Rigil Testnet
SUAVE Rigil Testnet
This repository hosts the current SUAVE Rigil testnet specifications and design docs.
⚠️ The SUAVE protocol is still in a state where the code is the most up-to-date protocol spec. The goal of these notes is to gradually evolve into an implementation agnostic specification. ⚠️
Table of Contents
Specs
About SUAVE
SUAVE - Single Unifying Auction for Value Expression - is a platform for building MEV applications such as OFAs, block builders, and intent executors in a decentralized and private way. SUAVE does not replace other blockchains: it is intended to aggregate and coordinate all the things that ultimately change the state of other chains.
Read more about SUAVE:
Rigil Overview
This set of specs outlines the Rigil Testnet, a continuation of the star system theme (Centauri, Andromeda, Helios) laid out in The Future of MEV; and the first in a series of SUAVE testnets based on stars in the (Alpha) Centauri system: Rigil Kentaurus (Alpha Centauri A), Toliman (B) and Proxima Centauri (C).
The Rigil Testnet is a sandbox for the development of MEV applications, termed SUAPPs, in both a decentralized and confidential environment. The MEVM, an adaptation of the EVM, grants developers access to unique MEV-specific precompiles. Leveraging the MEVM, developers can seamlessly represent MEV supply chain intricacies relevant to their needs through smart contracts in Solidity. By augmenting your dApp with a SUAPP, transactions and intents linked to your application can confidentially connect to a network of searchers, solvers, decentralized block builders, and more. Rigil offers a live test network for rapid prototyping hosted by Flashbots that uses Goerli ETH for gas and a proof-of-authority consensus mechanism.
Rigil's architecture is composed of several parts:
- SUAVE "Computors": a network of actors that provide confidential computation for SUAPPs.
- Confidential data storage: a private place to store data (e.g. user transactions)
- SUAVE Chain: to store SUAPPs and public data
- MEVM: a modified EVM that exposes confidential execution and storage APIs to developers
The goal of the Rigil testnet is to gather feedback on developer experience and harden the overall SUAVE software stack. The testnet is not intended to be a long-lived network and will be decomissioned after launch of the next testnet Toliman.
Users
The Rigil testnet is initially focused on a specific set of actors:
- Developers - create smart contracts on SUAVE Chain that define rules for SUAPPs like orderflow auctions, block building, and intent executors.
- Transaction Originators - leverage unique applications on SUAVE, e.g. to send private transactions or execute your intents.
- Proposers - outsource block building to SUAVE. Initially, this is focused only on Ethereum.
- Block Builders - can be implemented as smart contracts inside Suave. In the Rigil Tesnet, Suave has the capability to submit bundles to several external builders to help transaction inclusion during early stages of development.
- Auction Protocols - can program their auctions as a smart contract.
Rigil Design Goals
- Permissionless - Allow anyone to deploy SUAVE smart contracts.
- Easy to use - Create an environment that is as easy to use and test as possible, enabling rapid prototyping.
- SGX UX Closeness - Get as close to SGX user experience as possible and minimize breaking changes down the road.
Design Decisions
Here is a list of design decisions made for the Rigil testnet and associated reasoning:
- Decision 1: Proof-of-Authority Consensus
- reason: SUAVE consensus is an active open question, which whether or not answered does not drastically impact UX of users on Rigil Testnet.
- Decision 2: No SGX Nodes (yet)
- reason: SGX SUAVE computors are an active area of research and development and does not drastically impact UX of users on Rigil Testnet.
- Decision 3: Weak Data Availability Guarantees
- Reason: The Confidential Data Store currently only keeps private data available for one day. Compute Output Validity and Heterogenous DA are active open questions, which whether or not answered does not drastically impact UX on Rigil Testnet.
- Decision 4: Centralized Builder Interoperability
- reason: Blocks emitted from SUAVE computors will have unpredictable inclusion in early development so SUAVE rigil supports a precompile to send bundles to off-SUAVE block builders.
Glossary
- User: sender of confidential compute requests (CCR)
- SUAPP: SUAVE application, smart contracts on Suave chain with rules for confidential computation and functions to submit to target domains (i.e. chains).
- Developer: creates smart contracts on SUAVE Chain that define rules for SUAPPs.
- Confidential Compute Request (CCR) [🔗spec]: A user request to Suave that contains (1) a wrapped transaction, (2) confidential inputs, and (3) a list of programs (contracts) (← list of Exec nodes) allowed to operate on confidential inputs.
- Builder solidity: Solidity with access to precompiles that help facilitate the processing of order flow.
- Precompiles [🔗spec]: purpose-built functions with extended capabilities that can be called from Builder Solidity
- Computor[🔗spec]: accepts and processes confidential compute requests and maintains the SUAVE chain; the logical unit of the SUAVE network and main protocol actor.
- Confidential Data Store [🔗spec]: stores confidential data from MEV applications (L1 transactions, EIP 712 signed messages, userOps, privateKeys(?), etc).
- SUAVE Chain [🔗spec]: a fork of Ethereum designed for usage alongside credible offchain execution in MEV use cases. In Rigil running in PoA mode.
- MEVM [🔗spec]: modified EVM with MEV-specific precompiles that allow developers to define orderflow auctions and builder rules as smart contracts written in Solidity.
- Domain-Specific Services (Execution Node?): provide functionality to interact with target domains (i.e. for Goerli or Arbitrum, simulate transactions, build bundles, build blocks, …)
- RPC - Receives user transactions, moves confidential input to Confidential Data Store and passes the compute request to MEVM.
- OFA - Application that receives transactions and either facilitates an auction ontop of it, or routes it elsewhere.
- Solver - Actor who takes many user token trades as an input and competes on provide a solution to the mathematically optimal way to route all trades.
- Intent - Refers to “what” the desired outcome of that action should be as opposed to transactions which specify “how” an action should be performed.
- Intent Executor - TODO
- Relay - Component in the mev-boost protocol that is responsible for validating blocks and offering them to validators upon request.
- Domains - TODO
Architecture
SUAVE Computors house all components necessary to perform confidential compute and are the main protocol actor in the SUAVE protocol. Below is a high level architectural overview.
- Developers create contracts, which contain the logic for their SUAPP. A typical flow might look like: validate user L1 transaction, simulate it on L1 state, then do something based on the simulation results. These contracts are deployed to the SUAVE chain by sending to a Computor.
- Users send confidential compute requests directed to a Computor or multiple.
- Inside the Computor:
- Requests are routed using the RPC to the appropriate services.
- The MEVM processes the smart contracts and other computations.
- Data might be stored in or retrieved from the Suave Chain State or Conf Store based on SUAPP needs.
- Precompiles aid in the efficient execution of certain functions.
- Domain-Specific Services handle execution on different domains and return results to MEVM.
- The Suave PoA Chain results of confidential computation are written to the chain and communicated over p2p network.
Example Flows
The example flows in the following sections are used to illustrate some of the possibilities for MEV applications on SUAVE. Flows start at a high level showing how an OFA and Block Builder smart contracts work together to emit a block from a SUAVE node. Then to understand the Confindential Compute Request Flow more deeply there is a detailed data flow diagram. Lastly there two deeper dives into the specifics of how the OFA and Block Builder flows work individually.
High Level - OFA + Block Builder
Below we can see the journey of orderflow from transaction, to searcher back-run, to a block emitted from SUAVE.
- A user sends their L1 transaction, EIP-712 message, UserOp, or Intent into a SUAVE computor.
- MEVM processes this L1 transaction, extracts a hint, and does two things:
- Stores the L1 transaction in the confidential data store
- Sends a SUAVE transaction to the mempool which when executed emits the hint as a log
- Searchers will be listening on two different lanes for hints:
- The fast lane which is the mempool
- The global lane which is the SUAVE chain, which is slower, but will surface any hints that may have been censored by your specific peer in the mempool
- Once a hint is received, searchers craft a backrun transaction and send them to a SUAVE computor.
- SUAVE computors will process the backrun, combine it into a bundle with the original transaction, include the bundle in a block, and then submit the block to a relay.
Optionally, bundles can be sent straight to a centralized block builder.
Confindential Compute Request Flow
The SUAVE-enabled node and the MEVM support multiple new data types, which are all specified in the SUAVE Chain spec.
The diagram below showcases how these different types interact to enable confidential computation on SUAVE computors.
Transaction Flow:
- User sends a Confidential Compute Request to the RPC - Confidential Compute Requests are made up of two components, Compute Transaction and Confidential Inputs. The Compute request will reference data inside of the Confidential Inputs that the MEVM is able to use during computation.
- Once the RPC receives the Confidential Compute Request, it will extract the confidential inputs and send them to the confidential data store. It will then send the Compute Request to the MEVM to process.
- Confidential Compute Phase - During this phase the MEVM will process the compute transaction similar to an EVM transaction except it will also have access to the confidential inputs. After doing the initial computation with the confidential data, it will then grab the results and information from the Compute Transaction and put them into their final home a SUAVE transaction.
- Block Inclusion - Once the SUAVE transaction has been created it will then quickly be included in a block by a SUAVE proposer.
OFA Example
If we consider a specific use case, like an order flow auction, the high-level series of steps taken to complete the auction can represented as below:
- The user sends a Confidential Compute Request interacting with a SUAPP by calling it's
newBid
function. Included in this request is also the user's L1 transaction as a confidential Input. - The computor will receive the transaction and process it. To do so it first runs the offchain logic associated with
newBid
which will extract the transaction's data and then return a callback:
return bytes.concat(this.emitHint.selector, abi.encode(hint));
which points to another function:
function emitHint(Suave.Bid calldata bid, bytes memory hint) public {
emit HintEvent(bid.id, hint);
}
- The callback is inserted into the calldata of a SUAVE transaction and then shipped off to the SUAVE mempool.
- The transaction will get picked up, inserted in a block, and propagated.
- From here a searcher monitoring the chain and this specific OFA will see the log emitted and begin processing.
- Once the searcher has a backrun crafted for the opportunity it will send it to the Computor as a Confidential Compute Request with the backrun transaction in the confidential inputs.
- The MEVM node will receive and process the searcher's Confidential Compute Request based on the contracts logic. In this case it will:
- Grab referenced User Transaction to be placed behind
- Submit to domain specific service for simulation and validation
- Construct bundle object with two transactions
- From there, in this example, the MEVM will then forward the bundle to pre-configured off-SUAVE block builders, but could as easily also forward to onchain block builders.
The important thing to note here is that this Confidential Compute pattern makes it such that no sensitive data gets leaked onchain except for what the smart contract specifies and is thus creates progammable information leakage.
Block Building Example
Blocks built from SUAVE will have unpredictable inclusion in the beginning, but adventurers are invited to hook into the block building flow already achievable today. Below is a walkthrough of a block being built via a solidity smart contract.
- The user sends a Confidential Compute Request that specifies calling
buildBlock
on the onchain block builder contract. - The Computor receives and processes the transaction; specifically the logic will:
- grab all bundles that are stored in the block builders confidential data store
- simulate all bundles
- sort bundles via arbitrary logic but in this gas by effective gas price
- compute state root and package into a block
- Optional: Similar to the above, the confidential compute result can be a callback which will emit a log of the block's bid value onchain as well as header which a validator can view.
- Similar to sending to a centralzied block builder, the MEVM will then send the block to a centralized relay where it is free to access by validators.