Slate V4 (Compact Slates)

[yeastplume]

Rendered link to RFC document

[DavidBurkett]

Did you figure out why this was needed? I don't believe it is, or at minimum, it can probably be optional

[yeastplume]

I don't think it's needed at all, so will try removing it.

[DavidBurkett]

It would probably be a good idea to specify the encoding used for pubkeys, commitments, and signatures.

[ghost]

As discussed in chat, we could use a slate stage field that denotes what kind of slate we are dealing with (invoice, send, receive, finalize etc). The wallet GUI could display one UI 'receive' slate interface and handle which endpoint to use behind the scenes. That would improve UX flow considerably for P2P transactions.

[yeastplume]

As discussed in chat, we could use a slate stage field that denotes what kind of slate we are dealing with (invoice, send, receive, finalize etc). The wallet GUI could display one UI 'receive' slate interface and handle which endpoint to use behind the scenes. That would improve UX flow considerably for P2P transactions.

Yes, I agree, and it will also remove a lot of awkwardness from code that tires to infer what state the slate is in. Going to add this field.

[yeastplume]

• Added proposed stage (sta) field and description
• Removed hgt field
• Added more precise descriptions of hex string fields

[i1skn]

Great work on this one! I especially like sta field, because now I do:
https://github.com/i1skn/ironbelly/blob/d55bcb70c52e36815f9f2380396722e112248021/src/common/index.ts#L170-L177 to identify the stage of a slate and to have this info inside a slate is a good thing!

I have a small question, why do we need to pass fee in a slate?

• Standard flow: fee can be added between S2 and S3, right?
• Invoices flow: fee is unknown in I1 because payee can use different amount of inputs, right? So, fee could be calculated only between I2 and I3, right?

Probably, I'm missing something here...

[i1skn]

typo: requet

[yeastplume]

Thanks!

[yeastplume]

Great work on this one! I especially like sta field, because now I do:
https://github.com/i1skn/ironbelly/blob/d55bcb70c52e36815f9f2380396722e112248021/src/common/index.ts#L170-L177 to identify the stage of a slate and to have this info inside a slate is a good thing!

I have a small question, why do we need to pass fee in a slate?

• Standard flow: fee can be added between S2 and S3, right?
• Invoices flow: fee is unknown in I1 because payee can use different amount of inputs, right? So, fee could be calculated only between I2 and I3, right?

Probably, I'm missing something here...

Fee needs to be included in the signature message, and needs to be specified by the person inserting the inputs, so it has to be specified at S1 and I2. It can be dropped at S2 since the originator knows it.

[j01tz]

Looks great overall @yeastplume, this definitely makes the material clear and digestible.

A quick question about the "return" slate in the basic workflow: can we (or do we already) prune the senders xs and nonce keys in sigs?

My (possibly naive) understanding is that to finish building the transaction the only additional signature data that the sender needs from the receiver is a partial schnorr signature, a commitment to their blinding factor (a new xs), and a commitment to the nonce from the partial signature.

[yeastplume]

Looks great overall @yeastplume, this definitely makes the material clear and digestible.

A quick question about the "return" slate in the basic workflow: can we (or do we already) prune the senders xs and nonce keys in sigs?

My (possibly naive) understanding is that to finish building the transaction the only additional signature data that the sender needs from the receiver is a partial schnorr signature, a commitment to their blinding factor (a new xs), and a commitment to the nonce from the partial signature.

That's correct, and no we're not currently pruning the sender's xs and nonce data on the return trip and probably should. Will amend

[DavidBurkett]

What will the flow look like for sending or receiving using a multisig wallet? Does this slate model work for that?

[yeastplume]

What will the flow look like for sending or receiving using a multisig wallet? Does this slate model work for that?

No, this is definitely optimized for a single sender/recipient workflow at the moment. For multisig, I'd anticipate adding a new set of status stages and another set of definitions as to what fields need to be present at each stage.

[antiochp]

We specify the following on the slate itself -

• fee
• lock_hgt

Fee makes sense but "lock height" is sort a hold over from legacy v1 (this defaults to 0 if not in use, but its not actually a field on a plain kernel, so we ignore it if 0).
It would be nice if we could specify a "kernel feature" along with associated feature specific fields.

This is related to "relative kernel locks" but a more general purpose approach here would make our live significantly easier when dealing with different kinds of kernels.

In slate.rs we do the following (basically map slate.lock_height==0 to plain kernel) -

	// Construct the appropriate kernel features based on our fee and lock_height.
	// If lock_height is 0 then its a plain kernel, otherwise its a height locked kernel.
	fn kernel_features(&self) -> KernelFeatures {
		match self.lock_height {
			0 => KernelFeatures::Plain { fee: self.fee },
			_ => KernelFeatures::HeightLocked {
				fee: self.fee,
				lock_height: self.lock_height,
			},
		}
	}

Ideally the slate contains enough information to fully represent a kernel feature.

[yeastplume]

We specify the following on the slate itself -

• fee
• lock_hgt

Fee makes sense but "lock height" is sort a hold over from legacy v1 (this defaults to 0 if not in use, but its not actually a field on a plain kernel, so we ignore it if 0).
It would be nice if we could specify a "kernel feature" along with associated feature specific fields.

This is related to "relative kernel locks" but a more general purpose approach here would make our live significantly easier when dealing with different kinds of kernels.

In slate.rs we do the following (basically map slate.lock_height==0 to plain kernel) -

	// Construct the appropriate kernel features based on our fee and lock_height.
	// If lock_height is 0 then its a plain kernel, otherwise its a height locked kernel.
	fn kernel_features(&self) -> KernelFeatures {
		match self.lock_height {
			0 => KernelFeatures::Plain { fee: self.fee },
			_ => KernelFeatures::HeightLocked {
				fee: self.fee,
				lock_height: self.lock_height,
			},
		}
	}

Ideally the slate contains enough information to fully represent a kernel feature.

How about something like this:

{
  "ver": "4:3",
  "id": "6f9c730a-1193-4123-948c-f6c1dc49e904",
  "sta": "S1",
  "amt": "60000000000",
  "fee": "4000000",
  "feats": {
    "feat" : 1,
    "lock_hgt": 3434,
  },
  "sigs": [
    {
      "xs": "AibJx7P1F3b+MYgAdk3mKkL6NhH/O2DZ65GLCSd5Ej0d",
      "nonce": "AuzSBEMitFkX2OiJSUToH4Fu/athEnsdQwDmBLBqdFiF"
    }
  ],
  "proof": {
    "saddr": "KvIz/vtzzNJdvh/p72ItytezxuU8N+OhrEsykmX3WAk=",
    "raddr": "GtKjKihZs4cbFe8UNgcPrXxXCBsYxOCvuyzsuH4RK44="
  }
}

feats.feat is the enumeration of the kernel feature
fee remains where it is (as it's likely to be universal)
If feats is not provided, the kernel is assumed to be plain (0).
feats is just a struct that contains all possible non-fee kernel feature arguments. It can be extended over-time with whatever args are needed for new features. Although the internal struct will contain all possible feature args, args not relevant to a feature can be left out of the serialization.

[yeastplume]

Updated with more generic approach to KernelFeatures arguments

[quentinlesceller]

In line with our governance process, this RFC can be considered being in Final Comment Period, with a disposition to merge in two weeks time, on May 21.

Please ensure any comments are made before then!

[j01tz]

Added a few small comments, great job with this overall 🚀

[j01tz]

I think we want to add new offset field here before sigs begins.

[yeastplume]

👍

[j01tz]

Isn't the UUID hex encoded rather than base64?

[yeastplume]

Yes, as a matter of that this is no longer a change, remove that line

[j01tz]

Can replace slate-serialization and armored-slates here with slatepack

[quentinlesceller]

Big RFC :) A lot of work! Everything makes sense and really well written.
Few comments below. I think after they are addressed we can process with the merging.

RFC PR: https://github.com/mimblewimble/grin-rfcs/pull/49

And can you rename to 0012-compact-slates.md

[lehnberg]

@quentinlesceller is the FCP period extended?

In line with our governance process, this RFC can be considered being in Final Comment Period, with a disposition to merge in two weeks time, on May 21.

Please ensure any comments are made before then!

[quentinlesceller]

@lehnberg I was waiting for @yeastplume to address the comments above. After that we can merge it.

[yeastplume]

Thanks for reviewing, comments all addressed and rfc updated

[quentinlesceller]

🎉 Wohooo! This RFC has now been merged! 🤸‍♀️
Tracking issue: mimblewimble/grin-wallet#317