Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Throttling v2 provider migration #1032

Closed
Tracked by #713
shaspitz opened this issue Jun 16, 2023 · 3 comments
Closed
Tracked by #713

Throttling v2 provider migration #1032

shaspitz opened this issue Jun 16, 2023 · 3 comments
Assignees
@shaspitz
Labels
S: NewThings Work towards your business objectives with new products, features, or integrations

Comments

@shaspitz
Copy link
Contributor

shaspitz commented Jun 16, 2023
edited
Loading

Note this issue is only relevant to the provider!

Once #713 is fully implemented, we'll need to decide how we deal with any queued slash packets that exist at the time of the upgrade in functionality. Note that the throttling mechanism/behavior will be changed for both the provider and all consumers, see relevant ADR for details.

As I see it, we have two options

Option 1 - Handle or drop queued slash packets at upgrade time

We could handle all slash packets that are queued up (if any) at upgrade time, this route is slightly more risky, as it could enable the jailing attack that we've spent so much time preventing. However, this route is the most simple, and as long as we trust the consumers enough that exist at upgrade time, this route wouldn't be a problem.

We could also just drop all the queued slash packets that exist at upgrade time, therefore the jailing attack would not be possible. Worst case scenario here is that some validators who were down near upgrade time would not be punished. I think this decision is the way to go.

Note that it's most likely there won't be any queued slash packets at upgrade time, as throttling is not engaged during nominal CCV operations. We're considering worst case scenarios here.

Option 2 - Multi stage upgrade process

We could upgrade the consumers and provider in a clever way to gracefully change the throttling functionality.

First all consumers would need to upgrade to enable their own slash packet queueing/bouncing/blocking behavior. This is described in more detail in ADR.

Next, the provider upgrade would look like:

  • Provider keeps old throttle functionality long enough to process all queued slash packets. During this time, ALL new slash packets are bounced.
  • Once the slash packet queues are emptied, the provider is toggled over to the new functionality where slash packets are bounced if neccessary.
  • A future provider upgrade could remove all the legacy code that won't be used again.

Downsides to this route are that it'd be really annoying to coordinate, especially without go.mod split. Also, we have to write more code to deal with this toggling behavior. This route is not my preference.
@shaspitz shaspitz mentioned this issue Jun 16, 2023
Closed
@shaspitz shaspitz changed the title Upgrade provider in two steps, allowing any queued slash packets during time of upgrade to be adequately throttled/handled. Alternatively we just drop queued packets during upgrade migration and call it good Decide how throttling will be upgraded in production Jun 16, 2023
@jtremback
Copy link
Contributor

We could also just drop all the queued slash packets that exist at upgrade time, therefore the jailing attack would not be possible. Worst case scenario here is that some validators who were down near upgrade time would not be punished. I think this decision is the way to go.

Yes, this is the way to go

@mpoke mpoke added this to Cosmos Hub Jun 20, 2023
@github-project-automation github-project-automation bot moved this to 🩹 Triage in Cosmos Hub Jun 20, 2023
@mpoke mpoke moved this from 🩹 Triage to 📥 Todo in Cosmos Hub Jun 20, 2023
@mpoke mpoke added the question label Jun 20, 2023
@shaspitz shaspitz changed the title Decide how throttling will be upgraded in production Decide how throttling will be upgraded in production for provider Aug 10, 2023
@shaspitz
Copy link
Contributor Author

Changing the name to reflect that this will just involve a provider migration

@shaspitz shaspitz changed the title Decide how throttling will be upgraded in production for provider Throttling v2 provider migration Aug 25, 2023
@shaspitz shaspitz mentioned this issue Aug 25, 2023
Merged
20 tasks
@mpoke mpoke added the S: NewThings Work towards your business objectives with new products, features, or integrations label Sep 13, 2023
@shaspitz shaspitz moved this from 📥 F2: Todo to 🏗 F3: InProgress in Cosmos Hub Sep 18, 2023
@shaspitz shaspitz mentioned this issue Sep 19, 2023
Merged
21 tasks
@shaspitz shaspitz self-assigned this Sep 19, 2023
@shaspitz shaspitz moved this from 🏗 F3: InProgress to 👀 F3: InReview in Cosmos Hub Sep 19, 2023
@shaspitz
Copy link
Contributor Author

Closed by #1317

@github-project-automation github-project-automation bot moved this from 👀 F3: InReview to 👍 F4: Assessment in Cosmos Hub Sep 20, 2023
@mpoke mpoke moved this from 👍 F4: Assessment to ✅ Done in Cosmos Hub Sep 22, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shaspitz shaspitz

Labels
S: NewThings Work towards your business objectives with new products, features, or integrations
Projects
Cosmos Hub
Status: ✅ Done
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jtremback @mpoke @shaspitz