Are canisters not allowed control neurons?

Jesse · January 8, 2024, 6:59pm

I’m attempting to assign a canister principal as a neuron’s controller, but I’m getting the following error:
Cannot add neuron, controller PrincipalId must be self-authenticating

is this error being thrown because the principal is that of a canister? if so, when will canister’s be allowed to control neurons? Having this ability is a necessity for the application that I’m building. I wouldn’t expect this of all things to be what blocks me.

diegop · January 8, 2024, 7:11pm

AFAIK, a canister cannot natively control a neuron out of the box so the simple answer is “no”… however, I heard one could do the following (not straightforward process): A canister should be able to do an HTTPS outcall to the NNS canister and use Threshold ECDSA to control an NNS neuron. I am not aware of folks who have done this in practice though.

Jesse · January 8, 2024, 7:47pm

Is there a reason for requiring devs to undergo such a roundabout process in order to enable neuron staking within canisters? What’s preventing the restrictions in place from being lifted?

I ask because I’m currently building a product that’s meant to facilitate collective IC staking and governance amongst different communities. Additionally, it’s meant to allows users to be able to collateralize their neuron stake in order to receive liquidity in the form of a loan.

To do this, I’ll need a treasury canister that has the ability to control a neuron. I’ve already built most of the code needed. This restriction on canisters has become a roadblock for me in development.

It wouldn’t make much sense to write up some convoluted system for enabling the treasury canister to control a neuron when, instead, the 1 or 2 lines of code that restrict canisters from controlling neurons could simply be removed.

domwoe · January 8, 2024, 9:01pm

The OpenChat SNS is doing this in practice. The code can be found here: open-chat/backend/canisters/neuron_controller at master · open-chat-labs/open-chat · GitHub

I would personally vote in favor if you put forward a proposal.

diegop · January 8, 2024, 9:13pm

I am not an expert on this topic, so I am not aware of what the design goals or constraints on these are (or if there is some security issue, or if its just its a feature that has been low in priority queue), so I am sorry I cannot shed more light on this.

jamesbeadle · March 27, 2024, 10:21am

So I am in the process of this of creating a canister controlled neuron in this way, my WIP can be found in the neuron controller folder here:

So in neuron_controller.mo you will see the function get_public_key_der:

But I have no idea how to write this function, is there any information you could give me?

domwoe · March 27, 2024, 11:19am

Hey James,

If I understand correctly, for this you just need to call the API at the management canister, see examples/motoko/threshold-ecdsa/src/ecdsa_example_motoko/main.mo at 340cc897f5de49eee10c78ec769602a5b1eb391a · dfinity/examples · GitHub

You might also want to checkout this library: Mops • Motoko Package Manager

jamesbeadle · March 27, 2024, 12:02pm

So yeah I can get the tECDSA public key in secp1 format but then I think I need to convert it back to DER format for future requests to the IC?

I can’t actually load the spec
https://internetcomputer.org/docs/current/references/ic-interface-spec

domwoe · March 27, 2024, 12:14pm

yep, haven’t parsed the “der” But the library I linked does this AFAICT.

jamesbeadle · March 27, 2024, 12:19pm

In the tecdsa library? I went through all the code and it doesn’t mention this format DER anywhere. It’s all new to me, is there any information you can give me on it?

Jesse · March 27, 2024, 12:22pm

@jamesbeadle There’s actually an active discussion proposed Here that would lift the restriction that prevents canisters from being able to control neurons directly.

My guess, is that the restriction will be lifted soon, and all the work that you’re about to do in order to perform an tECDSA-signed HTTPS request will be made redundant.

I’m not sure what your timeline is, but that’s an option for you

domwoe · March 27, 2024, 12:23pm

github.com

bittoko/tecdsa/blob/89fadbdad91ef8303b8a861fe9e7457ce134ba9a/src/Client/class.mo#L26


      
          public class Client(state_: State.State) = {
          
            let state = State.unwrap( state_ );
          
            let fees = Fees.Fees( state.fees );
          
            let server : T.IC = actor( state.canister_id );
          
            public func calculate_fee(key_id: T.KeyId): T.ReturnFee = fees.get( key_id.name );
          
            public func request_public_key(params: T.Params): async* T.AsyncReturn<T.PublicKey> {
              try {
                //let curve: T.Curve = params.key_id.curve;
                let pre_string : [Nat8] = DER_PRESTRING;
                let { public_key } = await server.ecdsa_public_key({
                  canister_id = params.canister_id;
                  derivation_path = params.derivation_path;
                  key_id = params.key_id;
                });
                let header_size: Nat = pre_string.size();
                let encoded_size: Nat = header_size + 65;

jamesbeadle · March 27, 2024, 12:37pm

Daily rewards on the neuron are probably around 20 ICP on the current figure so waiting obvs costs a lot of money especially when you’d set the DAO up to stake and pay the team through interest.

jamesbeadle · March 27, 2024, 12:38pm

Would you be able to give me any information on what this does and how it relates to getting the public key der in the same way OC does?

LightningLad91 · March 27, 2024, 12:58pm

@jamesbeadle here is a breakdown I posted in response to another post.

Happy to add more context later, but currently at work.

Jesse · March 27, 2024, 1:01pm

I understand.

Once you’ve retrieved the public key, you’ll have to decompress it, and then prepend a constant Blob to the decompressed public key.

This thread should be helpful:

jamesbeadle · March 27, 2024, 1:17pm

Is that what is happening in here?

LightningLad91 · March 27, 2024, 1:19pm

Yes, you can find that function here:

github.com

bittoko/tecdsa/blob/89fadbdad91ef8303b8a861fe9e7457ce134ba9a/src/Client/pk.mo#:~:text=import { fromArray = blobFromArray,50

import { fromArray = blobFromArray; toArray = blobToArray } "mo:base/Blob";
import { fromBlob = principalFromBlob } "mo:base/Principal";
import { fromIter = sha256FromIter } "mo:sha2/Sha256";
import { SECP256K1 = {P_VALUE; KEY_SIZE} } "const";
import { tabulate } "mo:base/Array";
import { trap } "mo:base/Debug";
import Int "int";
import T "types";

module {


  public func toPrincipal(pk: T.PublicKey): Principal {

    if ( pk.size() != KEY_SIZE ) trap("mo:tecdsa/client/pk: line 13");

    let hash: [Nat8] = blobToArray( sha256FromIter(#sha224, pk.vals()) );

    principalFromBlob(blobFromArray(tabulate<Nat8>(29,
      func(x) = if (x < 28) hash[x] else 0x02

This file has been truncated. show original

Topic		Replies	Views
Proposal: Remove the is_self_authenticating restriction on Neuron Ownership Governance Discussing	66	2855	January 8, 2024
Reevaluating Neuron Control Restrictions Governance	283	7228	June 18, 2024
The Internet Computer should allow canisters to control ICP neurons Governance	29	5664	November 23, 2023
Personal DAO canister controlled neuron types: Proxied Neurons vs Non-proxied neurons Developers	0	21	October 9, 2024
Allowing neurons to add a controller (without being able to remove previous controllers) Governance	7	47	October 8, 2024

Are canisters not allowed control neurons?

Related topics