The Circuit Relay Specification

[daviddias]

As promised on Friday, July 8, I've cleaned up, coalesced and added what was missing to the Relay spec, taking the bits from PRs #18 and #15 and all the comments.

Hope you enjoy :)

[dryajov]

I've added a few comments that I think we should address before merging, otherwise looks good!

[dryajov]

Do we really need this? It seems like there could be a lot of complexity involved in making this work properly, as opposed to leaving the job of re-establishing a dropped connection to the source. So far I have left this out in the js implementation.

[daviddias]

if needed, could be rebuilt

It is not handled by the module. It is "if needed, the dst has the information to rebuild the conn back"

[daviddias]

✅

[dryajov]

Looks good, but should we have a version as part of the message as well? I know its communicated as part of the multistream-select rpc end point, but having a version in the message might help preventing stupid mistakes like we made changes to the protobuff msg, but forgot to bump the multistream version.

[daviddias]

• protobufs have a very clean way to be updated already
• "we made changes to the protobuf msg, but forgot to bump the multistream version" - this is not a valid technical reason, the truth is that adding a version won't stop you from making any of the mistakes you suggest, in fact, it opens the door to even more.

[dryajov]

@diasdavid you're correct, reading a bit more into protobufs clarified this.

[daviddias]

✅

[dryajov]

If we're returning the status as part of the message, we should probably make the return codes protobuf enums as well.

[daviddias]

I like that 👍

[daviddias]

@dryajov wanna PR that addition?

[dryajov]

@diasdavid sure thing.

[dryajov]

@diasdavid - here it is #23

[JustinDrake]

Very nice to have a spec for this critical piece of infrastructure 👍

[JustinDrake]

Should this HOP message be immediately acknowledged by R with a message? Opening a new stream sRB can take some time, and it would be good for A to be able to distinguish timeouts where R is slow, or where B is slow.

[daviddias]

It's acknowledged in the sense that:

• a connection is open
• a multistream + secio + spdy + multistream again to /libp2p/circuit/relay is done

The next ack is when R finishes sRB

[JustinDrake]

Typo "mean" should be "means". (The singular of "means" is "means".)

[JustinDrake]

Typo "could'nd" -> "couldn't"

[JustinDrake]

Where exactly does the piping happen? Does it happen after R sends { type: 'STATUS', code: 'OK' } on sAR? If so, is there a race condition here? Should it happen before R sends that message?

[daviddias]

It's after R sends that { type: 'STATUS', code: 'OK' }. The order in which the items are listed is relevant.

Where is the race condition here?

[JustinDrake]

The race condition is as follows. A may try to send a message for B on sAR after receiving { type: 'STATUS', code: 'OK' } from R, but before piping has happened, i.e. before a circuit to B is properly formed. In practice, network latency will likely be high enough that piping will happen in time. Still, piping should maybe happen before sending { type: 'STATUS', code: 'OK' } to avoid the (theoretical) race condition.

[dryajov]

@diasdavid agree with @JustinDrake in the current js implementation OK is sent after the pipe has been established otherwise there is no way to tell if the pipe is ready without an additional message that would indicate that.

[daviddias]

If A writes on sAR and sAR hasn't been piped to sRB then the message is buffered (backpressure).

[JustinDrake]

If A writes on sAR and sAR hasn't been piped to sRB then the message is buffered (backpressure).

Backpressure may not completely address the race condition. The reason is that the recipient of messages sent to the sAR stream could be either R or B. As it stands the protocol is unambiguous because after A sends the initial HOP message to R it is not expected to send further messages to R. But in theory the protocol could be extended to allow for A to send further messages to R before the circuit is established. Doing things the other way round may be more futureproof.

[dryajov]

Looking at this closer, I see another issue that might come up with multihop dialing. In shallow/matreshka dialing mode, there is no way for the R to tell weather the circuit has been completed or not until the last portion of the multihop address is dialed, for that reason I have the STOP handler signaling the OK rather than HOP.

[dryajov]

@lgierth @whyrusleeping @diasdavid wanna chime in on this one? Seems like the only contention point right now? I agree with the points that @JustinDrake is bringing up.

[whyrusleeping]

i'm not sure i see an issue here, If R sends the message to A, then pipes the connection, any message sent from A to R will just be buffered (or A will not be able to finish the write) until things are piped. It is assumed we are operating over a reliable ordered stream (not something like UDP where packets could get dropped if we don't read them)

[dryajov]

@whyrusleeping I guess you're right. I remember dealing with some issues initially, which made me experiment a bit with where the ok is sent, but most likely it was unrelated to the ordering of the messages. I'll give it another go sinse I'll have to rewrite message handling anyways.

[JustinDrake]

What is a BAD ERROR? The name "BAD" isn't very descriptive.

[JustinDrake]

Maybe add the version number (0.1.0)

[JustinDrake]

/ipfs should be /p2p. Same with /ipfs/QmTwo => /p2p/QmTwo.

[JustinDrake]

Should this be "One leg of the relay was setup correctly", instead of the full relay?

[daviddias]

This is a very good question, I need it needs to be clarified.

Dialing from A to R self-confirms because of all the libp2p dance (multistream, secio, protocol muxing), we really just need to signal that we managed to reach the other end (B).

This brings be back to => #22 (comment)

[daviddias]

✅

[JustinDrake]

/ipfs/relay/circuit should be /libp2p/relay/circuit.

[JustinDrake]

"(e.g IPFS)" => "(e.g. IPFS nodes)"

(add missing . and clarify)

[JustinDrake]

"(instead of e.g. TCP.)" => remove extraneous dot

[JustinDrake]

How can a /p2p-circuit multiaddr be encapsulated in a /p2p address without encapsulating a /p2p address? In other words, shouldn't the destination /p2p address be mandatory?

[daviddias]

The wording might not be perfect. Could you illustrate the case that doesn't make sense to you?

[JustinDrake]

The case that is not allowed is <relay peer multiaddr>/p2p-circuit/ (destination omitted). What about the following wording?

A /p2p-circuit multiaddress needs to encapsulate a /p2p destination address, and optionally be encapsulated by a /p2p relay address.

[dryajov]

I think this can be added as additional bullet points to the main sentense:

/p2p-circuit multiaddrs don't carry any meaning of their own. They need to encapsulate a /p2p address, or be encapsulated in a /p2p address, or both.

• /p2p-circuit multiaddress encapsulates a /p2p destination address - e.g. /p2p-circuit/p2p/QmHash
• can optionally be encapsulated by a /p2p relay address - e.g. /p2p/ipfs/QmRelay/p2p-circuit/p2p/QmDest

[dryajov]

The js does implement multihop dialing in the form of shallot/matreshka dialing. This was based on the conversations we had at the time of me starting the implementation, what has changed that we now have scrapped this part?

[daviddias]

There is nothing wrong with experimentation. It was part of Future Work spec wise from the beginning.

[dryajov]

Makes sense. :)

[daviddias]

From IRC:

06:06 <@daviddias> Seems that other than some miner typos, there are no outstanding issues in the relay spec
06:07 <@daviddias> Shall we merge it today?
06:07 <@whyrusleeping> sounds good to me

📣 If no blockers appear, I shall merge the spec today 📯

[JustinDrake]

@diasdavid Are you going to address #22 (comment) before merging?

[daviddias]

@JustinDrake addressed last Wednesday

[daviddias]

All right, this is it, no one has raised any other blockers, we can say that this spec is COMPLETE