...
| Page properties | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
...
P2P-network layer is slow, and lacks important parts for general purpose blockchain platform.
Problem
Main The main problem is the very slow creation and closing of a connection for every request is very slow, in in particular if it is a distributed network around the world, and round-trips can be like 300-350ms for every packet. As you know, every connection needs to toss 3 packets between client and server on opening. So, every request may take about half a second. This is unacceptable for serious financial distributed system.
...
- Using bootstrap nodes to propagate initial network information - peers and their public keys if needed (already has a task:
).Jira server Hyperledger JIRA serverId 6326cb0b-65b2-38fd-a82c-67a89277103b key IR-1123 - Adding genesis block hash for peers to know with which peers to work. This is similar to having a password to connect to network. If peer knows bootstrap IP:port and genesis hash it can connect and sync blocks, if not - it will not make successful connection to this bootstrap.
- If When we have bootstrap node/nodes, that propagate initial network info, then we can easily make it universal and implement it in a form of Peer Exchange.
- To resolve the main problem we need to implement holding some number of peer connections, capped to some constant or config value. Like Around 15-20 connections will be enough for gossip protocol, and nodes will not search/request additional peers from bootstrap and any other nodes.
- It would be better to implement gossip protocol for transactions & block propagation, but current consensus protocol needs to send them to particular peer, don't know how can we circumvent this.
- Message format and encoding. If we want this system to be efficient, we can encode every message as Enum variant, and serialize/deserialize to/from CBOR format. It is very compact and useful.
- Traffic encryption. It is imperative to encrypt blockchain communication between the nodes to protect financial data from eavesdropping and MitM-attacks. So, I propose to implement Diffie-Hellman hand-shakes based on Elliptic Curves (x52219x25519) and encrypting messages by ChaCha20Poly1305. For further DPI mitigation we can add some random garbage to handshakes as is done in Noise protocol. This approach will eliminate need of VPN.
From the architectural view every node will hold one server (listener) socket for other nodes to connect, and several outgoing connects to other nodes.
Decisions
- Every node will hold 2 sets of peer-connections: validators and unprivileged peers.
- Every validating node is trying to connect to every other validating node (for current round/epoch).
- Using
SCALE codecfor serialization, not CBOR. - Using proposed encryption: Diffie-Hellman hand-shakes based on Elliptic Curves (x25519) and encrypting messages by ChaCha20Poly1305, the
Ursahas all primitives for it. No one was against adding some garbage to handshakes. - Trusted peers set is not the same as validators. Trusted peers can be different for each node and it means that this set can be used as a bootstrap. But validators should be encoded in the genesis block and later added with AddPeer.
Alternatives
I think the alternative would be using libp2p, but it doesn't give such flexibility, encryption and robustness as using bare sockets and mio, for example. Do we need the DHT anyway?
...
Additional Information
This type on of network implementation is already implemented by me in my pet-project: https://github.com/Revertron/Alfis