Skip to content

Latest commit

 

History

History
607 lines (342 loc) · 30.5 KB

call_021.md

File metadata and controls

607 lines (342 loc) · 30.5 KB
Raw

Ethereum 2.0 Implementers Call 21 Notes

Meeting Date/Time: Thursday July 11, 2019 at 14:00 GMT

Meeting Duration: 1.5 hours

GitHub Agenda

Audio/Video of the meeting

Moderator: Danny Ryan

Notes: Edson Ayllon

Agenda

1. Testing Updates

1.1 Overflow in Slashing

Video: [4:06]

Issue found where calculation and slashing potentially overflowed. v08x branch #1286 includes a fix.

1.2 Spec Freeze

Video: [5:12]

Spec Freeze is over.

1.3 Fuzzing

Video: [6:51]

Justin Drake: The goal is to provide basic fuzzing infrastructure for all the clients. The purpose is so Client implementers don't have to worry too much about being compliant with the State Transition Function.

We've started with pyspec and the Go executable specs. The next target for integration may be Lighthouse. A lot of the infrastructure will be generic for clients. May come in the next two weeks.

Diederik Loerakker: We are fuzzing v0.8.0, Go executable spec is almost up-to-date now, pyspec already is up-to-date.

Jacek Sieka: What is the input for fuzzing?

Diederik Loerakker: The problem with Fuzzing is that we have 2 kinds of inputs:

  1. State
  2. Blocks

We are mostly focusing on Blocks now. We are looking to make this extension of the State more intelligent, to make something like a chain-test with more differing presets.

Jacek Sieka: What's the difference between that and the YAML file?

Danny Ryan: YAML files are particularly constructed tests, something you might write in your own test infrastructure. Given a pre-state and given some input that we want to hit certain conditions, certain bounds:

  • Maybe a normal path
  • Maybe testing right on the boundary
  • Testing past the boundary

Whereas these (Fuzzing) are taking pre-states and modifying blocks at random, within some sort of bounds, to test things that we weren't necessarily thinking about.

Paul Hauner: How ours works (not Ethereum Foundations version):

  1. Start with a valid block or valid object that reaches far into the code path
  2. The Fuzzer meters all your code
  3. Randomizes the fields of the starting object
  4. Detects if it explores new code paths

It expands broadly, partially randomly modifies the object, and learns how that affected coverage.

Mamy: That fuzzing outline seemed like it didn't check the bit patterns of the code path that were exercised by the framework.

Diederik Loerakker: The randomization of the Block is done and then checks the coverage and then tries to randomize as best it could, following the parts that improve coverage.

Justin Drake: It's definitely coverage driven and with a randomization aspect.

Danny Ryan: Preston has a question:

"How does the Fuzz harness look: is it libfuzz or is this new tool compatible?"

Preston: Diederik Loerakker said that it would be using libfuzz to give the signal feedback: "Did you get farther through the test or was this the worst fuzzing scenario?"

Diederik Loerakker:: Some people here are already familiar with libfuzzer.

With these two states, Beacon States and the Block, we don't want to involve only the block inputs. If you always Fuzz the same states, you don't get the same coverage as Fuzzing multiple states. We're trying to improve on the normal architecture.

It is similar to libfuzzer, yes.

Justin Drake: The current approach was good enough at exploring many different paths and finding bugs. The main limit is the speed of pyspec.

Hopefully once we do differential Fuzzing on the Lighthouse and go-spec, we'll get a bit more confidence.

Diederik Loerakker: I think with pyspec there are these functions which all inefficiently repeat themselves, not precomputing anything.

In the next go-spec updates, I optimize, precompute this, precompute that, so we get almost client speed spec implementation.

Danny Ryan: One path might be to differentially Fuzz against the go-spec and the clients, and then if we find issues, to then go back to the Pyspec and make sure we agree with what the functionality should be.

We'll keep everyone updated about Fuzzing over the coming weeks.

2. Client Updates

2.1 Nimbus

Video: [13:50]

Testnet launched. Working towards v0.8. Focus is SZZ. State Transition function following pyspec naming convention.

Accumulated 20 to 30x speed-up on the State Transition benchmarks. Links so others can reproduce:

Published metrics library for Prometheus compact metrics:

EWASM research library developed. Contains domain specific language in NIM that compiles to EWASM. It's competitive in terms of contract size:

On Ethereum 1.x, connections issues were resolved to Parity and Geth.

2.2 Artemis

Video: [17:05]

Client updated, especially with SSZ. Contemplating attester slashings, computational requirements for the worst scenario. Need to investigate network load to decide a strategy for aggregating.

2.3 Trinity

Video: [17:51]

PySSZ synced to v0.8 and State Transition update is ongoing.

For networking, we found issues which need fixed on the upstream library for integrating with the Py library. We are fixing some interoperability requirements. There is an insecure connections protocol in libp2p, which will be brought up in the Networking section of the call.

2.4 Yeeth

Video: [19:11]

Worked with Artemis. Returning to update Yeeth to the latest specification.

2.5 Harmony

Video: [19:37]

Working on v0.8 spec update, SSZ part is still in progress.

Started to work on a slot clock mechanism. PR created with a basic implementation.

Small research started to investigate attestation aggregation strategies. The goal is to evaluate an approach that doesn't involve building additional overlays.

Working on minimal libp2p in JVM.

Worked on multistream implementation recently.

2.6 Lighthouse

Video: [20:57]

Updating to v0.8. Tree-hash caching will be re-optimized to include for more padding nodes. More extensive HTTP APIs are being defined to improve dev experience. Matt from ConsenSys is building out some SSZ partials into our codebase.

Slowly testing an initial version of discovery v5 in small testnets.

Working towards standardizing a minimal/final libp2p spec for clients using libp2p. Libp2p work lead to updating our RPC. Discussion occured for the RPC to use separate protocol IDs per request:

2.7 Prysmatic

Video: [22:22]

Updated to v0.8, passing spec tests. Issues with Genesis trigger. Spec test is lacking of coverage. Passed SSZ tests. SSZ failed in some Block sanity tests.

Readying for Prysm optimization. Working on code improvements, beacon chain testing, and general robust improvements to the client.

2.8 Lodestar

Video: [24:03]

Upgrading to v0.8. SSZ almost up-to-date, ironing out bugs with Proto and Prysm.

Began building dev tooling, which will help with providers, like Web3.js.

Should be up-to-date on SimpleSerialize.com for easy online testing.

Working towards ensuring that BLS works properly in-browser as well. Some issues there, will provide updates.

Working to using Herumi for diversity in BLS.

In regards to the client, comfortable to start doing Block production. Once updated to v0.8, testnet will be started, then getting it to work in-browser.

Returning to assembly script.

Also, NIM, we're coming after you guys on the ERC20 contract, we'll get ya.

2.9 Parity

Video: [27:54]

Finished the merkleization library last week hopefully. Want to extend the merkleization library into a caching library.

Updating to v0.8 spec. Large refactoring of codebase required by the SZZ.

3. Research Updates

Video: [29:08]

3.1 Phase 0

Video: [34:50]

Concurrent to Phase 1 & Phase 2, research team created education documents about Phase 0.

On July 15th 1:00 PM GMT there will be a 2nd Ethereum 2.0 AMA, an opportunity to ask questions related to your implementation work. Now that the spec is frozen, feel free to reach out to Justin Drake on Telegrams questions about the design.

3.2 Phase 1

Video: [29:08]

Vitalik Buterin: On research-side there's a list of To-Do's for Proof-of-Custody and Shard Blocks.

Discovered our approach to light clients, involving Fiat Shimmering and Active indices roots, didn't make sense.

Found a simpler approach: Sign over the committee's root and allow clients to verify the committee's root directly. There's still some decisions to what committees are for each slot and how those committees change.

In general:

  • Phase 0, including in the blocks a root of the crosslink committees should be fine
  • Phase 1, including a root of the persistent committees

We get nice, really efficient, light clients. There's still just parameters to decide.

Figuring out the exact structure of data in crosslinks.

Not too much to do on the Shard Block side.

Have a PR which switches from multiple attestations and a proposers signature to just having one signature that includes a proposer in the attestations. That's an option as well.

Not seeing any unexpected difficulties on the Phase 1 side. It's looking better and better.

Justin Drake: To add on Phase 1, we're likely to have some cryptanalysis done. We might have Kovatovich analyze the cryptography used there.

One of the primitives we're using is the Legendre symbol, as a PRF. It would still be good to have it audited because it's an assumption not used in production right now.

3.3 Phase 2

Video: [33:06]

Vitalik Buterin: Not much progress from myself. One of the bigger issues and trade-offs to think about is still how relay markets would work. Would be good to get more feedback on that.

The Plasma people are going to release a post on OVM very soon.

Will Villanueva: Continuing work on SSZ partials.

Will have prototype Phase 1 implementation. Will have Phase 1 & Phase 2 testnets. In general, the scout codebase is in Rust. The prototype will extend the work from Lighthouse. Kicking that off next week.

Started diving into some research connected to Vitalik's post on State Schemes:

  • Found a pretty novel approach/idea on how to iterate on that
  • How to build an on-chain multi-shard state scheme that can support generalized contracts
  • This all follows the delayed-state execution model

Posted first-half on Ethereum Research yesterday and we'll be posting the second-half and the applicability to state schemes and Ethereum 2 and multi-shard behavior and what that can open up. Open to hearing feedback on this.

Free markets, we didn't continue diving as we've been in transition. We'll be looking into that these coming weeks.

Team is growing. John Adler is collaborating with us. Trying to grow for Rust-based researchers as well. Trying to do more research on Phase 1/Phase 2, more Phase 2 focus, in parallel to expand a lot of this.

3.4 PegaSys

Video: [39:28]

Nothing to share yet.

3.5 Runtime Verification

Video: [39:44]

Created formalization in the K framework, directly based on the specification. Migrated to v0.8 and are looking to have something testable. There's an abstract model, lower priority type of development at the moment, but helpful for the future.

4. Network

4.1 Libp2p

Video: [41:10]

Mike Goelzer The grant to Harmony for the minimal jvm-libp2p will be finalized Monday.

For making libp2p production ready, Chain Safe put together a proposal, primarily about switching to typesafe Javascript (to Typescript) and improvements to the documentation and examples.

Are there any concerns on js-libp2p that we should be addressing, either us or Chain Safe? I want to make a grant to them to get js-libp2p to a production-ready state and I want to include everything.

Any opinions please let me know. Telegram: @MikeGoelzer.

We're working with the Ethereum community to answer questions about what Protocol Labs relationship is to libp2p and the project in general. When we have written answers to all the questions, we will make it public to share.

Raúl Kripalani: There was a question about insecure transport.

There was a bug that didn't allow the receiver end of the connection to know about the peer ID that was establishing a connection.

Between today and tomorrow we'll be adjusting go-libp2p to adhere to the new spec that merged a few days ago.

Jonny Rhea: Was libp2p broken out of js-ipfs and made into libp2p, and what was the flow of that?

Mike Goelzer: Initially, js-libp2p was a part of IPFS and made a separate system, but now it's what js-ipfs uses today.

All libp2p implementations are based on the same principles go-libp2p and js-libp2p use.

Dean Eigenmann: What is the current state spec?

Mike Goelzer: We would like libp2p to be a spec-first project. We have a docs writer opening PRs on the specs repo, to define the correct behavior based on what's happening in the Go implementation.

In the meantime, we recommend you refer to the Go implementation.

Raúl Kripalani: There aren't gonna be further changes to libp2p that aren't spec first.

You should not any longer expect the implementation to change without there being a spec up-front. We are being very strict about this.

Updates made to libp2p specs to make it more organized (table of contents, index, etc.).

We merged the specs lifecycle and maturity meta-spec.

This spec serves as a unifying spec, that ties a lot of concepts seen in other specs:

Dean Eigenmann: Is this spec at a state where I can implement off that spec, or do I need to go through the Go code, hitting interfaces without clear documentation?

Raúl Kripalani: It's hard to give a generic answer because the specs are modular. Each spec is at its own maturity.

Maybe we get in a call offline to guide you through the process.

Jacek Sieka: Unsecured transport, does that means it's an unencrypted clear-text channel?

Raúl Kripalani: Yes, not for use in production. Intended only for testing.

Jacek Sieka Assuming that some client doesn't have SECIO implemented yet, then they can start using this more simple one?

Raúl Kripalani: Exactly.

Jacek Sieka Does it authenticate?

Raúl Kripalani: The initial handshake authenticates. But subsequent messages/bytes are not authenticated.

Whiteblock: On js-libp2p, I believe Gossip Sub has been implemented by Chain Safe and is not used by IPSF?

Mike Goelzer: Yes, not integrated in IPFS.

Whiteblock: That would be something to ensure it is production ready.

Mike Goelzer: Fair point, there are some features that Ethereum 2 cares about that IPFS isn't battle testing. We need to do testings on Gossip Sub.

Raúl Kripalani: I think the IPFS team would be happy to intake Gossip Sub and to add an experimental flag to enable it.

Greg Markou: As we approach doing light client, that's a main focus. Chrome extension light clients will need to rely exclusively on Gossip Sub. What steps will you take to make that harden?

Raúl Kripalani: I will start a conversation to integrate your work, Gossip Sub, into IPFS.

Secondly, we are working on a testlab infrastructure that would allow us to deploy different clients at scale and test interactions between them and so-on.

We can look at other projects using js-libp2p, including MetaMask, to implement Gossip Sub and test it.

Benjamin Burns: Is there a date you plan to have the specs finalized?

Mike Goelzer: Not a date yet, we were talking about creating one. We will update you.

The biggest bottleneck for us is we need to hire a second specs writer. Looking for referrals for a documentation writer.

Whiteblock: Does it need to be hired? How can we help you as a community to get it done?

Mike Goelzer: We would be receptive to PRs. People who understand the Go codebase well would be best.

The person to contact is Yusef Napora, who is responsible for writing the specs right now.

Raúl Kripalani: We can potentially create a pipeline for specs in a public calendar, allowing others to get involved.

Whiteblock: Do you want to open some Gitcoin grants or bounties to speed up the things?

Mike Goelzer: We are open to making grants. If there are people who are interested in grant-work for improving the specs, they should get in touch with us.

Danny Ryan: I do want someone from each team to look at this PR to get merged relatively soon.

Adrian Manning: If people can look and give opinions, we can modify it.

Jacek Sieka: Do you anticipate we can use the same discovery for Eth1 and Eth2 at some point?

Adrian Manning: We're using DISC v5 at the moment.

Danny Ryan: If the question is "If Eth 1 is getting migrated to v5?" the answer is yes.

Discover v5, contacted people for an audit on the protocol.

4.2 Gossiping Mechanism

Video: [1:07:56]

Whiteblock: in person last week, we had Artemis, Prysmatic Labs, Lodestar for an exchange of handles using the Simple Hobbits approach.

Next step, improving the ability to Gossip bits between different instances.

We're also trying create a testnet, which would create a test-bench (genesis event, peer recognition, exchange of block attestations, etc.).

One effort is to work on the gossiping approach. Right now our approach is very simple.

Another effort is creating utilities and tools for the community to run a testnet.

Danny Ryan: Some client are currently gossiping hashes and doing RPC calls for retrieval of that data. Our assumption is the latency will be too high and gossiping full objects is going to be the proper path.

Whiteblock: Right, we crippled this to a point where it's very very simple for the reason of just having interoperability.

At collection time you want to use something like Gossip Sub or even Episub. All this needs to be benchmarked.

Jonny Rhea: At Preston's suggestion, we simplified the gossiping mechanism. Is that right Preston?

Preston: I think what you're referring to is when we're creating the announcement messages.

In terms of keeping it simple, I think that's for the Hobbit's implementation. It's to see basic interops.

Danny Ryan: Announcement of identifier and subsequent request, though it does same bandwidth, may induce excessive latencies on the network.

Potentially there's a hybrid strategy, but I don't the extreme of strictly gossiping identifier at the beginning is gonna be the proper way.

Preston: It's worth looking into, but I agree there's now a round trip if you're trying to get blocks out pretty quickly.

Jonny Rhea: Danny, your suggestion is very similar to Episub or Epidemic Broadcast Trees, just FYI that hybrid approach.

Danny Ryan: Jannik, what were your findings on the Episub experimentations?

Jannik Luhn: That it didn't have much, if at all.

Episub is different from what Danny just suggested because it's not based on timing.

Jonny Rhea: It's still a hybrid approach because you have the actual gossiping of the full block if it's an eager peer and if it's a lazy peer you just tell it, "Hey I have this". It splits the difference.

Kevin Main-Hsuan Chia: I think it's already in the Gossip Sub, that I want and I have this thing.

Whiteblock: Is it? Because I think Gossip Sub is probabilistic.

Jonny Rhea: Yeah, that was my understanding too.

Whiteblock: I don't know that Episub was implemented, since we have libp2p guys on the call, what's the level of maturity of Episub?

Raúl Kripalani: Episub was an idea in the pipeline, but not highly prioritized right now. Episub is optimal where you have very stable dissemination patterns in the network. If we have a pattern of a small number of producers for Eth 2.0, then it'll be worth reactivating this discussion.

Jonny Rhea: I'd be interested if someone has looked into what's best for gossiping blocks as opposed to attestations if we've thought about that.

Kevin Main-Hsuan Chia: I want to add, I think the message identifier scheme is sorting process up now. Episub is more like you grab and prune the agents. It's a different scenario.

I think Jannik has done some pull-push simulation before?

Jannik Luhn: That was similar to Danny and such tested, but it also improve performance. I don't remember why.

Raúl Kripalani Is there a reason you believe an Epidemic Broadcast approach could be efficient for this message propagation paradigm that you have in Eth 2.0?

Jonny Rhea: I don't know. Maybe Episub is better for blocks and Gossip sub is better for attestations.

Danny Ryan: There might be a trade-off between what gossiping we're using for short subnets versus beacon subnet. I'm not certain.

Raúl Kripalani: If somebody could put together maybe a small blurb on what the difference is in message propagation on these particular circuits, then I can involve someone on the libp2p team who is a gossiping specialist. See if we could have a hybrid router to somehow arrive at different paths throughout the network.

Danny Ryan: I have some notes on this that describe the timing of the broadcast as well as the size and can add some notes about the stability of topics and stuff. I will pass it on to you.

Jacek Sieka: I'll point out, all these schemes introduce extra opportunities for failures and issues in general.

The minimum approach of gossiping full blocks is very very resilient. Fool-proof so-to-speak.

Anything additional, we should be very careful of motivating that with substantial gains, because the simplicity of normal flooding makes it extremely resilient against all kinds of attacks.

Whiteblock: Whatever gossiping protocol we end up choosing we have this baseline where it's always possible to going back to flooding and it works.

We should have an adaptable approach where we start by flooding, and maybe optimize down the road. But we need to test that.

Did some testing of Flood Sub with Wedlock, it does not perform in the span of time with the number of bytes required for blocks, by the Eth 2.0 protocol. I might be wrong, I think there's more research and testing needed there.

Jacek Sieka: My understanding is, Gossip Sub was chosen for its substantial improvements in early experiments.

Raúl Kripalani Generally, it's all a matter of trade-offs.

Flood Sub is very resilient to all kinds of attacks as it's very naive. However, it introduces a massive amplification factor on IO, which could potentially harm more than benefit. One trade-off.

Then as you start cutting down on the amplification factor, if a particular message arrives at a peer too many times due to the amplification factor, then you want to start getting more intelligent on how you tell a peer, "Stop sending me this message." Your trade-off here could be to reduce write amplification and overall traffic in the network.

Happy to continue the discussion. Open to exploring different approaches.

5. Spec Discussion

Video: [1:24:57]

Danny Ryan: I know implementers mentioned the SSZ. There were a couple more sophisticated types that were added to SSZ.

This was done to:

  1. Make the spec focus more on spec things and not low-level byte manipulation.
  2. Provide a valuable set of types in SSZ that might be used in other places, such as applications.

There are some issues there, so I want to open it up for a quick discussion, to fix the spec and move forward if we need to.

Dankrad, do you have anything to add?

Dankrad Feist: We want to understand pain-points. I think it's valuable to have bitlists and vectors in the SSZ stack, but we don't want to make life hard for the implementers.

Danny Ryan: Is there still an open issue discussing this?

Dankrad Feist: I think the issue is closed at the moment. We can still re-open.

Danny Ryan: If there is discussion to be had, let's do this within the next 7 days in an issue. This is very critical for getting aligned with Consensus tests.

Mamy Ratsimbazafy: Just as a comment, the more types we have defined in the SSZ spec the more efficient our code, at least in NIM, can be, in terms of both code size and performance.

Danny Ryan: Thanks. We have a few minutes left. Any questions left?

Diederik Loerakker: About SSZ, where we can have, fixed-size, empty containers, and empty vectors. It's kinda troublesome.

Do we want to make empty vector illegal? Or do we want to make lists containing them illegal? Is there a use case for empty, fixed-size, containers?

Vitalik Buterin: We already made them illegal. We are revisiting that decision.

Diederik Loerakker: We made vectors illegal, but we also have containers. There's also inconsistency between lists being zero and vectors not being zero. I want to get this right and then we can move on.

Dankrad Feist: Before containers and empty vectors, they're both illegal. And now we added this new thing that lists can be of size zero. The question is, "Is it kinda weird that we forbid one thing and not the other?"

Vitalik Buterin: I'm okay forbidding, or not forbidding, lists with zero max length.

Dankrad Feist: The only question why you want to forbid it is because it might give us an easy way to "comment out" some features in the spec by setting some max lengths to zero.

Diederik Loerakker: We already discussed this issue. If any implemented would need this kind of type, please join the issue in the specs repository. Otherwise, I think it's not too important.

6. Open Discussion/Closing Remarks

Video: [1:32:20]

Invitations for the interop went out to team leads. Those invitations are good until the 14th. After the 14th, more invitations will be sent to teams wanting to attend. Please register in the next 3 days.

Next meeting is in two weeks.

Annex

Links

Attendees