Received: from sog-mx-2.v43.ch3.sourceforge.com ([172.29.43.192] helo=mx.sourceforge.net) by sfs-ml-2.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1YsIEC-0004yi-54 for bitcoin-development@lists.sourceforge.net; Tue, 12 May 2015 22:00:40 +0000 Received-SPF: pass (sog-mx-2.v43.ch3.sourceforge.com: domain of gmail.com designates 209.85.220.173 as permitted sender) client-ip=209.85.220.173; envelope-from=tier.nolan@gmail.com; helo=mail-qk0-f173.google.com; Received: from mail-qk0-f173.google.com ([209.85.220.173]) by sog-mx-2.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1YsIEA-0000Q0-Uu for bitcoin-development@lists.sourceforge.net; Tue, 12 May 2015 22:00:40 +0000 Received: by qkgy4 with SMTP id y4so16150434qkg.2 for ; Tue, 12 May 2015 15:00:33 -0700 (PDT) MIME-Version: 1.0 X-Received: by 10.55.15.15 with SMTP id z15mr5513973qkg.21.1431468033524; Tue, 12 May 2015 15:00:33 -0700 (PDT) Received: by 10.140.85.241 with HTTP; Tue, 12 May 2015 15:00:33 -0700 (PDT) In-Reply-To: References: <20150512171640.GA32606@savin.petertodd.org> Date: Tue, 12 May 2015 23:00:33 +0100 Message-ID: From: Tier Nolan Cc: Bitcoin Dev Content-Type: multipart/alternative; boundary=001a11475ddaa566850515e99f27 X-Spam-Score: 2.5 (++) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (tier.nolan[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record 1.2 MISSING_HEADERS Missing To: header 1.0 HTML_MESSAGE BODY: HTML included in message 0.0 AC_DIV_BONANZA RAW: Too many divs in a row... spammy template -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 1.9 MALFORMED_FREEMAIL Bad headers on message from free email service -0.0 AWL AWL: Adjusted score from AWL reputation of From: address X-Headers-End: 1YsIEA-0000Q0-Uu Subject: Re: [Bitcoin-development] Proposed additional options for pruned nodes X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 12 May 2015 22:00:40 -0000 --001a11475ddaa566850515e99f27 Content-Type: text/plain; charset=UTF-8 On Tue, May 12, 2015 at 8:03 PM, Gregory Maxwell wrote: > > (0) Block coverage should have locality; historical blocks are > (almost) always needed in contiguous ranges. Having random peers > with totally random blocks would be horrific for performance; as you'd > have to hunt down a working peer and make a connection for each block > with high probability. > > (1) Block storage on nodes with a fraction of the history should not > depend on believing random peers; because listening to peers can > easily create attacks (e.g. someone could break the network; by > convincing nodes to become unbalanced) and not useful-- it's not like > the blockchain is substantially different for anyone; if you're to the > point of needing to know coverage to fill then something is wrong. > Gaps would be handled by archive nodes, so there is no reason to > increase vulnerability by doing anything but behaving uniformly. > > (2) The decision to contact a node should need O(1) communications, > not just because of the delay of chasing around just to find who has > someone; but because that chasing process usually makes the process > _highly_ sybil vulnerable. > > (3) The expression of what blocks a node has should be compact (e.g. > not a dense list of blocks) so it can be rumored efficiently. > > (4) Figuring out what block (ranges) a peer has given should be > computationally efficient. > > (5) The communication about what blocks a node has should be compact. > > (6) The coverage created by the network should be uniform, and should > remain uniform as the blockchain grows; ideally it you shouldn't need > to update your state to know what blocks a peer will store in the > future, assuming that it doesn't change the amount of data its > planning to use. (What Tier Nolan proposes sounds like it fails this > point) > > (7) Growth of the blockchain shouldn't cause much (or any) need to > refetch old blocks. > M = 1,000,000 N = number of "starts" S(0) = hash(seed) mod M ... S(n) = hash(S(n-1)) mod M This generates a sequence of start points. If the start point is less than the block height, then it counts as a hit. The node stores the 50MB of data starting at the block at height S(n). As the blockchain increases in size, new starts will be less than the block height. This means some other runs would be deleted. A weakness is that it is random with regards to block heights. Tiny blocks have the same priority as larger blocks. 0) Blocks are local, in 50MB runs 1) Agreed, nodes should download headers-first (or some other compact way of finding the highest POW chain) 2) M could be fixed, N and the seed are all that is required. The seed doesn't have to be that large. If 1% of the blockchain is stored, then 16 bits should be sufficient so that every block is covered by seeds. 3) N is likely to be less than 2 bytes and the seed can be 2 bytes 4) A 1% cover of 50GB of blockchain would have 10 starts @ 50MB per run. That is 10 hashes. They don't even necessarily need to be crypt hashes 5) Isn't this the same as 3? 6) Every block has the same odds of being included. There inherently needs to be an update when a node deletes some info due to exceeding its cap. N can be dropped one run at a time. 7) When new starts drop below the tip height, N can be decremented and that one run is deleted. There would need to be a special rule to ensure the low height blocks are covered. Nodes should keep the first 50MB of blocks with some probability (10%?) --001a11475ddaa566850515e99f27 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable


On Tue, May= 12, 2015 at 8:03 PM, Gregory Maxwell <gmaxwell@gmail.com> = wrote:

(0) Block coverage should have locality; historical blocks are
(almost) always needed in contiguous ranges.=C2=A0 =C2=A0Having random peer= s
with totally random blocks would be horrific for performance; as you'd<= br> have to hunt down a working peer and make a connection for each block
with high probability.

(1) Block storage on nodes with a fraction of the history should not
depend on believing random peers; because listening to peers can
easily create attacks (e.g. someone could break the network; by
convincing nodes to become unbalanced) and not useful-- it's not like the blockchain is substantially different for anyone; if you're to the<= br> point of needing to know coverage to fill then something is wrong.
Gaps would be handled by archive nodes, so there is no reason to
increase vulnerability by doing anything but behaving uniformly.

(2) The decision to contact a node should need O(1) communications,
not just because of the delay of chasing around just to find who has
someone; but because that chasing process usually makes the process
_highly_ sybil vulnerable.

(3) The expression of what blocks a node has should be compact (e.g.
not a dense list of blocks) so it can be rumored efficiently.

(4) Figuring out what block (ranges) a peer has given should be
computationally efficient.

(5) The communication about what blocks a node has should be compact.

(6) The coverage created by the network should be uniform, and should
remain uniform as the blockchain grows; ideally it you shouldn't need to update your state to know what blocks a peer will store in the
future, assuming that it doesn't change the amount of data its
planning to use. (What Tier Nolan proposes sounds like it fails this
point)

(7) Growth of the blockchain shouldn't cause much (or any) need to
refetch old blocks.

M = =3D 1,000,000
N =3D number of "sta= rts"

S(0) =3D hash(seed) mod M
...S(n) =3D hash(S(n-1)) mod M

This generates a sequence of start points.=C2= =A0 If the start point is less than the block height, then it counts as a h= it.

The node stores the 50MB of dat= a starting at the block at height S(n).

As the blockchain increases in size, new starts will be less than the=20 block height.=C2=A0 This means some other runs would be deleted.

A weakness is that it is random with regards to block heights.=C2=A0 Tin= y blocks have the same priority as larger blocks.

0) Bloc= ks are local, in 50MB runs
1) Agreed, nodes should download h= eaders-first (or some other compact way of finding the highest POW chain)
2) M could be fixed, N and the seed are all that is required.= =C2=A0 The seed doesn't have to be that large.=C2=A0 If 1% of the block= chain is stored, then 16 bits should be sufficient so that every block is c= overed by seeds.
3) N is likely to be less than 2 bytes and t= he seed can be 2 bytes
4) A 1% cover of 50GB of blockchain wo= uld have 10 starts @ 50MB per run.=C2=A0 That is 10 hashes.=C2=A0 They don&= #39;t even necessarily need to be crypt hashes
5) Isn't t= his the same as 3?
6) Every block has the same odds of being = included.=C2=A0 There inherently needs to be an update when a node deletes = some info due to exceeding its cap.=C2=A0 N can be dropped one run at a tim= e.=C2=A0
7) When new starts drop below the tip height, N can= be decremented and that one run is deleted.

There would = need to be a special rule to ensure the low height blocks are covered.=C2= =A0 Nodes should keep the first 50MB of blocks with some probability (10%?)=
--001a11475ddaa566850515e99f27--