feat(sequencer): integrate slinky oracle and vote extension logic

[noot]

Summary

integrate skip's slinky oracle service into astria.

at a high level, slinky consists of an oracle sidecar program, which interacts with a validator node to provide price data, and various cosmos-sdk modules.

since astria isn't cosmos, the relevant cosmos modules (x/marketmap and x/oracle) were essentially ported into the slinky module of the sequencer app, which consists of two components, market_map and oracle.

the sequencer app was updated to talk to the sidecar during the extend_vote phase of consensus to gather prices to put into a vote extension.

the vote extension validation logic, proposal logic, and finalization logic were also ported from slinky.

Background

we want oracle data to be available to rollups (and maybe on the sequencer itself too?)

Changes

• import relevant protos from slinky and create native rust types for them
• update the sequencer genesis state to contain market_map and oracle values
• implement the market_map component for the sequencer
  • update the sequencer grpc service to support the market_map grpc service, which is required by the oracle sidecar to retrieve the market map from the chain
• implement the oracle component for the sequencer and the query service for this component
• implement extend_vote logic which gets the prices from the sidecar and turns them into a vote extension
• implement verify_vote_extension logic which performs basic validation on a vote extension during the consensus phase
• implement prepare_proposal logic which gathers the vote extensions from the previous block, prunes any invalid votes, and performs additional validation to create a valid set of VEs
• implement process_proposal logic which validates the set of VEs proposed, checking signatures and that the voting power is >2/3 amongst other things
• implement finalize_block logic which writes the updated prices to state based on the commited vote extensions. skip uses stake-weighted median to calculate the final price, but we don't have stake-weighting yet, so i just took the median.
• TODO: implement the slinky cosmos Msg types as sequencer actions (follow-up)
  • https://github.com/skip-mev/slinky/blob/158cde8a4b774ac4eec5c6d1a2c16de6a8c6abb5/proto/slinky/oracle/v1/tx.proto
  • https://github.com/skip-mev/slinky/blob/158cde8a4b774ac4eec5c6d1a2c16de6a8c6abb5/proto/slinky/marketmap/v1/tx.proto
• TODO: update SequencerBlockHeader to contain the extended commit info + a proof for it (also follow-up)
• TODO: implement the DeltaCurrencyPairStrategy - right now only the DefaultCurrencyPairStrategy is implemented. can also do in follow-up

Testing

TODO: run this on a multi-validator network also

clone slinky: https://github.com/skip-mev/slinky/tree/main

install go 1.22

build and run slinky:

make build
go run scripts/genesis.go --use-coingecko=true --temp-file=markets.json
./build/slinky --market-config-path markets.json

checkout noot/slinky branch of astria

run sequencer app w/ grpc port 9090 and ASTRIA_SEQUENCER_ORACLE_ENABLED=true

rm -rf /tmp/astria_db
rm -rf ~/.cometbft
rm app-genesis-state.json
just run
just run-cometbft

should see a sequencer log like:

astria_sequencer::sequencer: oracle sidecar is reachable

should see a slinky log like:

{"level":"info","ts":"2024-07-02T14:33:46.318-0400","caller":"marketmap/fetcher.go:147","msg":"successfully fetched market map data from module; checking if market map has changed","pid":727051,"process":"oracle","fetcher":"marketmap_api"}

then, when blocks are made, should see logs like the following for each block:

2024-07-05T02:49:21.254163Z DEBUG handle_request:handle_process_proposal: astria_sequencer::service::consensus: proposal processed height=28 time=2024-07-05T02:49:19.143352683Z tx_count=3 proposer=7BE21CDEB6FDCC9299A51F44C6B390EA990E88CD hash=7rmdhOsaW2a0NCZUwSE5yqt2AVR3cOPgGGb4Bb0kpRM= next_validators_hash=F6N7YDQZKfXQld95iV0AmQKNa8DiAxrDnTAcn323QSU=
2024-07-05T02:49:21.310218Z DEBUG handle_request:handle_extend_vote:App::extend_vote: astria_sequencer::app::vote_extension: got prices from oracle sidecar; transforming prices prices_count=118
2024-07-05T02:49:21.323262Z DEBUG handle_request:handle_extend_vote:App::extend_vote: astria_sequencer::app::vote_extension: transformed price for inclusion in vote extension currency_pair="BTC/USD" id=0 price=5683583007
2024-07-05T02:49:21.326070Z DEBUG handle_request:handle_extend_vote:App::extend_vote: astria_sequencer::app::vote_extension: transformed price for inclusion in vote extension currency_pair="ETH/USD" id=1 price=3055069469
2024-07-05T02:49:21.384266Z DEBUG handle_request:finalize_block:App::finalize_block: astria_sequencer::app::vote_extension: applied price from vote extension currency_pair="BTC/USD" price=5683583007 hash=EEB99D84EB1A5B66B4342654C12139CAAB7601547770E3E01866F805BD24A513 height=28 time=2024-07-05T02:49:19.143352683Z proposer=7BE21CDEB6FDCC9299A51F44C6B390EA990E88CD
2024-07-05T02:49:21.384553Z DEBUG handle_request:finalize_block:App::finalize_block: astria_sequencer::app::vote_extension: applied price from vote extension currency_pair="ETH/USD" price=3055069469 hash=EEB99D84EB1A5B66B4342654C12139CAAB7601547770E3E01866F805BD24A513 height=28 time=2024-07-05T02:49:19.143352683Z proposer=7BE21CDEB6FDCC9299A51F44C6B390EA990E88CD

Breaking Changelist

• the sequencer state is breaking, as the genesis is updated and new keys are stored in state

[Fraser999]

No blockers remaining as far as I'm concerned, but still a few unresolved comments.

[SuperFluffy]

Many more comments.

[SuperFluffy]

Instead of aliasing the types, can you alias the module instead? Like so:

Suggested change

	market_map::v1::{
	GenesisState as MarketMapGenesisState,
	GenesisStateError as MarketMapGenesisStateError,
	},
	oracle::v1::{
	GenesisState as OracleGenesisState,
	GenesisStateError as OracleGenesisStateError,
	},
	market_map::v1 as market_map,
	oracle::v1 as oracle,

Then you can refer to the types as market_map::GenesisState and oracle::GenesisState. I prefer to restrict type aliases to cases like hiding type parameters that would be repeated everywhere (as in the case of anyhow::Result<T> = Result<T, anyhow::Error>.

[SuperFluffy]

Can you fill out the genesis data here? This is used in the snapshot test below and it would be great to catch if this changed.

There is a unit test further down (can't comment on it because it's outside the diff range), mismatched_addresses_are_caught, which could also benefit from a check on the market maker address.

[SuperFluffy]

For filling in some data here, there is a nice utility crate that provides hashmap! and btreemap! similar to vec! in the standard library: https://docs.rs/maplit/latest/maplit/

And indexmap itself already provides this itself: https://docs.rs/indexmap/latest/indexmap/macro.indexmap.html

[SuperFluffy]

Commented on the file where the test that led to this snap was defined: would be great to populate this with some extra data.

[SuperFluffy]

Right now this regex would be recompiled on every parse, which is not very efficient!

Have a look at what we are doing inside composer to avoid that at the bottom of this comment. However, don't use once_cell's Lazy or the new std LazyLock. Both of them block their respective thread which would be bad in an async context.

Instead, use https://doc.rust-lang.org/stable/std/sync/struct.OnceLock.html, which does not:

static CURRENCY_PAIR_REGEX: OnceLock<Regex> = OnceLock::new();
fn currency_pair_regex() -> &Regex {
    CURRENCT_PAIR_REGEX.get_or_init(|| regex::Regex::new(r"^([a-zA-Z]+)/([a-zA-Z]+)$").expect("valid regex"))
}

Also take a look at how we defined the regex in composer, which gives names to the capture groups so its self-documenting. :)

astria/crates/astria-composer/src/rollup.rs

Lines 36 to 60 in 0ed3c19

	static ROLLUP_RE: Lazy<Regex> = Lazy::new(|| {
	Regex::new(
	r"(?x)
	^(?P<rollup_name>[[:alnum:]-]+?)
	# lazily match all alphanumeric ascii and dash;
	# case insignificant, but we will lowercase later
	::
	(?P<url>.+)
	# treat all following chars as the url without any verification;
	# if there are bad chars, the downstream URL parser should
	# handle that
	$
	",
	)
	.unwrap()
	});
	let caps = ROLLUP_RE.captures(from).ok_or_else(ParseError::new)?;
	// Note that this will panic on invalid indices. However, these
	// accesses will always be correct because the regex will only
	// match when these capture groups match.
	let rollup_name = caps["rollup_name"].to_string().to_lowercase();
	let url = caps["url"].to_string();
	Ok(Self {
	rollup_name,
	url,

[SuperFluffy]

S: StateWrite

[SuperFluffy]

Instead of returning an object, implement this as a stream returning Items of type to make this more flexible Result<CurrencyPair> (or whatever). See #1453 for how this can be done (this was ultimately merged into #1408)

[SuperFluffy]

This is potentially a source of latency: use futures::TryStreamExt::try_collect on a futures::StreamExt::buffered adaptor to do this concurrently.

[SuperFluffy]

As above, implement this as a stream and let the call site decide what to do with this. See #1453 for how to do that.

[SuperFluffy]

Yeah, I have changed my mind. We should probably call this slinky because there is nothing generic about this. (Or should we use their new *-connect name already?)

[SuperFluffy]

This low level function should not be aware of what happens at the higher level, I think. I looked at the is_proposal_phase function and had to follow it all the way here. IMO move this logic to the call-site.

[SuperFluffy]

Is it intended that if the oracle is disabled, that this function is still called? If the oracle is disabled, NO_ORACLE=true, I would expect that a sequencer node completely abstains from participating in vote extensions.

I think it might be clearer if we separated the config in

1. participates in vote extensions,
2. only verifies vote extensions,
3. ignores vote extensions?