zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10017 Commits
183 Branches
291 MiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
tendermint/docs/rfc/rfc-000-p2p-roadmap.rst

316 lines
14 KiB
Raw Permalink Normal View History

rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
rfc: Fix a few typos and formatting glitches p2p roadmap (#6960)
3 years ago
rfc: p2p next steps (#6866)
3 years ago
 
  1. ====================

  2. RFC 000: P2P Roadmap

  3. ====================

  4. 

  5. Changelog

  6. ---------

  7. 

  8. - 2021-08-20: Completed initial draft and distributed via a gist

  9. - 2021-08-25: Migrated as an RFC and changed format

  10. 

  11. Abstract

  12. --------

  13. 

  14. This document discusses the future of peer network management in Tendermint, with

  15. a particular focus on features, semantics, and a proposed roadmap.

  16. Specifically, we consider libp2p as a tool kit for implementing some fundamentals.

  17. 

  18. Background

  19. ----------

  20. 

  21. For the 0.35 release cycle the switching/routing layer of Tendermint was

  22. replaced. This work was done "in place," and produced a version of Tendermint

  23. that was backward-compatible and interoperable with previous versions of the

  24. software. While there are new p2p/peer management constructs in the new

  25. version (e.g. ``PeerManager`` and ``Router``), the main effect of this change

  26. was to simplify the ways that other components within Tendermint interacted with

  27. the peer management layer, and to make it possible for higher-level components

  28. (specifically the reactors), to be used and tested more independently.

  29. 

  30. This refactoring, which was a major undertaking, was entirely necessary to

  31. enable areas for future development and iteration on this aspect of

  32. Tendermint. There are also a number of potential user-facing features that

  33. depend heavily on the p2p layer: additional transport protocols, transport

  34. compression, improved resilience to network partitions. These improvements to

  35. modularity, stability, and reliability of the p2p system will also make

  36. ongoing maintenance and feature development easier in the rest of Tendermint.

  37. 

  38. Critique of Current Peer-to-Peer Infrastructure

  39. ---------------------------------------

  40. 

  41. The current (refactored) P2P stack is an improvement on the previous iteration

  42. (legacy), but as of 0.35, there remains room for improvement in the design and

  43. implementation of the P2P layer.

  44. 

  45. Some limitations of the current stack include:

  46. 

  47. - heavy reliance on buffering to avoid backups in the flow of components,

  48.   which is fragile to maintain and can lead to unexpected memory usage

  49.   patterns and forces the routing layer to make decisions about when messages

  50.   should be discarded.

  51. 

  52. - the current p2p stack relies on convention (rather than the compiler) to

  53.   enforce the API boundaries and conventions between reactors and the router,

  54.   making it very easy to write "wrong" reactor code or introduce a bad

  55.   dependency.

  56. 

  57. - the current stack is probably more complex and difficult to maintain because

  58.   the legacy system must coexist with the new components in 0.35. When the

  59.   legacy stack is removed there are some simple changes that will become

  60.   possible and could reduce the complexity of the new system. (e.g. `#6598

  61.   <https://github.com/tendermint/tendermint/issues/6598>`_.)

  62. 

  63. - the current stack encapsulates a lot of information about peers, and makes it

  64.   difficult to expose that information to monitoring/observability tools. This

  65.   general opacity also makes it difficult to interact with the peer system

  66.   from other areas of the code base (e.g. tests, reactors).

  67. 

  68. - the legacy stack provided some control to operators to force the system to

  69.   dial new peers or seed nodes or manipulate the topology of the system _in

  70.   situ_. The current stack can't easily provide this, and while the new stack

  71.   may have better behavior, it does leave operators hands tied.

  72. 

  73. Some of these issues will be resolved early in the 0.36 cycle, with the

  74. removal of the legacy components.

  75. 

  76. The 0.36 release also provides the opportunity to make changes to the

  77. protocol, as the release will not be compatible with previous releases.

  78. 

  79. Areas for Development

  80. ---------------------

  81. 

  82. These sections describe features that may make sense to include in a Phase 2 of

  83. a P2P project.

  84. 

  85. Internal Message Passing

  86. ~~~~~~~~~~~~~~~~~~~~~~~~

  87. 

  88. Currently, there's no provision for intranode communication using the P2P

  89. layer, which means when two reactors need to interact with each other they

  90. have to have dependencies on each other's interfaces, and

  91. initialization. Changing these interactions (e.g. transitions between

  92. blocksync and consensus) from procedure calls to message passing.

  93. 

  94. This is a relatively simple change and could be implemented with the following

  95. components:

  96. 

  97. - a constant to represent "local" delivery as  the ``To`` field on

  98.   ``p2p.Envelope``.

  99. 

  100. - special path for routing local messages that doesn't require message

  101.   serialization (protobuf marshalling/unmarshaling).

  102. 

  103. Adding these semantics, particularly if in conjunction with synchronous

  104. semantics provides a solution to dependency graph problems currently present

  105. in the Tendermint codebase, which will simplify development, make it possible

  106. to isolate components for testing.

  107. 

  108. Eventually, this will also make it possible to have a logical Tendermint node

  109. running in multiple processes or in a collection of containers, although the

  110. usecase of this may be debatable.

  111. 

  112. Synchronous Semantics (Paired Request/Response)

  113. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  114. 

  115. In the current system, all messages are sent with fire-and-forget semantics,

  116. and there's no coupling between a request sent via the p2p layer, and a

  117. response. These kinds of semantics would simplify the implementation of

  118. state and block sync reactors, and make intra-node message passing more

  119. powerful.

  120. 

  121. For some interactions, like gossiping transactions between the mempools of

  122. different nodes, fire-and-forget semantics make sense, but for other

  123. operations the missing link between requests/responses leads to either

  124. inefficiency when a node fails to respond or becomes unavailable, or code that

  125. is just difficult to follow.

  126. 

  127. To support this kind of work, the protocol would need to accommodate some kind

  128. of request/response ID to allow identifying out-of-order responses over a

  129. single connection. Additionally, expanded the programming model of the

  130. ``p2p.Channel`` to accommodate some kind of _future_ or similar paradigm to

  131. make it viable to write reactor code without needing for the reactor developer

  132. to wrestle with lower level concurrency constructs.

  133. 

  134. 

  135. Timeout Handling (QoS)

  136. ~~~~~~~~~~~~~~~~~~~~~~

  137. 

  138. Currently, all timeouts, buffering, and QoS features are handled at the router

  139. layer, and the reactors are implemented in ways that assume/require

  140. asynchronous operation. This both increases the required complexity at the

  141. routing layer, and means that misbehavior at the reactor level is difficult to

  142. detect or attribute. Additionally, the current system provides three main

  143. parameters to control quality of service:

  144. 

  145. - buffer sizes for channels and queues.

  146. 

  147. - priorities for channels

  148. 

  149. - queue implementation details for shedding load.

  150. 

  151. These end up being quite coarse controls, and changing the settings are

  152. difficult because as the queues and channels are able to buffer large numbers

  153. of messages it can be hard to see the impact of a given change, particularly

  154. in our extant test environment. In general, we should endeavor to:

  155. 

  156. - set real timeouts, via contexts, on most message send operations, so that

  157.   senders rather than queues can be responsible for timeout

  158.   logic. Additionally, this will make it possible to avoid sending messages

  159.   during shutdown.

  160. 

  161. - reduce (to the greatest extent possible) the amount of buffering in

  162.   channels and the queues, to more readily surface backpressure and reduce the

  163.   potential for buildup of stale messages.

  164. 

  165. Stream Based Connection Handling

  166. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  167. 

  168. Currently the transport layer is message based, which makes sense from a

  169. mental model of how the protocol works, but makes it more difficult to

  170. implement transports and connection types, as it forces a higher level view of

  171. the connection and interaction which makes it harder to implement for novel

  172. transport types and makes it more likely that message-based caching and rate

  173. limiting will be implemented at the transport layer rather than at a more

  174. appropriate level.

  175. 

  176. The transport then, would be responsible for negotiating the connection and the

  177. handshake and otherwise behave like a socket/file descriptor with ``Read`` and

  178. ``Write`` methods.

  179. 

  180. While this was included in the initial design for the new P2P layer, it may be

  181. obviated entirely if the transport and peer layer is replaced with libp2p,

  182. which is primarily stream based.

  183. 

  184. Service Discovery

  185. ~~~~~~~~~~~~~~~~~

  186. 

  187. In the current system, Tendermint assumes that all nodes in a network are

  188. largely equivalent, and nodes tend to be "chatty" making many requests of

  189. large numbers of peers and waiting for peers to (hopefully) respond. While

  190. this works and has allowed Tendermint to get to a certain point, this both

  191. produces a theoretical scaling bottle neck and makes it harder to test and

  192. verify components of the system.

  193. 

  194. In addition to peer's identity and connection information, peers should be

  195. able to advertise a number of services or capabilities, and node operators or

  196. developers should be able to specify peer capability requirements (e.g. target

  197. at least <x>-percent of peers with <y> capability.)

  198. 

  199. These capabilities may be useful in selecting peers to send messages to, it

  200. may make sense to extend Tendermint's message addressing capability to allow

  201. reactors to send messages to groups of peers based on role rather than only

  202. allowing addressing to one or all peers.

  203. 

  204. Having a good service discovery mechanism may pair well with the synchronous

  205. semantics (request/response) work, as it allows reactors to "make a request of

  206. a peer with <x> capability and wait for the response," rather force the

  207. reactors to need to track the capabilities or state of specific peers.

  208. 

  209. Solutions

  210. ---------

  211. 

  212. Continued Homegrown Implementation

  213. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  214. 

  215. The current peer system is homegrown and is conceptually compatible with the

  216. needs of the project, and while there are limitations to the system, the p2p

  217. layer is not (currently as of 0.35) a major source of bugs or friction during

  218. development.

  219. 

  220. However, the current implementation makes a number of allowances for

  221. interoperability, and there are a collection of iterative improvements that

  222. should be considered in the next couple of releases. To maintain the current

  223. implementation, upcoming work would include:

  224. 

  225. - change the ``Transport`` mechanism to facilitate easier implementations.

  226. 

  227. - implement different ``Transport`` handlers to be able to manage peer

  228.   connections using different protocols (e.g. QUIC, etc.)

  229. 

  230. - entirely remove the constructs and implementations of the legacy peer

  231.   implementation.

  232. 

  233. - establish and enforce clearer chains of responsibility for connection

  234.   establishment (e.g. handshaking, setup,) which is currently shared between

  235.   three components.

  236. 

  237. - report better metrics regarding the into the state of peers and network

  238.   connectivity, which are opaque outside of the system. This is constrained at

  239.   the moment as a side effect of the split responsibility for connection

  240.   establishment.

  241. 

  242. - extend the PEX system to include service information so that nodes in the

  243.   network weren't necessarily homogeneous.

  244. 

  245. While maintaining a bespoke peer management layer would seem to distract from

  246. development of core functionality, the truth is that (once the legacy code is

  247. removed,) the scope of the peer layer is relatively small from a maintenance

  248. perspective, and having control at this layer might actually afford the

  249. project with the ability to more rapidly iterate on some features.

  250. 

  251. LibP2P

  252. ~~~~~~

  253. 

  254. LibP2P provides components that, approximately, account for the

  255. ``PeerManager`` and ``Transport`` components of the current (new) P2P

  256. stack. The Go APIs seem reasonable, and being able to externalize the

  257. implementation details of peer and connection management seems like it could

  258. provide a lot of benefits, particularly in supporting a more active ecosystem.

  259. 

  260. In general the API provides the kind of stream-based, multi-protocol

  261. supporting, and idiomatic baseline for implementing a peer layer. Additionally

  262. because it handles peer exchange and connection management at a lower

  263. level, by using libp2p it'd be possible to remove a good deal of code in favor

  264. of just using libp2p. Having said that, Tendermint's P2P layer covers a

  265. greater scope (e.g. message routing to different peers) and that layer is

  266. something that Tendermint might want to retain.

  267. 

  268. The are a number of unknowns that require more research including how much of

  269. a peer database the Tendermint engine itself needs to maintain, in order to

  270. support higher level operations (consensus, statesync), but it might be the

  271. case that our internal systems need to know much less about peers than

  272. otherwise specified. Similarly, the current system has a notion of peer

  273. scoring that cannot be communicated to libp2p, which may be fine as this is

  274. only used to support peer exchange (PEX,) which would become a property libp2p

  275. and not expressed in it's current higher-level form.

  276. 

  277. In general, the effort to switch to libp2p would involve:

  278. 

  279. - timing it during an appropriate protocol-breaking window, as it doesn't seem

  280.   viable to support both libp2p *and* the current p2p protocol.

  281. 

  282. - providing some in-memory testing network to support the use case that the

  283.   current ``p2p.MemoryNetwork`` provides.

  284. 

  285. - re-homing the ``p2p.Router`` implementation on top of libp2p components to

  286.   be able to maintain the current reactor implementations.

  287. 

  288. Open question include:

  289. 

  290. - how much local buffering should we be doing? It sort of seems like we should

  291.   figure out what the expected behavior is for libp2p for QoS-type

  292.   functionality, and if our requirements mean that we should be implementing

  293.   this on top of things ourselves?

  294. 

  295. - if Tendermint was going to use libp2p, how would libp2p's stability

  296.   guarantees (protocol, etc.) impact/constrain Tendermint's stability

  297.   guarantees?

  298. 

  299. - what kind of introspection does libp2p provide, and to what extend would

  300.   this change or constrain the kind of observability that Tendermint is able

  301.   to provide?

  302. 

  303. - how do efforts to select "the best" (healthy, close, well-behaving, etc.)

  304.   peers work out if Tendermint is not maintaining a local peer database?

  305. 

  306. - would adding additional higher level semantics (internal message passing,

  307.   request/response pairs, service discovery, etc.) facilitate removing some of

  308.   the direct linkages between constructs/components in the system and reduce

  309.   the need for Tendermint nodes to maintain state about its peers?

  310. 

  311. References

  312. ----------

  313. 

  314. - `Tracking Ticket for P2P Refactor Project <https://github.com/tendermint/tendermint/issues/5670>`_

  315. - `ADR 61: P2P Refactor Scope <../architecture/adr-061-p2p-refactor-scope.md>`_

  316. - `ADR 62: P2P Architecture and Abstraction <../architecture/adr-061-p2p-architecture.md>`_