Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

docs: update the blob module specs part 1 #1906

Merged
merged 20 commits into from
Jun 19, 2023
Merged

docs: update the blob module specs part 1 #1906

Changes from 16 commits
Commits
Show all changes
20 commits
Select commit Hold shift + click to select a range
35a09a8
docs: minor update to the blob module
evan-forbes Jun 12, 2023
6a52515
docs: add validity rules
evan-forbes Jun 12, 2023
93af086
docs: update event field
evan-forbes Jun 19, 2023
5735b8c
Merge branch 'main' into evan/update-blob-module-specs-part-1
evan-forbes Jun 19, 2023
5b69d04
docs: Apply suggestions from code review
evan-forbes Jun 19, 2023
10b1e41
docs: minor update
evan-forbes Jun 19, 2023
ac88274
Merge branch 'evan/update-blob-module-specs-part-1' of https://github…
evan-forbes Jun 19, 2023
3508b36
docs: fill out fields of PFB in new format and link to ADR014 for sha…
evan-forbes Jun 19, 2023
4338e36
docs: elaborate on size consistency
evan-forbes Jun 19, 2023
6be08b4
docs: link to reserved namespaces
evan-forbes Jun 19, 2023
60e4cce
docs: clarify and add link
evan-forbes Jun 19, 2023
1e600c1
docs: share commitments
evan-forbes Jun 19, 2023
695e892
docs: typo and link to reserved name space
evan-forbes Jun 19, 2023
1db4f6e
docs: add link to sharesize
evan-forbes Jun 19, 2023
145e3ad
docs: add more info for shares commitments
evan-forbes Jun 19, 2023
4790fa0
Merge branch 'main' into evan/update-blob-module-specs-part-1
evan-forbes Jun 19, 2023
e0f0699
docs: review feedback
evan-forbes Jun 19, 2023
920760c
docs: use adr 007
evan-forbes Jun 19, 2023
5cc0296
docs: add link
evan-forbes Jun 19, 2023
ab80f8d
Merge branch 'main' into evan/update-blob-module-specs-part-1
evan-forbes Jun 19, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
196 changes: 166 additions & 30 deletions x/blob/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,49 +2,192 @@

## Abstract

The `x/blob` module enables users to pay for arbitrary data to be published to the Celestia blockchain. Users create a single `BlobTx` that is composed of:
The `x/blob` module enables users to pay for arbitrary data to be published to
the Celestia blockchain. Users create a single `BlobTx` that is composed of:

1. Multiple `Blob`s (Binary Large OBjects): the data they wish to publish. A single `Blob` is composed of:
1. Multiple `Blob`s (Binary Large OBjects): the data they wish to publish. A
single `Blob` is composed of:
1. `NamespaceId []byte`: the namespace this blob should be published to.
1. `Data []byte`: the data to be published.
1. `ShareVersion uint32`: the version of the share format used to encode this blob into a share.
1. A single `sdk.Tx` which is composed of:
1. `ShareVersion uint32`: the version of the share format used to encode
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
this blob into a share.
1. A single [`sdk.Tx`](https://github.com/celestiaorg/cosmos-sdk/blob/v1.15.0-sdk-v0.46.13/docs/architecture/adr-020-protobuf-transaction-encoding.md) which is composed of:
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
1. `Signer string`: the transaction signer
1. `NamespaceIds []byte`: the namespaces they wish to publish each blob to. The namespaces here must match the namespaces in the `Blob`s.
1. `ShareCommitment []byte`: a share commitment that is the root of a Merkle tree where the leaves are share commitments to each blob associated with this BlobTx.
1. `NamespaceIds []byte`: the namespaces they wish to publish each blob to.
The namespaces here must match the namespaces in the `Blob`s.
1. `ShareCommitments [][]byte`: a share commitment that is the root of a Merkle
tree where the leaves are share commitments to each blob associated with
this `BlobTx`.

After the `BlobTx` is submitted to the network, a block producer separates the
transaction i.e., `sdk.Tx` from the blob. Both components get included in the data square in
different namespaces: the `sdk.Tx` of the original `BlobTx` together with some metadata about the separated blobs get included in the PayForBlobNamespace (one
of the [reserved
namespaces](../../specs/src/specs/consensus.md#reserved-namespaces)) and the
associated blob gets included in the namespace the user specified in the
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
original `BlobTx`. Further reading: [Data Square Layout](../../specs/src/specs/data_square_layout.md)

After a block has been created, the user can verify that their data was included
in a block via a blob inclusion proof. A blob inclusion proof uses the
staheri14 marked this conversation as resolved.
Show resolved Hide resolved
`ShareCommitment` in the original `sdk.Tx` transaction and subtree roots of the block's
data square to prove to the user that the shares that compose their original
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also, if we have a link to the subtree roots of the blocks data, it would be good to add.

data do in fact exist in a particular block.

After the `BlobTx` is submitted to the network, a block producer separates the transaction from the blob. Both components get included in the data square in different namespaces: the BlobTx gets included in the PayForBlobNamespace and the associated blob gets included in the namespace the user specified in the original `BlobTx`. Further reading: [Data Square Layout](../../specs/src/specs/data_square_layout.md)
## State

After a block has been created, the user can verify that their data was included in a block via a blob inclusion proof. A blob inclusion proof uses the `ShareCommitment` in the original transaction and subtree roots of the block's data square to prove to the user that the shares that compose their original data do in fact exist in a particular block.
The blob module doesn't maintain it's own state outside of a two params. Meaning
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
that the blob module only uses the params and auth module stores.

## State
### Params

The blob module doesn't maintain it's own state.
```proto
// Params defines the parameters for the module.
message Params {
option (gogoproto.goproto_stringer) = false;
uint32 gas_per_blob_byte = 1
[ (gogoproto.moretags) = "yaml:\"gas_per_blob_byte\"" ];
uint64 gov_max_square_size = 2
[ (gogoproto.moretags) = "yaml:\"gov_max_square_size\"" ];
}
```

When a `MsgPayForBlob` is processed, it consumes gas based on the blob size.
#### `GasPerBlobByte`

## Messages
`GasPerBlobByte` is the amount of gas that is consumed per byte of blob data
when a `MsgPayForBlob` is processed. Currently, the Default value is 8. This
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
value is set below that of normal transaction gas consumption, which is 10.

#### `GovMaxSquareSize`

- [`MsgPayForBlob`](https://github.com/celestiaorg/celestia-app/blob/8b9c4c9d13fe0ccb6ea936cc26dee3f52b6f6129/proto/blob/tx.proto#L39-L44) pays for the blob to be included in the block.
`GovMaxSquareSize` is the maximum size of a data square that is considered valid
by the validator set. This value is superseded by the `MaxSquareSize`, which is
hardcoded and cannot change without hardforking the chain. See
[ADR021](../../docs/architecture/adr-021-restricted-block-size.md) for more
details.

## PrepareProposal
## Messages

When a block producer is preparing a block, they must perform an extra step for `BlobTx`s so that end-users can find the blob shares relevant to their submitted `BlobTx`. In particular, block proposers wrap the `BlobTx` in the PayForBlobs namespace with the index of the first share of the blob in the data square. See [Blob share commitment rules](../../specs/src/specs/data_square_layout.md#blob-share-commitment-rules) for more details.
- [`MsgPayForBlobs`](https://github.com/celestiaorg/celestia-app/blob/v1.0.0-rc2/proto/celestia/blob/v1/tx.proto#L16-L31)
pays for a set of blobs to be included in the block. Blob transactions that contain
this `sdk.Msg` are also referred to as "PFBs".
this `sdk.Msg` are better known as "PFBs".
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved

```proto
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
message MsgPayForBlobs {
string signer = 1;
repeated bytes namespaces = 2;
repeated uint32 blob_sizes = 3;
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
repeated bytes share_commitments = 4;
repeated uint32 share_versions = 8;
}
```

Since `BlobTx`s can contain multiple blobs, the `BlobTx` is wrapped with one share index per blob in the transaction. The index wrapped transaction is called an [IndexWrapper](https://github.com/celestiaorg/celestia-core/blob/2d2a65f59eabf1993804168414b86d758f30c383/proto/tendermint/types/types.proto#L192-L198) and this is the type that gets marshalled and written to the PayForBlobNamespace.
`MsgPayForBlobs` pays for the inclusion of a blob in the block and consists of the
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
following fields:

- signer: bech32 encoded signer address
- namespace: namespace is a byte slice of length 33 where the first byte is the
namespaceVersion and the subsequent 32 bytes are the namespaceId.
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
- blob_sizes: sizes of each blob in bytes.
- share_commitments is a list of share commitments (one per blob).
- share_versions are the versions of the share format that the blobs associated
with this message should use when included in a block. The share_versions
specified must match the share_versions used to generate the share_commitment
in this message. See
[ADR014](../../docs/architecture/adr-014-versioned-namespaces.md) for more
details on how this effects the share encoding and when it is updated.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[optional] ADR-014 doesn't describe share versions, it describe namespace versions.

ADR-007 introduces a share version: https://github.com/celestiaorg/celestia-app/blob/main/docs/architecture/adr-007-universal-share-prefix.md

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

my bad thanks for catching 920760c


Note that while the shares version in each protobuf encoded PFB are uint32s, the
internal represantation of shares versions is always uint8s. This is because
protobuf doesn't support uint8s.

### Generating the `ShareCommitment`

The share commitment is the commitment to share encoded blobs. It can be used
for cheap inclusion checks for some data by light clients. More information and
rational can be found in the [data square layout
specs](../../specs/src/specs/data_square_layout.md).

1. Split the blob into shares of size [`shareSize`](../../specs/src/specs/data_structures.md#consensus-parameters)
1. Determine the
[`SubtreeWidth`](https://github.com/celestiaorg/celestia-app/blob/v1.0.0-rc2/pkg/shares/non_interactive_defaults.go#L94-L116)
by dividing the length in shares by the `SubtreeRootThreshold`.
1. Generate each subtree root by diving the blob shares into `SubtreeWidth`
sized sets, then take the binary [namespaced merkle tree
(NMT)](https://github.com/celestiaorg/nmt/blob/v0.16.0/docs/spec/nmt.md) root
of each set of shares.
1. Calculate the final share commitment by taking the merkle root (note: not an
NMT, just a normal binary merkle root) of the subtree roots from the previous
step.

See
[`CreateCommitment`](https://github.com/celestiaorg/celestia-app/blob/v1.0.0-rc2/x/blob/types/payforblob.go#L169-L236)
for an implementation. See [data square
layout](../../specs/src/specs/data_square_layout.md) and
[ADR013](../../docs/architecture/adr-013-non-interactive-default-rules-for-zero-padding.md)
for details on the rational of the square layout.

## Validity Rules

In order for a proposal block to be considered valid, each `BlobTx`, and thus
each PFB, to be included in a block must follow a set of validity rules.

1. Signatures: All blob transactions must have valid signatures. This is
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[Question for my own understanding] When the term "proposal block" is used in the context of "In order for a proposal block to be considered valid," does it refer to a block proposed during the consensus (and yet to be voted and committed) or one that has received the majority vote (hence committed)? I'm curious about when signatures and nonces are verified – during the voting phase or at the time of block execution (which I think corresponds to the processProposal). If signature verification is required during the voting process, then we would need to track the state changes resulting from proposals (but not committed blocks) in order to do so.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

does it refer to a block proposed during the consensus (and yet to be voted and committed) or one that has received the majority vote (hence committed)?

both! we call ProcessProposal on proposals beofore voting, and while consensus nodes sync the chain

signatures, and therefore their nonces, are verified before the block is actually applied to the state in both cases. State can then be tracked rather easily since we already have the state from the previous block, which is all that is needed.

state-dependent because correct signatures require using the correct sequence
number(aka nonce).
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
1. Single SDK.Msg: There must be only a single sdk.Msg encoded in the `sdk.Tx`
field of the blob transaction `BlobTx`.
1. Namespace Validity: The namespace of each blob in a blob transaction `BlobTx`
must be valid. This validity is determined by the following sub-rules:
1. The namepsace of each blob must match the respective (same index)
namespace in the `MsgPayForBlobs` `sdk.Msg` field `namespaces`.
1. The namespace is not lexicographically less than the [MAX_RESERVED_NAMESPACE](../../specs/src/specs/consensus.md#constants) range.
1. The namespace is not the
[TAIL_PADDING_NAMESPACE](../../specs/src/specs/consensus.md#constants)
or [RESERVED_PADDING_NAMESPACE](../../specs/src/specs/consensus.md#constants).
1. Blob Size: No blob can have a size of 0.
1. Blob Count: There must be one or more blobs included in the transaction.
1. Share Commitment Validity: Each share commitment must be valid.
1. The size of each of the share commitments must be equal to the digest of
the hash function used (sha256 so 32 bytes).
1. The share commitment must be calculated using the steps specified above
in [Generating the Share
Commitment](./README.md#generating-the-sharecommitment)
1. Share Versions: The versions of the shares must be supported.
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved
1. Signer Address: The signer address must be a valid Celestia address.
1. Proper Encoding: The blob transactions must be properly encoded.
1. Size Consistency: The sizes included in the PFB field `blob_sizes`, and each
must match the actual size of the respective (same index) blob in bytes.

## `IndexWrappedTx`

When a block producer is preparing a block, they must perform an extra step for
`BlobTx`s so that end-users can find the blob shares relevant to their submitted
`BlobTx`. In particular, block proposers wrap the `BlobTx` in the PFB namespace
with the index of the first share of the blob in the data square. See [Blob
share commitment
rules](../../specs/src/specs/data_square_layout.md#blob-share-commitment-rules)
for more details.

Since `BlobTx`s can contain multiple blobs, the `sdk.Tx` portion of the `BlobTx`
is wrapped with one share index per blob in the transaction. The index wrapped
transaction is called an
[IndexWrapper](https://github.com/celestiaorg/celestia-core/blob/2d2a65f59eabf1993804168414b86d758f30c383/proto/tendermint/types/types.proto#L192-L198)
and this is the struct that gets marshalled and written to the
PayForBlobNamespace.

## Events

The blob module emits the following events:

### Blob Events

#### EventPayForBlob
#### `EventPayForBlob`
evan-forbes marked this conversation as resolved.
Show resolved Hide resolved

| Attribute Key | Attribute Value |
|---------------|-----------------------------------------------|
| signer | {bech32 encoded signer address} |
| blob_size | {size in bytes} |
| blob_sizes | {sizes of blobs in bytes} |
| namespace_ids | {namespaces the blobs should be published to} |

## Parameters
Expand All @@ -59,18 +202,11 @@ The blob module emits the following events:
celestia-app tx blob PayForBlobs <hex encoded namespace> <hex encoded data> [flags]
```

For submitting PFB transaction via a light client's rpc, see [celestia-node's documention](https://docs.celestia.org/developers/rpc-tutorial/#submitpayforblob-arguments).
For submitting PFB transaction via a light client's rpc, see [celestia-node's
documention](https://docs.celestia.org/developers/rpc-tutorial/#submitpayforblob-arguments).

While not directly supported, the steps in the [`SubmitPayForBlob`](https://github.com/celestiaorg/celestia-app/blob/a82110a281bf9ee95a9bf9f0492e5d091371ff0b/x/blob/payforblob.go) function can be reverse engineered to submit blobs programmatically.
The steps in the
[`SubmitPayForBlobs`](https://github.com/celestiaorg/celestia-app/blob/v1.0.0-rc2/x/blob/payforblob.go#L15-L54)
function can be reverse engineered to submit blobs programmatically.

<!-- markdownlint-enable MD010 -->

### How is the `ShareCommitment` of a blob generated?

See [`CreateCommitment`](https://github.com/celestiaorg/celestia-app/blob/ead76d2bb607ac8a2deaba552de86d4df74a116b/x/blob/types/payforblob.go#L133).

1. Split the blob into shares of size `appconsts.ShareSize`
1. Determine the `BlobMinSquareSize` (the minimum square size the blob can fit into). This is done by taking the number of shares from the previous step and rounding up to the next perfect square that is a power of two.
1. Arrange the shares into a Merkle mountain range where each tree in the mountain range has a maximum size of the `BlobMinSquareSize`. Note: each share is prefixed with a duplicate copy of the namespace so that the roots in the next step match up with the subtree roots of the NMT of the data square.
1. Take the roots of the trees in the Merkle mountain range and create a new Merkle tree.
1. The share commitment of this blob is the Merkle root of the Merkle tree from the previous step.