Using Snapshot to Improve Signaling and Polls

Jiecut · August 26, 2020, 5:07am

Well, it’s important for governance polls. And we might get a lot more participation with gasless voting.

Yeah, maybe not everyone’s a whale. But there’s a lot of holders. Actually 27k addresses hold MKR, top 1k address holds 17.66 MKR which is worth more than $10k. All the shrimps and dolphins can make a difference for governance polls. And it’s not a stretch to say that some of those holders are active here.

But it is an interesting mix currently, our signal requests that we have now combined with governance polls on chain which is 1 coin 1 vote.

Jtathmann · August 26, 2020, 10:29am

I’d be interested to contrast the security differences between between our current on-chain polling and snapshot. @fabien are there any points of centralization, trust assumptions, or operator risks with using off-chain polling?

Also, am I thinking correctly that this will work even when tokens are deposited into our governance contract?

fabien · August 26, 2020, 11:30am

@Jtathmann with Snapshot there isn’t any on-chain settlement, it’s what we call soft-voting or vote signaling. The proposals and votes are just signed messages using the eth_sign format and stored on IPFS. The signed messages are made available for the user through the interface so that’s easy for him to verify it.

Here is an example of a signed message for vote on a Balancer governance proposal:
https://gateway.pinata.cloud/ipfs/QmeVwGtp4YxKaCGZM3jPSd7VKXTEAxXj74Xjnn1c8F4ifh
You can copy paste the message payload here to verify it:

There isn’t any smart contract risk because there isn’t any smart contract. The result of the proposal votes is easy to verify and hard to contest.

We use a server that we call “hub” to upload user signed messages to IPFS. We also use it to store an index of IPFS hashes for all the proposals per tokens and all the votes per proposals on a database to make interface load faster. We plan on making it possible for anyone to run a hub but at the moment i would say that it’s a point of centralization.

Also, am I thinking correctly that this will work even when tokens are deposited into our governance contract?

Currently votes will be considered if the voting address is also the address who hold MKR or a selected token. If the governance contract is holding the token for the users there might need some small change on Snapshot to make it work.

fabien · August 26, 2020, 7:08pm

I’ve create a space on the demo instance here: https://beta.snapshot.page/#/maker
Feel free to play with it, you can create proposal and vote for them using MKR (for free!).

Aaron_Bartsch · August 27, 2020, 1:16am

This is awesome @fabien. Any suggestions on how this voting method could be further decentralized/trust minimized?

fabien · August 27, 2020, 3:43am

@Aaron_Bartsch Yes, i got these 2 options to minimize trust:

A: One option is to link each IPFS signed messages to each others, sort of we don’t need an index to get the full list of hashes, we can just load IPFS hashes in serie from the interface and remove the hub completely. But because it’s loaded in serie one by one, it might be very slow and not scale well when loading hundred of votes.

B: The other option is to make it possible for anyone to run a hub. The hub db may not need to know ordering, its designed more like a graph database similar than IPFS. The client should have a way to set the hub url (or array of hub url) of his choice, and hubs should be able to talk to each others and stay sync. I could ask few protocols that are using Snapshot to run their own hub to keep some kind of trusted network.

I would prefer go for plan B, the project Snapshot is very new there must be others options to explore, i’m confident that with time we will be able to reduce that trust needed, happy to discuss if you have some suggestions or ideas.

Aaron_Bartsch · August 27, 2020, 11:38am

Very cool. Option B definitely makes the most sense. I could envision Maker governance electing several hub maintainers to shepherd this infrastructure kind of like a multi-sig.

One more question. Is it possible to add comments to a signed transaction so voters could anonymously comment as to why they voted a certain way?

fabien · August 27, 2020, 12:04pm

@Aaron_Bartsch Great! Now there isn’t any way to comment on a vote but that’s something we want to implement in the short term. There will be a way for anyone to comment (even if you haven’t voted) and comments will be linked to votes.

Aaron_Bartsch · August 27, 2020, 4:46pm

I’m now thinking, how would this work with MKR in the dschief contract? Is it possible to sign a transaction if your MKR is in another contract?

fabien · August 27, 2020, 6:08pm

@Aaron_Bartsch It will not work if the address who sign the message doesn’t hold the token defined on Snapshot, from my understanding staking MKR in the contract doesn’t mint another token so it will not work out of the box, but we can imagine having custom logic to be implemented for specific use case like MKR.

Jtathmann · September 4, 2020, 8:18pm

Here is an update from our friend @fabien. Snapshot now using MKR locked up in DSChief

You can test it here!

Strategy setup: https://github.com/balancer-labs/snapshot/pull/58/files#diff-d45e9fc817dd9f4950aa966ea99f5b56R10-R22

And this is the DSChief strategy: https://github.com/balancer-labs/snapshot/pull/58/files#diff-1b6072936c35d66437c3197aadb614bb

Jtathmann · September 5, 2020, 2:12pm

Hey @fabien, what causes the Oops, wrong timestamp error… and how fix?

Joshua_Pritikin · September 5, 2020, 2:17pm

@fabien Hm, I think I usually vote with 0x273BF243219D31c4096c00e156c1d8a8ff9731D9. I use the two address hot/cold setup. When I try to vote, it says that I have 0 MKR. The regular vote site shows 400 MKR.

spin · September 5, 2020, 3:52pm

Is snapshot censorship resistant? I don’t think how it could without doing anything on chain, so it’s probably very helpful to have on the forum but not a suitable replacement for on chain signalling. The other problem with it is that it won’t be supported by custody providers and any non-standard smart contract as it requires an EOA (Ethereum accounts owned by a cryptographic key instead of say a smart contract). I’m not sure how much better we’d actually be with this mechanism.

How is it working out for balancer labs? Are large institutional holders participating in it?

fabien · September 5, 2020, 5:32pm

@Jtathmann Did you used Metamask?

@Joshua_Pritikin When i call the function “deposits” on DSChief for this address “0x273BF243219D31c4096c00e156c1d8a8ff9731D9” i got a response of 0 MKR, this is most likely the reason why you don’t see the MKR in the interface. Is there some kind of delegation? There might be a logic that i am missing, if someone can explain to me i could implement it on the strategy.

fabien · September 5, 2020, 5:34pm

@spin I will not say it’s censorship resistant if we don’t have the network of hubs that i’ve discussed in earlier messages here but the proposals and votes are stored on IPFS, the hub expose all the IPFS hashes, anyone can already pin and replicate the content. I’m not sure to understand the issue with custody providers, is it something that is working already in Maker on-chain governance?

How is it working out for balancer labs? Are large institutional holders participating in it?

Snapshot is a side project that i’ve initiated with the support (non-monetary) of Balancer Labs. There is no investors participating, no token, no business model and no plan for all of it. Ideally i want Snapshot to become a common good tool for governance maintained by open source contributors.

spin · September 5, 2020, 9:02pm

Thanks on clarifying the multiple hub fact, indeed, if multiple hubs exist and at least one of them is honest then censorship becomes harder.

As for the “institutional investor” question, that was not asking about whether investors invested in Snapshot but whether funds that hold tokens with a professional custodian (such as anchorage or coinbase custody) could still participate because they don’t actually have a private key that they could use to sign.

Even myself I keep most of my stuff in a Gnosis Safe Multisig where it’s not a simple 1:1 relationship between signing keys and accounts.

fabien · September 6, 2020, 4:35am

Ok got it! Thank you for the details and sorry for the misunderstanding. For the funds held in professional custodian it will not work indeed. I wonder if the funds from each of these investors have a specific address in Coinbase custody or if it’s mixed. If each investor have their own address we can imagine Coinbase custody enabling some kind of delegation to make the fund usable for vote on Snapshot. For multi-sig wallets we can imagine having a strategy that count a vote only if a multi-sig threshold is reached, or a way to delegate this ability to vote to a single address. These are just some ideas, there might be better way to solve this, happy to brainstorm on this.

Jiecut · September 6, 2020, 4:42am

@fabien Yeah, currently some delegation is supported. There’s a voting proxy, and you let your hot wallet be able to vote for your cold wallet.

Not sure how to implement that into a strategy but other people might know how.

fabien · September 6, 2020, 9:11am

I’ve deployed the “strategies” feature on prod, now you can test it here directly: https://demo.snapshot.page/#/maker