Add specification for Portal JSON-RPC #345
Conversation
| @@ -0,0 +1,49 @@ | |||
| # Portal JSON-RPC specification | |||
|
|
|||
| The `*` is meant to be a placeholder to substitute different Portal sub-networks `history`, `state`, `beacon`, etc | |||
There was a problem hiding this comment.
something like <network-identifier> or <identifier> or <namespace> might be more visually clear.
There was a problem hiding this comment.
Great for getting some of json-rpc requests written down with more detail.
I do think it would be nicer if we can get this all on one place/page, i.e. within the json-rpc specifications that get generated. But I do understand that this could be more work.
As example, the beacon api has very rich explanations on all of their calls: https://ethereum.github.io/beacon-APIs/
| ## portal_*RoutingTableInfo | ||
|
|
||
| ## portal_*AddEnr | ||
| - Adds the Enr to the respective sub-networks routing table |
There was a problem hiding this comment.
This is rather an attempt to add to the routing table. It might fail according to the rules of the routing table implementation/configuration (e.g. bucket already full, ip limit reached, etc.).
There was a problem hiding this comment.
I will make this more clear
| ## portal_*Gossip | ||
| - must not validate content | ||
| - shouldn't store data on gossiping node |
There was a problem hiding this comment.
At Fluffy we were thinking of having validation + storage on this call but not on the portal_*Offer considering that one seems lower level. But we are not sure about it ourselves, so works either way for us.
There was a problem hiding this comment.
At Fluffy we were thinking of having validation
If someone gossips invalid data the node gossiped to should temporarily ban the gossiper.
I don't think you can validate everything without making network requests
There was a problem hiding this comment.
In Fluffy we do local validations without doing network requests (currently just the state network). Sure, the node receiving the offer will validate and reject the data if it is bad but if you can prevent the bad data before sending then why not.
| - if recursive find content is done and content meets storage criteria store content | ||
|
|
||
| ## portal_*Store | ||
| - must not validate content |
There was a problem hiding this comment.
I'm not sure, but perhaps you could still make it validate the type encoding?
I can see however that for this call you would want to avoid additional network requests.
There was a problem hiding this comment.
I'm not sure, but perhaps you could still make it validate the type encoding?
Of course the client should validate correct type encodings I will make this more clear
I can see however that for this call you would want to avoid additional network requests.
This call should make 0 network requests
There was a problem hiding this comment.
For the state network, the only part of the validation that needs a network request is looking up the block header to get the state root. If we skip the state root validation we can still perform all other validations such as decoding, checking the nodeHash matches node in proof, checking structure of the proofs etc and we now do this in Fluffy.
I agree that we shouldn't make network requests but I would suggest applying as many validations as possible to reduce the risk of storing bad data in the db, anything that can be done without a network request.
I don't think that is as detailed for implementations as the specification for the engine_api is. The engine_api has both a user facing |
| ## portal_*GetContent | ||
| - must validate content | ||
| - must check local storage first before doing recursive find content | ||
| - if recursive find content is done must do poke mechanism |
There was a problem hiding this comment.
Poke is currently not part of the state network. Not sure if this should be mentioned.
There was a problem hiding this comment.
Poke is currently not part of the state network. Not sure if this should be mentioned.
good point I will remove it 🚀
There was a problem hiding this comment.
I was under the impression that we could indeed poke the content, since we are effectively building up a proof by walking the trie... Couldn't the node that is doing the trie walk push the content into the nodes that should have had it but didn't after retrieval?
There was a problem hiding this comment.
I was under the impression that we could indeed poke the content, since we are effectively building up a proof by walking the trie... Couldn't the node that is doing the trie walk push the content into the nodes that should have had it but didn't after retrieval?
You are right, so I will keep poke listed here
There was a problem hiding this comment.
Actually poke isn't possible in portal_stateGetContent because we don't have the proof needed in order to build an offer in this context. The higher level rpc endpoints such as eth_getBalance will have this proof from walking the trie but portal_stateGetContent doesn't have a proof parameter and may get called/used in other contexts where we are not walking the trie. Sure, you could in theory walk the trie for every bit a state content being looked up but that would be very slow due to the many network requests potentially required.
There was a problem hiding this comment.
We could add optional proof field to the portal_stateGetContent. If provided, it can be used together with content obtained from the network to generate content that can be poked.
This would technically make get_content for State different then the one from History and Beacon. But it actually is not that different, because for Beacon and History, you don't need any additional data in order to create poke content item.
I didn't think extensively about it, but it feels like we would have similar need for Transaction and Verkle networks (when added). So State wouldn't be the only network that will need this.
Side note: I'm on the fence if the field should be optional or not. I'm not sure in what situation one would have content key, but not have a proof for it. But on the other hand, I don't want to make API too strict.
There was a problem hiding this comment.
Yes we could add that parameter for state network then the poke would be possible. My thoughts are that it should be optional so that state content can still be fetched for other purposes such as debugging if and when needed.
There was a problem hiding this comment.
I don't think we should make API decisions with debugging/testing use case in mind. If we need something specific for debugging, those can be added separately (e.g. portalDebug_stateGetContent) and they can be:
- documented to behave the same as the original request but skipping validation
- enabled/disabled with a flag
But, if we have legitimate use case when we are requesting data but don't already have proof available, then field should of course be optional. I'm just not sure if such use case exists
There was a problem hiding this comment.
Since we sometimes can poke the content, we should just specify this as a SHOULD with that context so that in the event that the call if poke-able it should be poked, otherwise, if it's unanchored content, it shouldn't.
|
We have recently reviewed and updated the validation of the state portal JSON-RPC endpoints and this is what we implemented based on what intuitively made sense:
This was just our initial intuition of what seems like be a good implementation and perhaps the spec could head in this direction. I think we need to be clear what we mean by validation in the spec as well because the ones that can be done without network look ups should probably still be required by the spec. |
I assume you meant to link https://github.com/ethereum/execution-apis/tree/main/src/engine. But I do think that in some cases you can just write it differently in the "users" specification because it is still very useful information to the user in the end. By the way, https://ethereum.github.io/beacon-APIs/ is quite detailed also, especially if you start looking into the validator API. |
KolbyML
force-pushed
the
spec-rpc-endpoints
branch
from
ba3ce71
to
794fc1e
Compare
I am still working on this just getting it out there