Gloas serve envelope rpc

[eserilev]

Issue Addressed

Serves envelope by range and by root requests. Added PayloadEnvelopeStreamer so that we dont need to alter upstream code when we introduce blinded payload envelopes.

[dapplion]

Why is it necessary to have this stream gadget instead of a simple for loop?

for block_root in block_roots {
  if Some(payload) = chain.get_payload_checking_caches(block_root) {
    send_to_peer(payload)
  }
}

[eserilev]

We're going to use getPayloadBodiesByRange which allows us to fetch a batch of payloads in one engine api request. If we did the simple for loop we'd have to make an engine api request for each payload

[jimmygchen]

The new protocols need to be added to this function:

lighthouse/beacon_node/lighthouse_network/src/rpc/protocol.rs

Line 389 in ffc2b97

fn currently_supported(fork_context: &ForkContext) -> Vec<ProtocolId> {

Added some tests to catch this kind of bug:

• #8920

[jimmygchen]

we may need a rpc_payload_envelope_limits function and update the rpc_block_limits_by_fork to include Gloas block size limit.

[eserilev]

updated rpc_block_limits_by_fork and introduced rpc_payload_envelope_limits

[eserilev]

We still need to set rpc_block_limits_by_fork max to be bellatrix_max for historical sync compatibility

[jimmygchen]

synchronous db read inside async task here, use a blocking task (spawn_blocking)

[eserilev]

added spawn_blocking. I had to introduce a new span_blocking_and_await fn inside task executor. its the same spawn_blocking wrapper we have in beacon chain. I did this because I didnt want envelope streamer to rely on beacon chain.

[jimmygchen]

This should be spec.max_request_payloads() to be consistent with the other fixes

[jimmygchen]

The new protocols need count validation here too, otherwise a peer can make us iterate the full chain instead of the expected max 128 slots:

lighthouse/beacon_node/lighthouse_network/src/rpc/handler.rs

Line 957 in e1d3dcc

_ => {}

[jimmygchen]

may be worth logging some errors/warn here?

[eserilev]

added warn log

[eserilev]

This is ready for a review. We're skipping envelope verification here, since we dont have fork choice yet.

[dapplion]

Suggestion: avoid wrapping canonical_head in Arc — BeaconChain is already behind an Arc everywhere, so the streamer can hold Arc<BeaconChain<T>> instead.

Implement CanonicalHeadReader on BeaconChain<T> (delegating to self.canonical_head) and pass self.clone() to the streamer. This avoids the structural change to the canonical_head field.

See: dapplion@3e6afae31

[dapplion]

Also, BeaconBlockGloas::full() is dead code — it's defined but never called (SignedExecutionPayloadEnvelope::max_size() computes the size arithmetically instead). Beyond being unused, the impl is fragile: it starts from empty(spec) then mutates fields with push loops, so adding a new field compiles fine but silently leaves it empty. A direct struct construction would catch missing fields at compile time.

Removed it along with 9 unused imports it pulled in: dapplion@ed8c5495f

[mergify]

Some required checks have failed. Could you please take a look @eserilev? 🙏

[eserilev]

@dapplion your changes make sense, i went ahead and merged them. thanks!

[pawanjay176]

Can we create an explicit empty() method for the default case?

[eserilev]

54dfa0c

[pawanjay176]

might be better to have a max_size on the ExecutionPayloadEnvelope as well and use it here instead so we don't forget to update it if the spec changes

[eserilev]

54dfa0c

[pawanjay176]

I'm not a fan of doing this without refactoring the spawn_blocking_handle function in beacon_chain.rs to also use this.
We'll just end up having multiple functions that do the same thing for no reason.

[eserilev]

this is no longer needed due to the adapter pattern change and has been removed

[pawanjay176]

Why don't we start with using the beacon chain here instead and do beacon_chain.execution_layer when we need to access it? that way we get to keep pretty similar logic to the beaocn block streamer.
We need the beacon_chain to access the db anyway

[pawanjay176]

If testing is the concern, we can take a similar approach to the fetch_blobs adapter.

Here, it seems like we need ExecutionLayer, CanonicalHead and the store all of which are present in the BeaconChain

[eserilev]

ive went with the adapter pattern

[pawanjay176]

do you mean getPayloadBodiesByRange or some equivalent thing that returns in the right format for the CL?

[eserilev]

yes, i've updated the comment

[eserilev]

went ahead with the adapter pattern, i think its the cleaner approach. thanks pawan for suggesting it. theres a bit of code churn from those changes, sorry about that... this should be ready for another round of reviews

[mergify]

This pull request has merge conflicts. Could you please resolve them @eserilev? 🙏

[dapplion]

🤖 Note on memory amplification (inherited pattern, not new to this PR):

load_envelopes() materializes all results into a Vec before streaming, and launch_stream() uses an unbounded_channel(). With max_request_payloads = 128 and practical envelope sizes ~2MB (gas-limited), one request buffers ~256MB. Per-peer limits allow 4 concurrent requests (2 by-range + 2 by-root via MAX_CONCURRENT_REQUESTS=2), so ~1GB per peer. With 220 max peers, theoretical worst case is ~220GB.

(lion) However in practice the Beacon processor has limited worker threads, so not all 1024 queued items run simultaneously, on high CPU machine it may be a slight concern.

The BlockStreamer has the exact same pattern and has been running in production, so this isn't a regression — just worth noting as the envelope payloads can be larger than blocks. Rate limiting (128 items/10s per peer) and peer scoring provide some mitigation.