[Minotaur] Refactoring of Ariadne towards handing ETH stake

[aslesarenko]

Description

In this PR:

• refactoring necessary to add ETH stake registrations into virtual stake computation and computing combined list of valid trustless candidates from both Cardano and Ethereum.
• No tests (and test vectors) has been changed (other than adapted to new data structures, and added default values).
• All tests pass
• Main goal is to extend DParameter, CandidateRegistrations, RegisteredData so that select_authorities have all the necessary information. All the other changes are motivated by this.
• added // TODO ETH: ... in places where further work is needed to hangle stake from Ethereum
• no changes in db, follower, inherents, storage etc.

Checklist

• Commit sequence broadly makes sense and commits have useful messages.
• New tests are added if needed and existing tests are updated.
• Relevant logging and metrics added
• CI passes. See note on CI.
• Any changes are noted in the changelog.md for affected crate
• Self-reviewed the diff

[LGLO]

Yes and no.
Story: historically this project started as Rust version of a Ethereum client that was able to observe Cardano. From this you can see SidechainPubKey. It is 33 bytes, because in this project we have always used the parity bit (hence all keys in hex start with 02 or 03). It is another complication for Minotaur, how to deal with existence of these keys in the project (which are user facing) and not make it very complicated for the user. Should already existing keys be used to get ETH stake address?

[aslesarenko]

From Minotaur point of view any key is an opaque type with some trait(s) as constraints (e.g. Key: MainchainKey).

From user point of view, I would prefer to have clear distinction between Cardano, Ethereum and PC keys/addresses so that it is clear where each type of key should be used.

For example, if I want to run PC node and restake both my ADA and ETH, then I already have and understand the difference between Cardano and Ethereum keys/addresses. Then it is very naturally for me to learn about PC keys/addresses, how they look like and how to create and use them.

If SidechainPubKey has Ethereum legacy, this is probably has to be fixed sooner or later as technical debt.

[LGLO]

I agree with fixing technical debt. I also do not want to add new one. I only try to raise awareness that:

• ECDSA public key can have different lengths
• For the "same lenght" one can one have version with and without a parity bit
• The parity bit is written as extra byte
• There are many ways of encoding a bit in a byte

This project already has one ECDSA public key in use. This public key is 33 bytes long. 32 bytes for a key and 1 byte that encodes parity bit as either 02 or 03.

This whole message is not trying me to forbid adding 32 bytes ECDSA public key w/o parity bit, I'm only saying that it will probably be confusing (added to already confusing Substrate layers over cryptography).

[aslesarenko]

Ah, that is important context which I didn't consider at all here.
Then we can make it 33 bytes or even define it as

pub struct EthPublicKey(pub Vec<u8>);

From Minotaur's perspective it is not important at all, so please let me know how it should be defined and I will change it.

[LGLO]

D-param lives on Cardano, Ada candidates also live on Cardano. Cardano = Mainchain. We can rename Mainchain to Cardano (I still doubt we should), but we cannot have two Mainchains for sure. My point is that we perhaps should not get ETH candidates from Cardano (Mainnet)

[aslesarenko]

Yeah, somewhat misleading description, fixed. It make sense to continue calling Cardano as Mainchain since its role is special for governance. On the other hand, from virtual stake calculation point of view Cardano's role is symmetric to Ethereum.

[LGLO]

👍 My understanding is: for Minotaur there will be many sources of stake that are equal. But Cardano is the source of DParam. Is it correct?

[aslesarenko]

Yes, besides ETH, there are talks to add PC's native token. But governance will be done on Cardano, so it is to some degree the "main" chain.

[paul-weiss]

we will need to consider cases where other chains are the "main chain" as well as where the main chain is the partner chain itself. not sure it needs to be concerned with right now.

[LGLO]

If its on Cardano, then CardanoRegistrationData. Ada is only a token.

[aslesarenko]

I assumed this is only related to ADA staking. In the case we want to add Cardano's native tokens into Minotaur, will they have the same registration data?

[vvviiimmm]

imo CardanoRegistrationData should work for both ada and native tokens, while AdaRegistrationData is only for ada

[aslesarenko]

fixed

[LGLO]

Could this decoder handle situations when DParam on Cardano has 3 values and 2 values? Only in the latter case it would use 0 as default?

[aslesarenko]

Yes, if we generalize a bit and declare it like this:

pub struct DParameter {
	pub num_permissioned_candidates: u16,
	pub num_ada_candidates: u16,
	pub num_other_candidates: Vec<u16>,  // one item for each chain
}

This is more universal encoding, so both empty vector and a vector with single element can be supported. It will also support for example adding PC native token to the virtual stake.

[vvviiimmm]

just curious, will there be a new candidate selection algorithm?

[vvviiimmm]

(also if this new structure remains we should consider renaming it)

[aslesarenko]

Yes, Minotaur "Mini", to replace Ariadne. Currently I assume that if num_other_candidates is empty, then it should behave as Ariadne. It may change in future, though.

[aslesarenko]

(also if this new structure remains we should consider renaming it)

We need a good name, please suggest.
People got used to DParameter and what it means, and the meaning will stay the same, maybe somewhat generalized.

[paul-weiss]

do we want a simple map here <permission_type, num>? could add enums for permissioned, ada, eth and also combine if we need to. when we add another token...we need to come back and add here which is not ideal.

[LGLO]

IMO (u16, u16, vec) doesn't help.
After all it could be a Vec only or fields only and there has to be connection between types of candidates and parts of D-Parameter. Please bare in mind that this part of code is reading data from Datum and this can be affected by how the data is written.

For the decision Vec vs Map vs named fields should be driven by shape of data and what are we building: a generalization to N types of candidates or generalization to 3 candidates types

[mpskowron]

Is there any document with requirements/design/etc. or some jira task on which those changes are based?

[aslesarenko]

@mpskowron, yes, replied in Slack.

[vvviiimmm]

can you please clarify which mainchain_pub_key, ethereum? If so, do we need optional eth_pub_key as suggested bellow?

[aslesarenko]

clarified in the code comments.

[vvviiimmm]

so in case of a valid eth candidate mainchain_pub_key == Some(eth_pub_key)?

[aslesarenko]

No, mainchain_pub_key is on Cardano, and eth_pub_key is on Ethereum, they can never be the same. The eth_pub_key field is optional, because registered_candidates vector should have only one item for each PC operator identified by sidechain_public_key, in other words, registered_candidates should have been Map<SidechainPublicKey, CandidateRegistrations>.

The reason I didn't introduced this map, is because I didn't want to deal with serialisation, but we can assume there is such mapping next to registered_candidates.

[vvviiimmm]

for later: better to keep these as separate types

[aslesarenko]

Introduced EthStakeAmount type

[LGLO]

I think that either we target 3 sources and hardcode it in this way, so we have permissioned_candidates, registered_cardano_candidates, registered_ethereum_candidates or this code should be generic for any number of sources, where each source has its "score" and each candidate inside this candidates source has it's score relative to other candidates of this type.

Said that I don't see Minotaur algorithm and I can only guess who it is supposed to be generalization of Ariadne.

[mpskowron]

I'm strongly for generalization here. I don't think that this part of the code has to know anything about the name of the source of candidates.

[aslesarenko]

The goal of this PR is to make a first step towards multi-resource committee selection, so it not just about 3 types of resources, but it is hard to refactor in one go.
However, that is the plan, so before I can do further generalisations, I would like to finalise this PR and resolve all the questions with just one additional ETH resource.

Minotaur's virtual stake algorithm, in its first approximation is prototyped here https://github.com/input-output-hk/innovation-minotaur/blob/e89ee5d08fe4c7e0c3f2b62fd2252bab4471005b/minotaur-design-sketch/minotaur_lib/src/consensus.rs#L27

It already assumes a general case of a list of resources, which is relatively easy to do in isolation, but will be hard to put into PC code as-is.

[paul-weiss]

@aslesarenko lets chat more about this one. given we now have 2 different tokens, makes sense to make generic here.

[mpskowron]

I'm strongly for generalization here. I don't think that this part of the code has to know anything about the name of the source of candidates.

[mpskowron]

Eth registrations will be observed on Ethereum, won't they? If so, I'd rather have a separate module for following Ethereum. This way, the code will be more modular and it will be easier for the users to pick up only the parts they are interested in.

[aslesarenko]

Yes, observed on Ethereum, but I would suggest to have 2 levels of data sources:

• level 1: data source which is passed everywhere (which is currently CandidateDataSource)
• level 2: one resource-specific data source for each resource type (CardanoDS, EthereumDS, etc.)

Thus defined CandidateDataSource will aggregate information from different sources.
From this POV, the next step would be to define a ResourceDS trait and move the Cardano-specific code there from CandidateDataSource.

[mpskowron]

What you wrote looks fine. However, I would suggest a different approach on getting there. Since this code already is a CardanoDS, instead of modifying it, create a separate module (or even a simple function in authority-selection-inherents for now) which will glue the results of CardanoDS and EthereumDS. This way the diff will be easier to read (especially of the next PR) and the change will be done in less invasive way.

[aslesarenko]

@mpskowron, to your question here, further generalisation is planned for the next PR (see my message above)

[mpskowron]

It's ok that we don't have it done in a generic way at the moment (maybe it's even better, cause I'm not sure if we have enough data to create a good abstraction). However, I think that it would be a good idea to have Eth related code separated more clearly from Ada part (for example, it is tightly coupled together in filter_invalid_candidates now). Then, we can have thin layers of "glue code" on top. I think that this will end up in cleaner and more readable code. This will also make future refactorings, like adding new sources or making generalizations much easier.

[mpskowron]

What you wrote looks fine. However, I would suggest a different approach on getting there. Since this code already is a CardanoDS, instead of modifying it, create a separate module (or even a simple function in authority-selection-inherents for now) which will glue the results of CardanoDS and EthereumDS. This way the diff will be easier to read (especially of the next PR) and the change will be done in less invasive way.

[AmbientTea]

There's not been any activity on this PR for over a month. Is it still relevant?