feat(erc20signersvc): add erc20 reward signer svc

[Yaiba]

This pr adds erc20 reward signer service to kwild's sub service.

Most important change is how erc20 ext process epoch. Now we have three types of epoch:

• confirmed epoch, epoch that has been confirmed on EVM
• finalized epoch, epoch that has been finalized, wait to be confirmed
• collecting epoch, epoch that current collect all new rewards

Except the first epoch, at any given time, there will only be two active epochs: finalized epoch and collecting epoch.
After an finalized epoch is confirmed, when Kwil propose a new epoch:

• the current collecting epoch will be finalized
• a new collecting epoch will be created

[Yaiba]

I'm not happy with this name, looking for suggestions

[brennanjl]

Lets start calling it "erc20 bridge".

So ERC20BridgeSignerConfig

[Yaiba]

sounds good, the name is more accurate

[Yaiba]

Technically we don't need this configuration, but it maybe not what user wants.
Since rn the block time is determined by two consensus parameters(proposeTimeout and emptyBlockTimeout), not easy for the signerSvc to generate a good value based on that two parameters for this configuration. So I'll leave to the user.

[brennanjl]

We should have this use end block hooks, not polling.

[Yaiba]

here the 'PrivateKeys' is an array, so different 'signer' could be configured for different target

[Yaiba]

the 3rd part can have values like URL

[brennanjl]

good catch

[Yaiba]

Initially I used this libaray for functional operations, but rn this is the only place it's used

[jchappelow]

Zero deps with it's release tag. 👍

[Yaiba]

others worth mention:

• Add erc20_reward_signer config section to kwild's config, support multiple ext instance
• signer service retries if RPC service is not ready or the configured 'target' erc20 instance is not created
• erc20 ext stores temporary vote records on epoch, once an epoch is confirmed, those record will be deleted
• use multicall3 if possible, to reduce the rpc roundtrip, and get values from same block

[brennanjl]

good catch

[brennanjl]

We should have this use end block hooks, not polling.

[brennanjl]

Private keys should point to file paths. not the private key itself.

[Yaiba]

hmm, so all keys in one file?

[brennanjl]

No, the user can specify many files paths just like how they specify many keys.

[brennanjl]

We should have this tap into the eth rpcs that the user already has configured. Will follow up on this in-person, but users would essentially be doubly configuring RPCs here

[brennanjl]

It seems like we should have a structure like:

type ERC20BridgeSignerConfig struct {
	PrivateKeyPath string `toml:"private_key_path" comment:"private key file path for the ERC20 reward target"`
	Chain          string `toml:"chain" comment:"chain name for the ERC20 reward target"`
}

which would be stored in the top-level node config as:

type Config struct {
	// ...
	ERC20Bridge map[string]ERC20BridgeSignerConfig `toml:"erc20_bridge" comment:"ERC20 bridge signer service configuration"`

[Yaiba]

yeah thought abut that, I think we should do it. Will look into it

[brennanjl]

good catch

[brennanjl]

nit: can you name the returns so that it is clear what each one means? just because there are two bools

[Yaiba]

will do

[brennanjl]

You should probably add an error here where it errors out if the epoch doesn't exist. I'd do this by simply adding a counter than increments on each callback function passed to the engine. If the counter is 0, then the epoch with that ID does not exist.

This seems more correct than simply returning false

[Yaiba]

yeah make sense

[brennanjl]

Seems like there is a bug here.

Epochs have 3 stages:

• collecting
• finalized
• confirmed

Only an epoch in the "finalized" phase can be signed. But this check only ensures that "confirmed" epochs cannot be signed; it does not protect against signers voting for a "collecting" epoch.

[Yaiba]

yeah you're right

[brennanjl]

nice

[brennanjl]

seems sort've weird to have a services package, since the erc20 signer service is in no way actually a service of any kind.

We probably should put both this package and the extension package into an erc20-bridge package

[brennanjl]

This will allow us to have one common place to store abis, manage a node's configuration of RPCs (which are used both by validators and signers), etc.

[Yaiba]

I like that, will move

[brennanjl]

You essentially have this node calling itself, but that seems like a weird and unnecessary hack?

Why don't we just properly make it a new module that uses the engine?

[Yaiba]

yeah it becomes weird now the signerSvc could a reference to the engine, gonna change this

[Yaiba]

This is a little bit related to the polling, in that we kind want to avoid using RPC service. We've agreed that for polling we don't want to react on every block, then I don't see much difference between using end_of_block and just use a ticker.

After a bit experiment, IMO, RPC might be the preferred(and easier) way to communicate with erc20 ext, reasons are:

• although we can use engine to call ext VIEW methods, but we cannot call methods(i.e., vote_epoch) that change the state(because it's not deterministic); thus we need to use two sets of API handling to communicate with extension
• when signeSvc call vote_epoch, there is no easy way to call the RPC service method. You need to construct the payload manually, well, if this is the case Idk why we don't just use client SDK to do this.

[brennanjl]

It seems weird to doubly declare these. We should really consolidate the signer and extension logic.

[Yaiba]

previously I define the return types in the extension, and use them in the method return, later the API could reuse that. Is this what you mean?

[Yaiba]

This config is used in two places:

• evm-sync extension
• erc20-bridge extension

There are few places like oracle still use the general extension config, which I'm not sure if we should move them under erc20_bridge cofiguration.

[brennanjl]

Will this always work? Are ways that a user could set their listen address where it may not?

If so, an alternative would be to give the signer access to the local mempool

[Yaiba]

now you mentioned it, do we expected to configure a public ip in ListenAddress?

[brennanjl]

Yes

[brennanjl]

Seems like a typo: buildErc20RWignerMgr -> buildErc20RSignerMgr

[brennanjl]

Shouldn't we check the signature here?

[Yaiba]

I commented at line 1063, basically we don't have enough info to verify

[Yaiba]

I created #1399 for this

[brennanjl]

I commented at line 1063

The issue seems to be that I cannot read.

[Yaiba]

still a bit hacky, if it's worth it we should implement a internal TxSvcClient. For now this is all I needed for signer service

[Yaiba]

Another way to implement signerClient is to call the usersvc.Service. This approach will have unnecessary wrap/unwrap the request/response types, should be easier to implement

[jchappelow]

Sorry, we removed types.ResultBroadcastTx recently since it was modeled after a very odd cometbft type that conflated tx execution code with a broadcast error code (even before the tx is executed). The returns are now a types.Hash and a *types.TxResult. Changes were made in #1405

[Yaiba]

Sorry, we removed types.ResultBroadcastTx recently since it was modeled after a very odd cometbft type that conflated tx execution code with a broadcast error code (even before the tx is executed). The returns are now a types.Hash and a *types.TxResult. Changes were made in #1405

thanks for the reminder, I'll make the change accordingly