FIP-0076: Add ListAllocations/ListClaims verified registry methods. #865
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -561,6 +561,63 @@ struct GetDealSectorReturn { | |
| } | ||
| ``` | ||
|
|
||
| ### Verified registry actor | ||
|
|
||
| The built-in verified registry actor exports FRC-0042 methods to iterate all allocations and claims. | ||
| `ListAllocations` returns all allocation IDs up to some caller-specified limit, | ||
|
There was a problem hiding this comment. Not a blocker and would like to suggest maybe rename to There was a problem hiding this comment. I don't see any |
||
| and an opaque cursor which can be used to continue the listing where the first response left off. | ||
| `ListClaims` similarly returns all claim IDs up to some limit, and a cursor for continuation. | ||
| The order of iteration is undefined to the caller, and will match the internal HAMT structure's ordering. | ||
|
There was a problem hiding this comment. (Peer review) (I may be lacking some context here, but @jennijuju requested my input). Do we have a sense of the gas costs of iterating over all entries in mainnet today, for each method? And maybe a cost projection for expected growth? My train of thought:
How do you foresee this interface being generally useful? I think stability across transactions is a desirable property. But the underlying fields being HAMTs make that difficult. A design that awards some stability at the expense of some extra complexity involves taking advantage of the fact that HAMTs are persistent data structures and retaining a bounded buffer of size S of past roots so that they remain reachable from actor state after S mutations occurred. But even that solution presents variability. |
||
| A cursor is tied to the actor state from which it was generated. | ||
| Clients can only assume a cursor is valid for use immediately after it is returned. | ||
|
|
||
| ``` | ||
| // Exported API | ||
| struct ListAllocationsParams { | ||
| Cursor: RawBytes, | ||
| Limit: u64, | ||
| } | ||
|
|
||
| struct AllocationKey { | ||
| Client: ActorID, | ||
| ID: AllocationID, | ||
| } | ||
|
|
||
| struct ListAllocationsResponse { | ||
| Allocations: Vec<AllocationKey>, | ||
| NextCursor: Option<RawBytes>, | ||
| } | ||
|
|
||
| struct ListClaimsParams { | ||
| Cursor: RawBytes, | ||
| Limit: u64, | ||
| } | ||
|
|
||
| struct ClaimKey { | ||
| Provider: ActorID, | ||
| ID: ClaimID, | ||
| } | ||
|
|
||
| struct ListClaimsResponse { | ||
| Claims: Vec<ClaimKey>, | ||
| NextCursor: Option<RawBytes>, | ||
| } | ||
| ``` | ||
|
|
||
| A cursor is a serialized representation of the HAMT root CID, the next client/provider ID, | ||
| and the next allocation/claim ID for that client/provider. | ||
| A cursor is rejected with `USR_ILLEGAL_ARGUMENT` if the HAMT root does not match the verified registry state, | ||
| or the IDs do not exist. | ||
|
|
||
| ``` | ||
| // Internal structure | ||
| struct Cursor { | ||
| Root: Cid, | ||
| OuterKey: ActorID, | ||
| InnerKey: u64, // Allocation or claim ID | ||
| } | ||
|
|
||
| ``` | ||
| ### Migration | ||
|
|
||
| The built-in market actor's `ProviderSectors` mapping is initialised from the existing deal state | ||
|
|
@@ -641,6 +698,12 @@ as a side effect of publishing a deal. | |
| The reason for this change is that verified allocations and deals are independent: a client can allocate DataCap | ||
| without necessarily involving the built-in market actor, and save the SP significant gas costs by doing so. | ||
|
|
||
| ### Verified registry iteration APIs | ||
|
|
||
| The methods to list allocations and claims provide simpler accessibility of these structures, | ||
| since in many cases they may be the only on-chain representation of a "deal". | ||
| The methods are primarily intended to be invoked from off-chain, replacing direct state inspection. | ||
|
|
||
| ## Backwards Compatibility | ||
|
|
||
| This proposal deprecated the miner methods `PreCommitSector` (method 6), `PreCommitSectorBatch` (method 25), | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Editorial comment.
Can we specify explicit signatures for all methods being added in this FIP, as well as their computed FRC-0042 method number? The former can be reasonably assumed from data structures, and the latter can be derived with some work. But simply adding these details would reduce spec indirection, would make signatures normative, and the spec more self-contained/clearer. Thinking about library implementers like filecoin-solidity devs.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I have added the missing computed method numbers.
I'm not sure what you're requesting for a more explicit type signature. The data structures provide it. Are you requesting adding lines like:
These seem a bit redundant to me, but I can do so if you wish.