Randomness service: Improve performance and reliability #372
Conversation
Deploying happychain with
|
| Latest commit: |
ca26b17
|
| Status: | ✅ Deploy successful! |
| Preview URL: | https://8a1f88a4.happychain.pages.dev |
| Branch Preview URL: | https://graphite-base-404.happychain.pages.dev |
GabrielMartinezRodriguez
changed the title
GabrielMartinezRodriguez
changed the title
GabrielMartinezRodriguez
changed the title
GabrielMartinezRodriguez
changed the title
GabrielMartinezRodriguez
added
the
reviewing-1
GabrielMartinezRodriguez
force-pushed
the
gabriel/txm-submission-failed-hook
branch
from
a98fbb3 to
82a0cb6
Compare
GabrielMartinezRodriguez
force-pushed
the
gabriel/improve-performance-and-reability-randomness
branch
from
62ee648 to
53e3fb6
Compare
| * will be posted on a block with timestamp T (even if such a block exists) because of network delays. | ||
| */ | ||
| uint256 public constant DRAND_DELAY = 2; | ||
| uint256 public constant DRAND_DELAY = 4; |
There was a problem hiding this comment.
i always forget block.timestamp is in seconds, not ms 😄
this needs 4s, to be 2 block delay?
I don't full understand how this works, but would it be possible to call randomForTimestamp and getRevealedValue to 'frontrun' someone else calling random() by 1 block then? effectively seeing the future slightly
There was a problem hiding this comment.
Yes, it was a bit confusing. We changed the name of all the time-related variables to indicate whether they are in seconds or milliseconds. Now, this variable is called DRAND_DELAY_SECONDS.
Regarding "frontrunning," yes, you could know the drand value that we are going to use for random(), but you will never know the revealed value that we mix with the drand value. We emit the reveal transaction as soon as we receive the previous block. For example, if we are targeting the reveal of block N, we send the reveal transaction as soon as we receive block N-1.
Additionally, we have modified the node in this PR: HappyChainDevs/op-geth#1 to force the node to always execute the first transaction of the block—actually, the second, since the first is the system transaction "setL1BlockValuesEcotone".
With this, you can never know the output of random() before it has already been executed.
There was a problem hiding this comment.
@not-reed The delay's goal is that the "canonical" drand value for block T=X is the latest Drand at X-DRAND_DELAY. That's because sometimes there is a block at X and a Drand value at X, and in those cases we cannot post the Drand value to the chain ontime. There are also issues due to needing to hit submit 1s before the block, network latency to get the Drand value etc...
That's why we had to increase this value: it turned at time T, it would sometimes take 1s to get the Drand value, and with the need to submit enough in advance, we'd sometimes miss the block.
Regarding frontrunning, I don't know I would frame it those terms — but anyone knows the Drand T at time T (+ network delay). So people will always know the Drand value before it hits the chain (we have to know it to post it).
Drand is still useful for two things:
- commitments to future randomness, if you commit enough in advance (we have this defined in the contracts), then nobody will know the drand value at that time
- removing our ability to influence randomness: synchronous randomness if formed by taking the Drand value + a random value to which we committed before the Drand value was knowns — that way, there's absolutely no way we can influence the randomness
- we will still know the value before anyone else, so there is trust is we don't share it
|
|
||
| const url = `${env.EVM_DRAND_URL}/rounds/${round}` | ||
| const response = await ResultAsync.fromPromise(fetchWithRetry(url, {}, 2, 500), unknownToError) | ||
| const response = await ResultAsync.fromPromise(fetchWithRetry(url, {}, 2, 1000), unknownToError) |
There was a problem hiding this comment.
1000 is the delay?
block 1 at ts 0 => tries and fails
block 1 at ts 1000 => tries and fails
block 2 at ts 2000 => tries and succeeds
is it a problem that the final try if everything fails is guaranteed to be next block now?
There was a problem hiding this comment.
We have to submit the drand value at most 4 seconds after it is generated because, after that moment, it will be used by "random()". So, that is not a problem
GabrielMartinezRodriguez
force-pushed
the
gabriel/txm-submission-failed-hook
branch
from
82a0cb6 to
98067ed
Compare
GabrielMartinezRodriguez
force-pushed
the
gabriel/improve-performance-and-reability-randomness
branch
from
53e3fb6 to
6e8d5d5
Compare
norswap
force-pushed
the
gabriel/txm-submission-failed-hook
branch
from
f5a61b6 to
05dc512
Compare
GabrielMartinezRodriguez
force-pushed
the
gabriel/txm-submission-failed-hook
branch
from
05dc512 to
b9ba93f
Compare
GabrielMartinezRodriguez
force-pushed
the
gabriel/improve-performance-and-reability-randomness
branch
from
82297e0 to
c2dee4f
Compare
GabrielMartinezRodriguez
added
reviewing-2
aodhgan
added
question
… local start script
GabrielMartinezRodriguez
added
reviewing-2
GabrielMartinezRodriguez
force-pushed
the
gabriel/improve-performance-and-reability-randomness
branch
from
4ac15e2 to
ca26b17
Compare
norswap
deleted the
gabriel/improve-performance-and-reability-randomness
branch
GabrielMartinezRodriguez
restored the
gabriel/improve-performance-and-reability-randomness
branch
Linked Issues
Description
This PR aims to improve the performance and reliability of the randomness service, after noticing the following problems:
1 - The 'random()' method in the Random contract was failing in some blocks
2 - We were experiencing multiple drand network errors
3 - The first drand was delayed in submission by about 30 seconds
To fix the first problem, I discovered that it was caused because the drand delay wasn't sufficient to include the drand to be used in the random function in all blocks. For example, if the drand delay is 2, and you are in the block with timestamp 11, you are using the drand for timestamp 9. To include transactions in the block with timestamp 11, you must submit transactions with at least 1 second of margin, meaning you must submit the drand for the block with timestamp 11 at timestamp 11 or later.
This is problematic because we don't receive the block with timestamp 9 exactly at timestamp 9, and simultaneously, we must request drands from the network. The network delay is approximately 300ms, with peaks of 1s. The situation was even worse because we were performing gas estimation for every 'postDrand' transaction, adding about 600ms extra to include the transaction.
These multiple delays were causing us to miss multiple blocks.
To address these issues, this PR adds:
Increased drand delay from 2 to 4
Hardcoded gas limit to avoid estimating gas for every transaction
Increased timeout for the drand network from 500 ms to 1000 ms
With these changes, we fix problems 1 and 2.
To solve problem 3, I found a bug: if there were no reveal transactions, we weren't sending the post drand transaction. This was causing a delay of about 30 seconds after the randomness service starts to reveal commitments that were committed approximately 30 seconds earlier.
Toggle Checklist
Checklist
Basics
norswap/build-system-caching).Reminder: PR review guidelines
Correctness
C1. Builds and passes tests.
C2. The code is properly parameterized & compatible with different environments (e.g. local,
testnet, mainnet, standalone wallet, ...).
C3. I have manually tested my changes & connected features.
C4. I have performed a thorough self-review of my code after submitting the PR,
and have updated the code & comments accordingly.
Architecture & Documentation
(2) commenting these boundaries correctly, (3) adding inline comments for context when needed.
comments.
in a Markdown document.