Skip to content

Commit

Permalink
Apply suggestions from code review
Browse files Browse the repository at this point in the history 
Co-authored-by: Rootul P <[email protected]>
  • Loading branch information
@cmwaters @rootulp
cmwaters and rootulp authored Jul 12, 2024
1 parent 14ad3bb commit e1934fd
Showing 1 changed file with 8 additions and 8 deletions.
16 changes: 8 additions & 8 deletions cips/cip-prevote.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,11 +15,11 @@ Block propagation speed is dependent on block size, thus larger blocks have late

## Motivation

The current network has a cap of 2MB. We have observed in testnets that larger blocks (~8MB) shift the block time by up to 7 seconds (18 . seconds in total with the default 11 second `TimeoutCommit`). This range of 1 - 7 seconds for blocks 0-8MB in size is too inconsistent for users. We want to provide block finality with a consistent cadence.
The current network has a cap of 2MB. We have observed in testnets that larger blocks (~8MB) shift the block time by up to 7 seconds (18 seconds in total with the default 11 second `TimeoutCommit`). This range of 11 - 18 seconds for blocks 0-8MB in size is too inconsistent for users. We want to provide block finality with a consistent cadence.

## Specification

The current system relied on a fixed timeout (known as `TimeoutCommit`) after finality to dictate the interval between block times. The proposed modification targets the proposal timeout. Currently, if a correct process does not receive a proposal within a set time `TimeoutPropose` after the rounds start time, the process will prevote nil. This mechanism ensures livenss in the event that the proposer fails. This CIP makes the following modification:
The current system relied on a fixed timeout (known as `TimeoutCommit`) after finality to dictate the interval between block times. The proposed modification targets the proposal timeout. Currently, if a correct process does not receive a proposal within a set time `TimeoutPropose` after the round's start time, the process will prevote nil. This mechanism ensures liveness in the event that the proposer fails. This CIP makes the following modification:

- Upon receiving a correct proposal, a process will not immediately PREVOTE but wait until `TimeoutPropose` before sending their vote.
- Upon receiing an invalid proposal, the process will immediately PREVOTE nil.
Expand All @@ -33,13 +33,13 @@ It is expected that enabling this mechanism would work alongside reducing the `T

### Parameters

The proposal adds two variables that can be controlled by the application but will not exposed by governance:
The proposal adds two variables that can be controlled by the application but will not be exposed by governance:

1. `EnableCoordinatedPrevotes`
2. `TimeoutCommit` (If 0, a nodes local config time will be used - for backwards compatibility)
3. `TimeoutPropose` (If 0, a nodes local config time will be used - for backwards compatibility)
2. `TimeoutCommit` (If 0, a node's local config time will be used - for backwards compatibility)
3. `TimeoutPropose` (If 0, a node's local config time will be used - for backwards compatibility)

Given a target block rate of 12 seconds, and a enabling this mechanism would coincide with changes to the following timeouts:
Given a target block rate of 12 seconds, enabling this mechanism would coincide with changes to the following timeouts:

- `TimeoutPropose` remains at 10 seconds
- `TimeoutCommit` goes from 11 seconds to 1 second
Expand All @@ -49,15 +49,15 @@ NOTE: These numbers are subject to benchmarking

### Rationale

The variables `TimeoutCommit` and `TimeoutPropose` were previously part of a nodes local configuration. Switching these variables to be coordinated by consensus itself is critical
The variables `TimeoutCommit` and `TimeoutPropose` were previously part of a node's local configuration. Switching these variables to be coordinated by consensus itself is critical.

## Backwards Compatibility

Enabling of this mechanism must be coordinated amongst all consensus nodes in the network. It should tie in with a major upgrade. The changes themselves can be made in a backwards compatible manner to `celestia-core` by having them be disabled by default.

## Test Cases

Testing must be designed around validating that this approach does achieve more consistent block times (i.e. a 1 second standard deviation). As this modifies the voting logic, testing should also that correct nodes always vote.
Testing must be designed around validating that this approach does achieve more consistent block times (i.e. a 1 second standard deviation). As this modifies the voting logic, testing should also verify that correct nodes always vote.

## Reference Implementation

Expand Down

0 comments on commit e1934fd

Please sign in to comment.