Internal JSDoc for fastUSDC and state transition diagram #11061
Conversation
Chris-Hibbert
added
documentation
Deploying agoric-sdk with
|
| Latest commit: |
3a43f53
|
| Status: | ✅ Deploy successful! |
| Preview URL: | https://93c8ec95.agoric-sdk.pages.dev |
| Branch Preview URL: | https://cth-fastusdc-doc.agoric-sdk.pages.dev |
Chris-Hibbert
force-pushed
the
cth-fastUSDC-doc
branch
from
82c6605 to
1265dea
Compare
Chris-Hibbert
force-pushed
the
cth-fastUSDC-doc
branch
from
1265dea to
90db359
Compare
|
@0xpatrickdev, would you mind giving me an initial review? Once you've made a pass over it, I'll ask the rest of the team to also look. |
| @@ -17,6 +17,12 @@ import { | |||
| } from '../type-guards.js'; | |||
| import { makeFeeTools } from '../utils/fees.js'; | |||
|
|
|||
| /** | |||
| * @file Advancer subscribes (handleTransactionEvent) to events published by the | |||
There was a problem hiding this comment.
@file docs don't tend to show up when navigating code in an IDE, generating docs, etc. How about putting this on prepareAdvancer?
There was a problem hiding this comment.
a 1-line /** @file main export: @see {prepareAdvancer} */ at the top could help when looking at the file itself.
There was a problem hiding this comment.
I think this @file comment is good but file-level comments should be at the top of the file
| * Add a new transaction with OBSERVED status | ||
| * Add a new transaction with OBSERVED status. | ||
| * | ||
| * This message isn't currently being sent. |
There was a problem hiding this comment.
Please convince me I'm wrong. I couldn't find any instances of it.
There was a problem hiding this comment.
I only see it in tests.
I wonder if this is left-over from a design change.
There was a problem hiding this comment.
Changed in,
Let's remove the function since it's not used.
packages/fast-usdc/README.md
Outdated
| Advancing --> AdvanceFailed | ||
| Forwarding --> ForwardFailed | ||
| ``` | ||
| [*] --> AdvanceSkipped : Risks identified |
There was a problem hiding this comment.
Please retain the Observed state as it is part of the sequence written to vstorage:
agoric-sdk/packages/fast-usdc/src/exos/status-manager.js
Lines 145 to 151 in 90db359
packages/fast-usdc/README.md
Outdated
| [*] --> Advancing : No risks, can advance | ||
| [*] --> Forwarding* : No risks, Mint deposited before advance | ||
|
|
||
| state Advancer { |
There was a problem hiding this comment.
this works visually but if someone knows this syntax, composite states, they might thing that these are composite states.
It's all states of the Transaction and not a composite. The boxes indicate what exo can set transition to that state.
I'm not sure that's useful but if you want to keep it please clarify in a comment on this sytnax.
There was a problem hiding this comment.
I thought it was clarifying to separate advancer actions from settler actions, but I can see how calling them composites would be confusing.
I also tried to find a way to use different colors for actions in Advancer and Settler, but I could only see how to color states, and that didn't carry the right meaning.
packages/fast-usdc/README.md
Outdated
| ``` | ||
| [*] --> AdvanceSkipped : Risks identified | ||
| [*] --> Advancing : No risks, can advance | ||
| [*] --> Forwarding* : No risks, Mint deposited before advance |
There was a problem hiding this comment.
I don't think this is accurate. If there is no observation there is no transaction to have a state
agoric-sdk/packages/fast-usdc/src/exos/settler.js
Lines 241 to 245 in 90db359
packages/fast-usdc/README.md
Outdated
| } | ||
|
|
||
| Forwarding* --> Forwarded : settler.forward() succeeds | ||
| Advancing --> Advanced : advancer's transferHandler detects success |
There was a problem hiding this comment.
while you're bringing in more sophisticated diagram features, consider using choice for success conditions
There was a problem hiding this comment.
thanks. that's hepful
packages/fast-usdc/README.md
Outdated
| Forwarding* --> ForwardFailed : settler.forward() fails | ||
| ``` | ||
|
|
||
| * There is no actual state for **Forwarding**. It is used here to represent the |
There was a problem hiding this comment.
maybe better expressed within the diagram as a note
There was a problem hiding this comment.
I turned Forwarding into a choice rather than a state, so I don't need the note. What do you think of this version?
It also let me get rid of the transition on "Mint deposited before Advance".
| @@ -17,6 +17,12 @@ import { | |||
| } from '../type-guards.js'; | |||
| import { makeFeeTools } from '../utils/fees.js'; | |||
|
|
|||
| /** | |||
| * @file Advancer subscribes (handleTransactionEvent) to events published by the | |||
There was a problem hiding this comment.
I think this @file comment is good but file-level comments should be at the top of the file
| /** @param {ZCFSeat} lp */ | ||
| async handle(lp) { | ||
| /** @param {ZCFSeat} lpSeat */ | ||
| async handle(lpSeat) { |
There was a problem hiding this comment.
I lightly oppose having the type in the name. I think the existing names were clear
There was a problem hiding this comment.
mint was very confusing to me. "mint" is a kind in ERTP (the shareMint is used nearby), a verb, a generic noun, and several other things. I don't know how it distinguishes the zcfSeat that hold lpShares that will be transferred to the liquidity provider.
mintedShares might be okay, but it's a seat holding shares, not the shares themselves, and it's certainly not a "mint".
There was a problem hiding this comment.
Good reasons against mint but not to retain Seat. The union of our points yields: lp and sharePayout.
| @@ -14,6 +14,13 @@ import { | |||
| makeNatAmountShape, | |||
| } from '../type-guards.js'; | |||
|
|
|||
| /** | |||
| * @file Settler is responsible for monitoring (receiveUpcall) deposits to the | |||
| /** @param {ZCFSeat} lp */ | ||
| async handle(lp) { | ||
| /** @param {ZCFSeat} lpSeat */ | ||
| async handle(lpSeat) { |
There was a problem hiding this comment.
Good reasons against mint but not to retain Seat. The union of our points yields: lp and sharePayout.
| Advancing --> AdvanceFailed | ||
| Forwarding --> ForwardFailed | ||
| ``` | ||
| AcvancingChoice --> AdvanceFailed : advancer's transferHandler detects failure |
There was a problem hiding this comment.
typo, breaking the image.
but it's not really a choice. Please use AdvancingSuccess or something that describes the range of values.
There was a problem hiding this comment.
I’m also not crazy about AdvancingChoice - it seems like a TxStatus.
We are waiting for a cross-chain call to settle here - specifically Success Ack, Error Ack, Timeout from the IBC protocol. Maybe:
Advancing --> Advanced : IBC Success Ack
Advancing --> AdvanceFailed : IBC Error Ack or Timeout
| Advancing --> AdvanceFailed | ||
| Forwarding --> ForwardFailed | ||
| ``` | ||
| AcvancingChoice --> AdvanceFailed : advancer's transferHandler detects failure |
There was a problem hiding this comment.
I’m also not crazy about AdvancingChoice - it seems like a TxStatus.
We are waiting for a cross-chain call to settle here - specifically Success Ack, Error Ack, Timeout from the IBC protocol. Maybe:
Advancing --> Advanced : IBC Success Ack
Advancing --> AdvanceFailed : IBC Error Ack or Timeout
| Forwarding --> ForwardFailed | ||
| ``` | ||
| AcvancingChoice --> AdvanceFailed : advancer's transferHandler detects failure | ||
| Forwarding --> ForwardFailed : settler.forward() fails |
There was a problem hiding this comment.
Should we see Forwarding? Not seeing it in the rendered diagram for some reason.
|
|
||
| ```mermaid | ||
| stateDiagram-v2 | ||
| state Forwarding <<choice>> | ||
| state AdvancingChoice <<choice>> | ||
| Observed --> AdvanceSkipped : Risks identified | ||
| Observed --> Advancing : No risks, can advance | ||
| Observed --> Forwarding : No risks, Mint deposited before advance |
There was a problem hiding this comment.
Observed --> Forwarding : No risks, Mint deposited before advance
We should expand this more because it's no longer accurate. An invariant is that the contract never Forwards without seeing evidence. When Settler.receiveUpcall fires and there are no matches in StatusManager's pendingTxs, or the found match is Advancing, it goes into the mintedEarly store. Each time Advancer.handleTransactionEvent is invoked, it will call Settler.notifier.checkMintedEarly() and early return if true. checkMintedEarly will clear the item from mintedEarly and initiate a .forward(). Settler.notifier.notifyAdvancingResult, which is called at the end of the Advancing state transition, also checks mintedEarly.
| @@ -103,6 +105,10 @@ export const stateShape = harden({ | |||
| }); | |||
|
|
|||
| /** | |||
| * Advancer subscribes (using handleTransactionEvent) to events published by the | |||
| * transaction feed. When notified of an appropriate opportunity, it is | |||
There was a problem hiding this comment.
nb: this could be helpful for navigation:
| * transaction feed. When notified of an appropriate opportunity, it is | |
| * {@link TransactionFeedKit}. When notified of an appropriate opportunity, it is |
With this up top:
* @import {TransactionFeedKit} from './transaction-feed.js';|
|
||
| ### Complete state diagram (starting from Transaction Feed into Advancer) | ||
| The Settler is responsible for monitoring (via `receiveUpcall`) deposits to the | ||
| settlementAccount. It either `disburse`s funds to the Pool (if funds were |
There was a problem hiding this comment.
The Settler is responsible for monitoring (via
receiveUpcall) deposits to the
settlementAccount.
Is it worth mentioning how receiveUpcall works? The Settler also needs to register a handler for the settlementAccount: OrchestrationAccount - that's what sets up the events:
E(settlementAccount).monitorTransfers(settler.tap); // "tap" is any durable exo with a `receiveUpcall` handler| * Settler is responsible for monitoring (using receiveUpcall) deposits to the | ||
| * settlementAccount. It either "disburses" funds to the Pool (if funds were | ||
| * "advance"d to the payee), or "forwards" funds to the payee (if pool funds | ||
| * were not advanced). |
There was a problem hiding this comment.
I think it's worth mentioning:
- it needs to register it's
tapfacet (receiveUpcall) via thesettlementAccountso it gets events - something about the
mintedEarlyflow - we don't.forward()untilnotifier.checkMintedis called by theAdvancer.
| @@ -300,6 +307,9 @@ export const prepareSettler = ( | |||
| }, | |||
| self: { | |||
| /** | |||
| * The intended payee received an advance from the pool. When the funds | |||
| * are minted disburse them to the pool. | |||
There was a problem hiding this comment.
| * are minted disburse them to the pool. | |
| * are minted disburse them to the pool and fee seats. |
| observe(evidence) { | ||
| initPendingTx(evidence, PendingTxStatus.Observed); | ||
| }, | ||
|
|
There was a problem hiding this comment.
Thanks. I think we also need some cleanup in status-manager.test.ts. Some tests can be removed, and others should be updated to use .advanceSkipped.
| @@ -103,6 +105,10 @@ export const stateShape = harden({ | |||
| }); | |||
|
|
|||
| /** | |||
| * Advancer subscribes (using handleTransactionEvent) to events published by the | |||
| * transaction feed. When notified of an appropriate opportunity, it is | |||
| * responsible for advancing funds to fastUSDC payees. | |||
There was a problem hiding this comment.
fastUSDC payees
Might be worth working in EUD.
|
@Chris-Hibbert P.S. i worked on these at one point, but they were never completed / checked in. It includes:
And this was an attempt to get everything into one diagram, but it didn't end being very readable. It was created with LLM-assistance and might contain mistakes, but i think the bulk of it is accurate: |
Description
Add some prose description about how
AdvancerandSettlerwork together, and improve the state transition diagram.Security Considerations
None
Scaling Considerations
None
Documentation Considerations
Internal documentation only. No implications for user docs.
Testing Considerations
None
Upgrade Considerations
None