration_summary.json (folded artifacts + timings)
    BenchScript->>Hardhat: (optional) estimateGas using folded proof hex
    Hardhat-->>BenchScript: gas estimates (dkg/dec)
    BenchScript->>Files: update crisp_verify_gas.json with sizes/calldata/gas
    Generator->>Files: read crisp_verify_gas.json + integration_summary.json
    Generator->>Files: write results_/report.md (integrated timings & tables)

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~50 minutes

Possibly related PRs

• refactor: update benches to reflect the new metrics [skip-line-limit] #1527 — Overlaps changes to benchmark scripts, report generation, and integration-test instrumentation (same pipeline & outputs).
• feat: add benches for secure and insecure [skip-line-limit] #1512 — Directly touches circuits/benchmarks/config.json entry for threshold/user_data_encryption (opposite modification).
• feat: multithread enable threadpool #1016 — Related work on multithread reporting/integration timing APIs in crates/multithread/src/report.rs.

Suggested reviewers

• cedoor
• ctrlc03

Poem

🐰 I hopped through logs and timing trees,

Folded proofs tucked under my knees.
Timeouts set by carrot-scented vars,
Reports regenerate without scars—
A happy hop for benchmarked pleas. 🥕

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 34.88% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main change: integrating CRISP gas extraction with the integration test for benchmarking. The changes across multiple files establish new benchmark infrastructure using integration test outputs and gas extraction.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/benches

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Review rate limit: 0/1 reviews remaining, refill in 15 minutes and 27 seconds.}

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 3

🧹 Nitpick comments (3)

crates/keyshare/src/threshold_share_collector.rs (1)

38-48: Extract the timeout-env parsing into one shared helper.

This unset/unparseable/0 => default logic is now duplicated across all three collector actors. Pulling it into a small keyshare helper will keep the fallback semantics and logging from drifting the next time one collector changes.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@crates/keyshare/src/threshold_share_collector.rs` around lines 38 - 48,
Extract the env-parsing logic in collection_timeout() into a shared helper
(e.g., keyshare::env::parse_collection_timeout or
keyshare::collection::collection_timeout_from_env) that encapsulates the
constant COLLECTION_TIMEOUT_ENV, the parse-to-u64, and the unset/unparseable/0
=> DEFAULT_COLLECTION_TIMEOUT fallback, then replace the current
collection_timeout() implementations in each collector actor to call that helper
so all three use the same logic and semantics; ensure the helper returns a
Duration and preserve existing behavior and logging semantics.

circuits/benchmarks/scripts/replay_folded_verify_gas.sh (1)

53-56: Validation could also check for public_inputs_hex fields.

The validation only checks for proof_hex existence but the Hardhat script also requires public_inputs_hex (see benchmarkGasFromRaw.ts lines 72-74). Consider extending the check.

♻️ Proposed fix

-if ! jq -e '.folded_artifacts.dkg_aggregator.proof_hex and .folded_artifacts.decryption_aggregator.proof_hex' "$SUMMARY_JSON" >/dev/null 2>&1; then
-    echo "Error: $SUMMARY_JSON must contain .folded_artifacts with dkg_aggregator and decryption_aggregator proof_hex"
+if ! jq -e '.folded_artifacts.dkg_aggregator.proof_hex and .folded_artifacts.dkg_aggregator.public_inputs_hex and .folded_artifacts.decryption_aggregator.proof_hex and .folded_artifacts.decryption_aggregator.public_inputs_hex' "$SUMMARY_JSON" >/dev/null 2>&1; then
+    echo "Error: $SUMMARY_JSON must contain .folded_artifacts with dkg_aggregator and decryption_aggregator proof_hex and public_inputs_hex"
     exit 1
 fi

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@circuits/benchmarks/scripts/replay_folded_verify_gas.sh` around lines 53 -
56, Extend the jq validation that reads SUMMARY_JSON to also require the
public_inputs_hex fields alongside proof_hex: update the test that currently
checks '.folded_artifacts.dkg_aggregator.proof_hex and
.folded_artifacts.decryption_aggregator.proof_hex' to include
'.folded_artifacts.dkg_aggregator.public_inputs_hex' and
'.folded_artifacts.decryption_aggregator.public_inputs_hex' so both proof_hex
and public_inputs_hex are present for dkg_aggregator and decryption_aggregator
before proceeding; keep using the same jq invocation and error message but
mention both fields (proof_hex and public_inputs_hex) in the echo for clarity.

circuits/benchmarks/scripts/generate_report.sh (1)

39-69: Consider extracting shared Python helpers to reduce duplication.

hex_len_bytes() and calldata_gas_from_hex() are duplicated in extract_crisp_verify_gas.sh (lines 138-168). For maintainability, consider sourcing these from a shared helper script.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@circuits/benchmarks/scripts/generate_report.sh` around lines 39 - 69, The two
Python-embedded bash functions hex_len_bytes() and calldata_gas_from_hex() are
duplicated; extract them into a shared helper script that defines those
functions (same names) and then source that helper from both generate_report.sh
and extract_crisp_verify_gas.sh before any calls; ensure the helper contains the
two functions exactly as used, is readable by both scripts, and update both
scripts to remove the local duplicates and add a single source (e.g., .
./shared_hex_helpers.sh) so they call the shared implementations.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@circuits/benchmarks/scripts/generate_report.sh`:
- Line 433: Remove the unused variable p3_artifact_proof declared in the script
(the empty assignment p3_artifact_proof=""); either delete that line entirely
from the generate_report.sh script or, if it was intended to hold a value,
replace it with the correct assignment and ensure subsequent code uses that
symbol (search for p3_artifact_proof to confirm). Keep the change limited to
removing or properly initializing the p3_artifact_proof variable so there are no
leftover, unused declarations.

In `@crates/tests/tests/integration.rs`:
- Around line 847-854: The benchmark mode currently only switches BfvPreset
(BENCHMARK_MODE -> BfvPreset) while other parameters (lambda, preset subdir,
timeouts) remain hard-coded or taken from DEFAULT_BFV_PRESET, causing mixed
parameter families; create a single helper (e.g., select_benchmark_params or
similar) that reads BENCHMARK_MODE and returns a complete parameter bundle
{preset_subdir, bfv_preset (BfvPreset), lambda, timeouts} and update callers
such as the setup_test_zk_backend() usage site and any places referencing
DEFAULT_BFV_PRESET or the hard-coded lambda to consume this bundle so a secure
run uses the secure preset_subdir/lambda/timeouts and an insecure run uses the
insecure fixtures consistently.
- Around line 855-861: Save the previous values of the three environment
variables (E3_ENCRYPTION_KEY_COLLECTION_TIMEOUT_SECS,
E3_THRESHOLD_SHARE_COLLECTION_TIMEOUT_SECS,
E3_DECRYPTION_KEY_SHARED_COLLECTION_TIMEOUT_SECS) before calling
std::env::set_var in the test (e.g., in test_trbfv_actor), and restore them when
the test exits (restore with std::env::set_var if a previous value existed, or
std::env::remove_var if it did not). Implement this either by capturing
std::env::var_os for each var and restoring at the end of the test or by adding
a small RAII guard (scoped struct) that records original Option<OsString> values
and restores/removes them in Drop so the environment is always restored even on
early returns/panics.

---

Nitpick comments:
In `@circuits/benchmarks/scripts/generate_report.sh`:
- Around line 39-69: The two Python-embedded bash functions hex_len_bytes() and
calldata_gas_from_hex() are duplicated; extract them into a shared helper script
that defines those functions (same names) and then source that helper from both
generate_report.sh and extract_crisp_verify_gas.sh before any calls; ensure the
helper contains the two functions exactly as used, is readable by both scripts,
and update both scripts to remove the local duplicates and add a single source
(e.g., . ./shared_hex_helpers.sh) so they call the shared implementations.

In `@circuits/benchmarks/scripts/replay_folded_verify_gas.sh`:
- Around line 53-56: Extend the jq validation that reads SUMMARY_JSON to also
require the public_inputs_hex fields alongside proof_hex: update the test that
currently checks '.folded_artifacts.dkg_aggregator.proof_hex and
.folded_artifacts.decryption_aggregator.proof_hex' to include
'.folded_artifacts.dkg_aggregator.public_inputs_hex' and
'.folded_artifacts.decryption_aggregator.public_inputs_hex' so both proof_hex
and public_inputs_hex are present for dkg_aggregator and decryption_aggregator
before proceeding; keep using the same jq invocation and error message but
mention both fields (proof_hex and public_inputs_hex) in the echo for clarity.

In `@crates/keyshare/src/threshold_share_collector.rs`:
- Around line 38-48: Extract the env-parsing logic in collection_timeout() into
a shared helper (e.g., keyshare::env::parse_collection_timeout or
keyshare::collection::collection_timeout_from_env) that encapsulates the
constant COLLECTION_TIMEOUT_ENV, the parse-to-u64, and the unset/unparseable/0
=> DEFAULT_COLLECTION_TIMEOUT fallback, then replace the current
collection_timeout() implementations in each collector actor to call that helper
so all three use the same logic and semantics; ensure the helper returns a
Duration and preserve existing behavior and logging semantics.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: ea2db083-8ee8-40e4-b4f0-c86a50504c26

📥 Commits

Reviewing files that changed from the base of the PR and between 875e491 and 230f7b1.

📒 Files selected for processing (16)

• circuits/benchmarks/README.md
• circuits/benchmarks/config.json
• circuits/benchmarks/regenerate_report.sh
• circuits/benchmarks/results_insecure/crisp_verify_gas.json
• circuits/benchmarks/results_insecure/integration_summary.json
• circuits/benchmarks/results_insecure/report.md
• circuits/benchmarks/scripts/extract_crisp_verify_gas.sh
• circuits/benchmarks/scripts/generate_report.sh
• circuits/benchmarks/scripts/regenerate_report.sh
• circuits/benchmarks/scripts/replay_folded_verify_gas.sh
• circuits/benchmarks/scripts/run_benchmarks.sh
• crates/keyshare/src/decryption_key_shared_collector.rs
• crates/keyshare/src/encryption_key_collector.rs
• crates/keyshare/src/threshold_share_collector.rs
• crates/multithread/src/report.rs
• crates/tests/tests/integration.rs

💤 Files with no reviewable changes (1)

• circuits/benchmarks/config.json

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (2)

crates/keyshare/src/encryption_key_collector.rs (1)

23-33: Consider sharing the timeout parser with the other collectors.

This is the same env-var fallback logic used elsewhere in crates/keyshare; a shared helper would keep the three startup timeouts from drifting apart.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@crates/keyshare/src/encryption_key_collector.rs` around lines 23 - 33, The
env-var parsing/fallback logic in collection_timeout() (using
COLLECTION_TIMEOUT_ENV and DEFAULT_COLLECTION_TIMEOUT) is duplicated across
collectors—extract that logic into a shared helper (e.g. parse_timeout_from_env
or env_timeout_or_default) in a common module and have collection_timeout() call
it; update the other collectors to use the same helper so the
E3_ENCRYPTION_KEY_COLLECTION_TIMEOUT_SECS parsing and defaulting behavior is
centralized and consistent across all startup timeouts.

circuits/benchmarks/scripts/generate_report.sh (1)

39-69: Consider centralizing hex size/calldata helper logic.

Line 39–Line 69 duplicates logic now also present in circuits/benchmarks/scripts/extract_crisp_verify_gas.sh. Keeping one shared helper path would reduce drift risk between extraction and report regeneration.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@circuits/benchmarks/scripts/generate_report.sh` around lines 39 - 69, The
duplicated hex helper functions hex_len_bytes and calldata_gas_from_hex should
be moved into a single shared helper script (e.g., create a
scripts/shared_hex_utils.sh) and both generate_report.sh and
extract_crisp_verify_gas.sh should source that file instead of defining the
functions inline; preserve the exact behavior (handling optional "0x",
odd-length returns "0", and the same gas calculation) and ensure the functions
are exported or declared so they remain callable from the existing shells that
invoke them; update both callers to remove their local copies and add a single
`source` line referencing the new shared helper.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@circuits/benchmarks/results_secure/crisp_verify_gas.json`:
- Around line 3-5: This JSON represents an incomplete benchmark snapshot — the
keys "dkg" and "dec" are null while "enclave_contracts" is 1 — so either
regenerate the secure run or exclude this snapshot from final comparisons; to
fix, locate the record containing the fields "dkg", "dec", and
"enclave_contracts" (the JSON object shown), then either (A) re-run the secure
benchmark to produce non-null numeric gas values for "dkg" and "dec" and replace
the file with the successful output, or (B) update the aggregation/filtering
logic to treat entries with null for "dkg" or "dec" as failed and omit them from
final results (or add an explicit "status":"failed" field) so this snapshot is
not included in benchmark comparisons.

---

Nitpick comments:
In `@circuits/benchmarks/scripts/generate_report.sh`:
- Around line 39-69: The duplicated hex helper functions hex_len_bytes and
calldata_gas_from_hex should be moved into a single shared helper script (e.g.,
create a scripts/shared_hex_utils.sh) and both generate_report.sh and
extract_crisp_verify_gas.sh should source that file instead of defining the
functions inline; preserve the exact behavior (handling optional "0x",
odd-length returns "0", and the same gas calculation) and ensure the functions
are exported or declared so they remain callable from the existing shells that
invoke them; update both callers to remove their local copies and add a single
`source` line referencing the new shared helper.

In `@crates/keyshare/src/encryption_key_collector.rs`:
- Around line 23-33: The env-var parsing/fallback logic in collection_timeout()
(using COLLECTION_TIMEOUT_ENV and DEFAULT_COLLECTION_TIMEOUT) is duplicated
across collectors—extract that logic into a shared helper (e.g.
parse_timeout_from_env or env_timeout_or_default) in a common module and have
collection_timeout() call it; update the other collectors to use the same helper
so the E3_ENCRYPTION_KEY_COLLECTION_TIMEOUT_SECS parsing and defaulting behavior
is centralized and consistent across all startup timeouts.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: fdea96d9-f494-4c36-885d-a9cedf0b81bc

📥 Commits

Reviewing files that changed from the base of the PR and between 230f7b1 and 432e829.

📒 Files selected for processing (19)

• circuits/benchmarks/README.md
• circuits/benchmarks/config.json
• circuits/benchmarks/regenerate_report.sh
• circuits/benchmarks/results_insecure/crisp_verify_gas.json
• circuits/benchmarks/results_insecure/integration_summary.json
• circuits/benchmarks/results_insecure/report.md
• circuits/benchmarks/results_secure/crisp_verify_gas.json
• circuits/benchmarks/results_secure/integration_summary.json
• circuits/benchmarks/results_secure/report.md
• circuits/benchmarks/scripts/extract_crisp_verify_gas.sh
• circuits/benchmarks/scripts/generate_report.sh
• circuits/benchmarks/scripts/regenerate_report.sh
• circuits/benchmarks/scripts/replay_folded_verify_gas.sh
• circuits/benchmarks/scripts/run_benchmarks.sh
• crates/keyshare/src/decryption_key_shared_collector.rs
• crates/keyshare/src/encryption_key_collector.rs
• crates/keyshare/src/threshold_share_collector.rs
• crates/multithread/src/report.rs
• crates/tests/tests/integration.rs

💤 Files with no reviewable changes (1)

• circuits/benchmarks/config.json

✅ Files skipped from review due to trivial changes (2)

• circuits/benchmarks/regenerate_report.sh
• circuits/benchmarks/results_secure/integration_summary.json

🚧 Files skipped from review as they are similar to previous changes (6)

• circuits/benchmarks/scripts/regenerate_report.sh
• circuits/benchmarks/scripts/replay_folded_verify_gas.sh
• circuits/benchmarks/README.md
• circuits/benchmarks/results_insecure/integration_summary.json
• crates/tests/tests/integration.rs
• circuits/benchmarks/scripts/run_benchmarks.sh