# Fees and MEV monitoring :::warning This is just a draft, the final solution may be different from the one described here ::: ## Abstract Now the protocol collects only Beacon chain staking rewards. After the merge, validators will start to receive another two types of rewards: transaction fees and MEV which would be payed on the execution layer. More details in [this document](https://hackmd.io/O_8v0OQvSyu7n5nn0-qtQw). To make sure that all validators have the correct software running with the correct settings, it is suggested to have monitoring on blocks that are signed by Lido validators. ## Daemon The daemon waits for new proposed blocks and checks each one. Since we don't need an immediate reaction, we can look at the finalized epoch. After receiving the block, the daemon inspect: - if the block proposer is one of the Lido validators - if `feeRecipient` in `ExecutionPayload` is the Lido MEV Vault address - if the block is made by Flashbots software The daemon saves the inspection result to the storage. Then the results are used to build the dashboard: metrics are exported to Prometheus or DB is used directly as data source in Grafana. ```sequence Storage -> Daemon: Get last block CL Node -> Daemon: Get next\nproposed block Daemon -> Inspector: Inspect the block Registry -> Inspector: Get validators Note over Inspector: Block proposer\nis Lido validator Note over Inspector: feeRecipient is\nLido Vault address MEV -> Inspector: Get posible payloads Note over Inspector: Execution payload is\nprovided by Flashbots Inspector -> Daemon: Inspection result Daemon -> Storage: Save results ``` :::warning We should check that Registry and MEV services keep up with the main daemon ::: :::spoiler Metrics * Last block timestamp * Inspected blocks number * Labels: * proposer: `operator_id` or `unknown` * fee_recipient: `lido_vault` or `unknown` * execution_payload_source: `flashbots` or `unknown` ::: ## Storage Requirements for the database: * Up to 100 records per second during synchronization * 32 records every 12 * 32 seconds during a normal run cycle ## Inspector The service collects block data and inspects it by performing the following checks: 1. Whether the block proposer is one of the Lido validators. To find this out the service looks for the validator index stored in `block.message.proposer_index`[^1], in the map of our validators obtained from the Registry service. [^1]:`BeaconBlock` container spec: https://github.com/ethereum/consensus-specs/blob/dev/specs/phase0/beacon-chain.md#beaconblock (⚠️ it's phase0 spec, that changed a lot for the merge) 2. Whether the feeRecipientis is the Lido Vault address. To find this out the service compares the constant Lido Vault address with the `block.message.body.execution_payload.fee_recipient`[^2]. [^2]: `ExecutionPayload` container spec: https://github.com/ethereum/consensus-specs/blob/dev/specs/merge/beacon-chain.md#executionpayload 3. Whether the execution payload is provided by Flashbots. This is the most obscure part at the moment and we are considering several solutions depending on how the [MEV-boost](https://github.com/flashbots/mev-boost) middleware will be arranged. Possible options are described in the [MEV service](#MEV-service) section. ## Registry service The service fetches operators keys from the Node Operators Registry contract, gets the [validator indexes](https://github.com/ethereum/consensus-specs/blob/395fdd456657482b7257c8b9a9d68bea68917aaf/specs/phase0/validator.md#validator-index) by the keys from the CL node and stores the validator data in memory. Since we need only used keys that do not change, the service can be represented as a simplified scheme: ```sequence Cache -> Registry: Get cached validators Registry --> EL Node: Subscribe to new blocks EL Node -> Registry: New block EL Node -> Registry: Operators data Note over Registry: Filter ids of\nnew used keys EL Node -> Registry: New used keys (uncached) CL Node -> Registry: Get validator indexes by pubkeys Note over Registry: Merge\nvalidators data Registry -> Cache: Save validators to cache ``` The service can be isolated into a microservice of its own. In the future, it may be useful to develop it as a separate solution that is used in different projects. :::spoiler Metrics * A number of operators * A number of keys * Labels: * operator: `operator_id` * status: `used` or `unused` ::: ## MEV service The main goal of this service is to collect the possible `transaction_root` that the Flasbots software offered for each block. This data will be used to compare with what a validator actually proposed in the `ExecutionPayload`. :::danger Now this is the most unclear part, and we are looking at several options. ::: ### 🥇 Extra relay API Since we minimally need only a `transaction_root` and a `block_number`, the best place to collect information is a relay. The perfect option is to have a special endpoint for monitoring that returns all payloads in the relay memory or over the last X blocks (depends on the design of the relay itself). To avoid data compromise, only `transaction_root` and `block_number` can be obtained instead of the whole list of transactions and other fields. Options: 1. Implement the endpoint for monitoring in the original relay code. In this case we connect to those relays that are used by our validators and collect all possible payloads for all blocks. 2. If the relay code will be opensource, we can fork the original code, add the necessary endpoint and run several relays that will be whitelisted in the mev-boost of our node operators. ### Existing relay API The other option is to try to use the current API. According to [the specification](https://github.com/lightclient/execution-apis/blob/add-builder-api/src/builder/specification.md), we can retrieve data using the `builder_getHeaderV1` method. The method requires a `feeRecipient` to be set for the validator in the relay. We assume that our validators set it themselves using the `builder_registerValidatorV1` method, so we can use `builder_getHeaderV1` method. Unclear parts: * Whether historical data is available and how many blocks back can be obtained using the `builder_getHeaderV1` method. * Whether the payload is fixed after responding. It looks like the validator may get one payload and we may get another when collecting the data. ### MEV boost In case the relay code is private and we can't get all the data we need from it, we can fork the mev-boost and ask our operators to use our version. #### Data collection We can collect required data from the `builder_getHeaderV1` response, which contains all payload header and a builder info. #### Data pushing The collected data can be sent directly to our endpoint. There should be a queue for sending data on the mev-boost side, and cleaning up old data. #### Data fraud Since the data is collected on the validators' side, the data should be checked for fraud. We consider the following data manipulation methods: 1. Pretend that payload was offered by relay. Since [the specification](https://github.com/flashbots/mev-boost/blob/main/docs/specification.md#response-1) assumes a `publicKey` and `signature` of the builder over payload in the response we will be able to collect them and verify that the payload was provided by the whitelisted builder. 2. Pretend the relay is unavailable and the validator uses a local payload. Described in the [Relay availability monitoring](#Relay-availability-monitoring) ### 🚫 MEV inspect We can use [mev-inspect](https://github.com/flashbots/mev-inspect-py) to inspect all transactions in a block and see how much MEV we could get from that block and compare the result to what we got. So far, this option does not look good, it's not clear how to count the possible validator's profit. And this option doesn't answer the question of whether the Flashbots software was used or not. But it gives the opportunity to explore historical data, which may be useful. ### 🚫 Centralized API from Flashbots It would be great to have something like the existing API: [blocks.flashbots.net](https://blocks.flashbots.net/), but in the current multiple relay architecture, it seems unlikely to have such a service. ### Relay availability monitoring Since the specification suggests using a local payload in case the relay is not available, the validator can pretend that the relay is unavailable and create a local payload using a modified version of the node. In this case, a validator will be able to include transactions in the block, receiving a value past Lido. It's suggested to have monitoring for relays from the white list and collect data of their availability and a respond time. It doesn't guarantee that the validator doesn't use this cheat, but it will give us statistics on local payload usage and relay availability, from which we can make some conclusions. ### Relay white list We want to have a whitelist to avoid relays that may be in collusion with the validators.
Last changed by  
George Avsetsin
1113

Read more

Sandbox module

Деплой модуля

11/29/2023
Untitled

Это первый документ из предстоящей серии документов по спецификации Staking Router. Объём видится огромным и я бы хотел подойти к этом процессу итеративно. Документ представляет собой заголовки и размышления о тех частях, который на мой взгляд должны быть включены в грядущую спецификацию и следующий апгрейд роутера. На этой стадии хотелось бы определиться со скоупом того, что мы хотим проработать детальнее, а что отбросить.

10/9/2023
Manual Exit Bus Monitoring

The manual how to use the Lido CLI to track the status of validator exits. Install CLI Use the steps from readme in a repository to install the CLI: https://github.com/lidofinance/lido-cli#installation Unsettled requests Takes data from the Consensus Layer on a head block and matches it with the requested validators for each operator based on lastRequestedIndex. All validators whose index <= lastRequestedIndex are considered requested. ## Returns a list of operators and validators that were requested but not exited

5/12/2023
Draft monitoring app after shappella upgrade.

Description Необходимо задеприкеить текущий операторc виджет, поскольку он использует устаревшие контракты, а текущий вариант нужно переписать. В связи с этим, все метрики, которые есть на странице, должны быть перенесены на другой дашборд. Также нужно переписать валидацию, поиск и сабмит ключей, используя функционал KAPI, чтобы сабмит ключей был возможен под любым модулем. В связи с апгрейдом Lido до V2, необходима новая система, включающая несколько воркеров и дашборд. Задача дашборда - отображать все текущие характеристики с операторс виджета, а также смотреть данные в разбивке по модулям, операторам, такие как капасити по эфиру, ключам (вышедшим, застейканым), таргет лимит. Также нужна визуализация данных: как долго нод операторы выводят ключи, как много ключей потребуется вывести в ближайшее время (сколько ожидаем в ближайшем репорте). Визуализация данных должна поддерживать историчность, то есть дашборд должен уметь показывать данные по репортам за прошлый период. Кроме того, задача дашборда - отображать финализацию заявки: сколько сейчас нефинализированного steth в очереди, сколько во всех буферах: буфер, EL vault, WV vault. Задача демона - наполнять хранилище данными, чтобы дашборд мог отображать метрики с указанными фильтрами в удобном виде. Например, одна из детальных задач демона - хранить exit_epoch ключа. Другая задача системы - рассылать уведомления о предстоящем выводе ключей за день, 6 часов, 1 час. Вторая задача - рассылать алерты, если нод оператор задерживается с выводом ключа из сети. Предполагаем, весь этот функционал, может поставляться в docker-compose файле с подключенной и преднастроенной графаной для визуализации метрик, и рассылок нотофикаций Ask:

5/11/2023
Read more from George Avsetsin
Published on HackMD