zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3661 Commits
183 Branches
291 MiB
Tree: 2761861b6b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2761861b6b'
${ noResults }
tendermint/docs/specification/block-structure.rst

220 lines
9.3 KiB
Raw Normal View History

docs: organize the specification
7 years ago
docs: fix links, closes #860
7 years ago
docs: organize the specification
7 years ago
docs: clean a bunch of stuff up
7 years ago
docs: organize the specification
7 years ago
docs: fix links, closes #860
7 years ago
docs: organize the specification
7 years ago
 
  1. Block Structure

  2. ===============

  3. 

  4. The tendermint consensus engine records all agreements by a

  5. supermajority of nodes into a blockchain, which is replicated among all

  6. nodes. This blockchain is accessible via various rpc endpoints, mainly

  7. ``/block?height=`` to get the full block, as well as

  8. ``/blockchain?minHeight=_&maxHeight=_`` to get a list of headers. But

  9. what exactly is stored in these blocks?

  10. 

  11. Block

  12. ~~~~~

  13. 

  14. A

  15. `Block <https://godoc.org/github.com/tendermint/tendermint/types#Block>`__

  16. contains:

  17. 

  18. -  a `Header <#header>`__ contains merkle hashes for various chain

  19.    states

  20. -  the

  21.    `Data <https://godoc.org/github.com/tendermint/tendermint/types#Data>`__

  22.    is all transactions which are to be processed

  23. -  the `LastCommit <#commit>`__ > 2/3 signatures for the last block

  24. 

  25. The signatures returned along with block ``H`` are those validating

  26. block ``H-1``. This can be a little confusing, but we must also consider

  27. that the ``Header`` also contains the ``LastCommitHash``. It would be

  28. impossible for a Header to include the commits that sign it, as it would

  29. cause an infinite loop here. But when we get block ``H``, we find

  30. ``Header.LastCommitHash``, which must match the hash of ``LastCommit``.

  31. 

  32. Header

  33. ~~~~~~

  34. 

  35. The

  36. `Header <https://godoc.org/github.com/tendermint/tendermint/types#Header>`__

  37. contains lots of information (follow link for up-to-date info). Notably,

  38. it maintains the ``Height``, the ``LastBlockID`` (to make it a chain),

  39. and hashes of the data, the app state, and the validator set. This is

  40. important as the only item that is signed by the validators is the

  41. ``Header``, and all other data must be validated against one of the

  42. merkle hashes in the ``Header``.

  43. 

  44. The ``DataHash`` can provide a nice check on the

  45. `Data <https://godoc.org/github.com/tendermint/tendermint/types#Data>`__

  46. returned in this same block. If you are subscribed to new blocks, via

  47. tendermint RPC, in order to display or process the new transactions you

  48. should at least validate that the ``DataHash`` is valid. If it is

  49. important to verify autheniticity, you must wait for the ``LastCommit``

  50. from the next block to make sure the block header (including

  51. ``DataHash``) was properly signed.

  52. 

  53. The ``ValidatorHash`` contains a hash of the current

  54. `Validators <https://godoc.org/github.com/tendermint/tendermint/types#Validator>`__.

  55. Tracking all changes in the validator set is complex, but a client can

  56. quickly compare this hash with the `hash of the currently known

  57. validators <https://godoc.org/github.com/tendermint/tendermint/types#ValidatorSet.Hash>`__

  58. to see if there have been changes.

  59. 

  60. The ``AppHash`` serves as the basis for validating any merkle proofs

  61. that come from the `ABCI

  62. application <https://github.com/tendermint/abci>`__. It represents the

  63. state of the actual application, rather that the state of the blockchain

  64. itself. This means it's necessary in order to perform any business

  65. logic, such as verifying and account balance.

  66. 

  67. **Note** After the transactions are committed to a block, they still

  68. need to be processed in a separate step, which happens between the

  69. blocks. If you find a given transaction in the block at height ``H``,

  70. the effects of running that transaction will be first visible in the

  71. ``AppHash`` from the block header at height ``H+1``.

  72. 

  73. Like the ``LastCommit`` issue, this is a requirement of the immutability

  74. of the block chain, as the application only applies transactions *after*

  75. they are commited to the chain.

  76. 

  77. Commit

  78. ~~~~~~

  79. 

  80. The

  81. `Commit <https://godoc.org/github.com/tendermint/tendermint/types#Commit>`__

  82. contains a set of

  83. `Votes <https://godoc.org/github.com/tendermint/tendermint/types#Vote>`__

  84. that were made by the validator set to reach consensus on this block.

  85. This is the key to the security in any PoS system, and actually no data

  86. that cannot be traced back to a block header with a valid set of Votes

  87. can be trusted. Thus, getting the Commit data and verifying the votes is

  88. extremely important.

  89. 

  90. As mentioned above, in order to find the ``precommit votes`` for block

  91. header ``H``, we need to query block ``H+1``. Then we need to check the

  92. votes, make sure they really are for that block, and properly formatted.

  93. Much of this code is implemented in Go in the

  94. `light-client <https://github.com/tendermint/light-client>`__ package.

  95. If you look at the code, you will notice that we need to provide the

  96. ``chainID`` of the blockchain in order to properly calculate the votes.

  97. This is to protect anyone from swapping votes between chains to fake (or

  98. frame) a validator. Also note that this ``chainID`` is in the

  99. ``genesis.json`` from *Tendermint*, not the ``genesis.json`` from the

  100. basecoin app (`that is a different

  101. chainID... <https://github.com/cosmos/cosmos-sdk/issues/32>`__).

  102. 

  103. Once we have those votes, and we calculated the proper `sign

  104. bytes <https://godoc.org/github.com/tendermint/tendermint/types#Vote.WriteSignBytes>`__

  105. using the chainID and a `nice helper

  106. function <https://godoc.org/github.com/tendermint/tendermint/types#SignBytes>`__,

  107. we can verify them. The light client is responsible for maintaining a

  108. set of validators that we trust. Each vote only stores the validators

  109. ``Address``, as well as the ``Signature``. Assuming we have a local copy

  110. of the trusted validator set, we can look up the ``Public Key`` of the

  111. validator given its ``Address``, then verify that the ``Signature``

  112. matches the ``SignBytes`` and ``Public Key``. Then we sum up the total

  113. voting power of all validators, whose votes fulfilled all these

  114. stringent requirements. If the total number of voting power for a single

  115. block is greater than 2/3 of all voting power, then we can finally trust

  116. the block header, the AppHash, and the proof we got from the ABCI

  117. application.

  118. 

  119. Vote Sign Bytes

  120. ^^^^^^^^^^^^^^^

  121. 

  122. The ``sign-bytes`` of a vote is produced by taking a

  123. `stable-json <https://github.com/substack/json-stable-stringify>`__-like

  124. deterministic JSON `wire <./wire-protocol.html>`__ encoding of

  125. the vote (excluding the ``Signature`` field), and wrapping it with

  126. ``{"chain_id":"my_chain","vote":...}``.

  127. 

  128. For example, a precommit vote might have the following ``sign-bytes``:

  129. 

  130. .. code:: json

  131. 

  132.     {"chain_id":"my_chain","vote":{"block_hash":"611801F57B4CE378DF1A3FFF1216656E89209A99","block_parts_header":{"hash":"B46697379DBE0774CC2C3B656083F07CA7E0F9CE","total":123},"height":1234,"round":1,"type":2}}

  133. 

  134. Block Hash

  135. ~~~~~~~~~~

  136. 

  137. The `block

  138. hash <https://godoc.org/github.com/tendermint/tendermint/types#Block.Hash>`__

  139. is the `Simple Tree hash <./merkle.html#simple-tree-with-dictionaries>`__

  140. of the fields of the block ``Header`` encoded as a list of

  141. ``KVPair``\ s.

  142. 

  143. Transaction

  144. ~~~~~~~~~~~

  145. 

  146. A transaction is any sequence of bytes. It is up to your

  147. `ABCI <https://github.com/tendermint/abci>`__ application to accept or

  148. reject transactions.

  149. 

  150. BlockID

  151. ~~~~~~~

  152. 

  153. Many of these data structures refer to the

  154. `BlockID <https://godoc.org/github.com/tendermint/tendermint/types#BlockID>`__,

  155. which is the ``BlockHash`` (hash of the block header, also referred to

  156. by the next block) along with the ``PartSetHeader``. The

  157. ``PartSetHeader`` is explained below and is used internally to

  158. orchestrate the p2p propogation. For clients, it is basically opaque

  159. bytes, but they must match for all votes.

  160. 

  161. PartSetHeader

  162. ~~~~~~~~~~~~~

  163. 

  164. The

  165. `PartSetHeader <https://godoc.org/github.com/tendermint/tendermint/types#PartSetHeader>`__

  166. contains the total number of pieces in a

  167. `PartSet <https://godoc.org/github.com/tendermint/tendermint/types#PartSet>`__,

  168. and the Merkle root hash of those pieces.

  169. 

  170. PartSet

  171. ~~~~~~~

  172. 

  173. PartSet is used to split a byteslice of data into parts (pieces) for

  174. transmission. By splitting data into smaller parts and computing a

  175. Merkle root hash on the list, you can verify that a part is legitimately

  176. part of the complete data, and the part can be forwarded to other peers

  177. before all the parts are known. In short, it's a fast way to securely

  178. propagate a large chunk of data (like a block) over a gossip network.

  179. 

  180. PartSet was inspired by the LibSwift project.

  181. 

  182. Usage:

  183. 

  184. .. code:: go

  185. 

  186.     data := RandBytes(2 << 20) // Something large

  187. 

  188.     partSet := NewPartSetFromData(data)

  189.     partSet.Total()     // Total number of 4KB parts

  190.     partSet.Count()     // Equal to the Total, since we already have all the parts

  191.     partSet.Hash()      // The Merkle root hash

  192.     partSet.BitArray()  // A BitArray of partSet.Total() 1's

  193. 

  194.     header := partSet.Header() // Send this to the peer

  195.     header.Total        // Total number of parts

  196.     header.Hash         // The merkle root hash

  197. 

  198.     // Now we'll reconstruct the data from the parts

  199.     partSet2 := NewPartSetFromHeader(header)

  200.     partSet2.Total()    // Same total as partSet.Total()

  201.     partSet2.Count()    // Zero, since this PartSet doesn't have any parts yet.

  202.     partSet2.Hash()     // Same hash as in partSet.Hash()

  203.     partSet2.BitArray() // A BitArray of partSet.Total() 0's

  204. 

  205.     // In a gossip network the parts would arrive in arbitrary order, perhaps

  206.     // in response to explicit requests for parts, or optimistically in response

  207.     // to the receiving peer's partSet.BitArray().

  208.     for !partSet2.IsComplete() {

  209.         part := receivePartFromGossipNetwork()

  210.         added, err := partSet2.AddPart(part)

  211.         if err != nil {

  212.         // A wrong part,

  213.             // the merkle trail does not hash to partSet2.Hash()

  214.         } else if !added {

  215.             // A duplicate part already received

  216.         }

  217.     }

  218. 

  219.     data2, _ := ioutil.ReadAll(partSet2.GetReader())

  220.     bytes.Equal(data, data2) // true