The Circuit Relay Specification: The first iteration #15
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -2,66 +2,47 @@ | |
|
|
||
| > Circuit Switching in libp2p | ||
|
|
||
| ## Implementations | ||
|
|
||
| - [js-libp2p-circuit](https://github.com/libp2p/js-libp2p-circuit) | ||
| - [go-libp2p-circuit](https://github.com/libp2p/go-libp2p-circuit) | ||
|
|
||
| ## Table of Contents | ||
|
|
||
| - [Overview](#overview) | ||
| - [Dramatization](#dramatization) | ||
| - [Addressing](#addressing) | ||
| - [Wire protocol](#wire-protocol) | ||
| - [Interfaces](#interfaces) | ||
| - [Implementation Details](#implementation-details) | ||
|
|
||
| ## Overview | ||
|
|
||
| The circuit relay is a means of establishing connectivity between libp2p nodes (such as IPFS) that wouldn't otherwise be able to connect to each other. | ||
|
|
||
| This helps in situations where nodes are behind NAT or reverse proxies, or simply don't support the same transports (e.g. go-ipfs vs. browser-ipfs). libp2p already has modules for NAT ([go-libp2p-nat](https://github.com/libp2p/go-libp2p-nat)), but these don't always do the job, just because NAT traversal is complicated. That's why it's useful to have a simple relay protocol. | ||
|
|
||
| Unlike a transparent **tunnel**, where a libp2p peer would just proxy a communication stream to a destination (the destination being unaware of the original source), a circuit-relay makes the destination aware of the original source and the circuit followed to establish communication between the two. This provides the destination side with full knowledge of the circuit which, if needed, could be rebuilt in the opposite direction. | ||
|
|
||
| Apart from that, this relayed connection behaves just like a regular connection would, but over an existing swarm stream with another peer (instead of e.g. TCP.): One node asks a relay node to connect to another node on its behalf. The relay node shortcircuits its streams to the two nodes, and they are then connected through the relay. | ||
|
|
||
| Relayed connections are end-to-end encrypted just like regular connections. | ||
|
|
||
| The circuit relay is both a tunneled transport and a mounted swarm protocol. | ||
| The transport is the means of ***establishing*** and ***accepting*** connections, and the swarm protocol is the means to ***relaying*** connections. | ||
|
|
||
| ``` | ||
| +-----+ /ip4/.../tcp/.../ws/p2p/QmRelay +-------+ /ip4/.../tcp/.../p2p/QmTwo +-----+ | ||
| |QmOne| <------------------------------------>|QmRelay|<----------------------------------->|QmTwo| | ||
| +-----+ (/libp2p/relay/circuit multistream) +-------+ (/libp2p/relay/circuit multistream) +-----+ | ||
| ^ +-----+ ^ | ||
| | /p2p-circuit/QmTwo | | | | ||
| +-----------------------------------------+ +-----------------------------------------+ | ||
| ``` | ||
|
|
||
| Note: we're using the `/p2p` multiaddr protocol instead of `/ipfs` in this document. `/ipfs` is currently the canonical way of addressing a libp2p or IPFS node, but given the growing non-IPFS usage of libp2p, we'll migrate to using `/p2p`. | ||
|
|
||
| Note: at the moment we're not including a mechanism for discovering relay nodes. For the time being, they should be configured statically. | ||
|
|
||
| ## Dramatization | ||
|
|
||
|
|
@@ -84,91 +65,189 @@ Scene 2: | |
| - QmOne tries to connect via relaying, because it shares this transport with QmTwo. | ||
| - A lively and prolonged dialogue ensues. | ||
|
|
||
| ## Addressing | ||
|
|
||
| `/p2p-circuit` multiaddrs don't carry any meaning of their own. They need to encapsulate a `/p2p` address, or be encapsulated in a `/p2p` address, or both. | ||
|
|
||
| As with all other multiaddrs, encapsulation of different protocols determines which metaphorical tubes to connect to each other. | ||
|
|
||
| A `/p2p-circuit` circuit address, is formated following: | ||
|
|
||
| `/p2p-circuit[<relay peer multiaddr>]<destination peer multiaddr>` | ||
|
|
||
| This opens the room for multiple hop relay, where the first relay is encapsulated in the seconf relay multiaddr, such as: | ||
|
There was a problem hiding this comment. typo: s/seconf/second/ |
||
|
|
||
| `/p2p-circuit/p2p-circuit/<first relay>/<first hop multiaddr>/<destination peer multiaddr>` | ||
|
There was a problem hiding this comment. To me it makes a lot more sense to do something like - There was a problem hiding this comment. Trying to reformat this example to match @lgierth clarifications I think the above is intended to read as follows:
|
||
|
|
||
| A few examples: | ||
|
|
||
| Using any relay available: | ||
|
|
||
| - `/p2p-circuit/p2p/QmTwo` | ||
| - Dial QmTwo, through any available relay node (or find one node that can relay). | ||
| - The relay node will use peer routing to find an address for QmTwo if it doesn't have a direct connection. | ||
| - `/p2p-circuit/ip4/../tcp/../p2p/QmTwo` | ||
|
There was a problem hiding this comment. Should be :
|
||
| - Dial QmTwo, through any available relay node, | ||
| but force the relay node to use the encapsulated `/ip4` multiaddr for connecting to QmTwo. | ||
| - We'll probably not support forced addresses for now, just because it's complicated. | ||
|
|
||
| Specify a relay: | ||
|
|
||
| - `/p2p-circuit/p2p/QmRelay/p2p/QmTwo` | ||
|
There was a problem hiding this comment. Should be:
|
||
| - Dial QmTwo, through QmRelay. | ||
| - Use peer routing to find an address for QmRelay. | ||
| - The relay node will also use peer routing, to find an address for QmTwo. | ||
| - `/p2p-circuit/ip4/../tcp/../p2p/QmRelay/p2p/QmTwo` | ||
|
There was a problem hiding this comment. Should be:
|
||
| - Dial QmTwo, through QmRelay. | ||
| - Includes info for connecting to QmRelay. | ||
| - The relay node will use peer routing to find an address for QmTwo. | ||
|
|
||
| Double relay: | ||
|
|
||
| - `/p2p-circuit/p2p/QmTwo/p2p-circuit/p2p/QmThree` | ||
| - Dial QmThree, through a relayed connection to QmTwo. | ||
| - The relay nodes will use peer routing to find an address for QmTwo and QmThree. | ||
| - We'll probably not support nested relayed connections for now, there are edge cases to think of. | ||
|
|
||
| -- | ||
|
|
||
| ?? I don't understand the usage of the following: | ||
|
|
||
| - `/ip4/../tcp/../p2p/QmRelay/p2p-circuit` | ||
| - Listen for connections relayed through QmRelay. | ||
| - Includes info for connecting to QmRelay. | ||
| - Also makes QmRelay available for relayed dialing, based on how listeners currently relate to dialers. | ||
| - `/p2p/QmRelay/p2p-circuit` | ||
| - Same as previous example, but use peer routing to find an address for QmRelay. | ||
|
There was a problem hiding this comment. Just to confirm, these addresses exist to have a way to make the node always dial to the relay peer (punch out), correct? |
||
|
|
||
| ?? I believe we don't need this one: | ||
| - `/p2p-circuit` | ||
| - Use relay discovery to find a suitable relay node. (Neither specified nor implemented.) | ||
| - Listen for relayed connections. | ||
| - Dial through the discovered relay node for any `/p2p-circuit` multiaddr. | ||
|
There was a problem hiding this comment. To me, the act of 'enabling relayed connections' is a config value and not a multiaddr. Do you agree @lgierth ? There was a problem hiding this comment. @diasdavid @lgierth @whyrusleeping I think it depends on how you look at relay. To me, relay is just another transport, hence making it behave like any other transport makes sense - here, I'm specifically talking about the dialer/listener (/stop) parts of the relay. The circuit-relay itself, can/should be controlled by config options. Example: Edit: Thinking about this a bit more, I think we should enable circuit transport by default, no need for an explicit |
||
|
|
||
| TODO: figure out forced addresses. -> what is forced addresses? | ||
|
There was a problem hiding this comment. @lgierth Can you elaborate on what "forced addresses" are? |
||
|
|
||
| ## Wire format | ||
|
|
||
| ### Overview | ||
|
|
||
| #### Setup | ||
|
|
||
| Peers involved: | ||
| - A, B, R | ||
| - A wants to connect to B, but needs to relay through R | ||
|
|
||
| #### Assumptions | ||
|
|
||
| A has connection to R, R has connection to B | ||
|
|
||
| #### Process | ||
|
|
||
| - A opens new stream `sAR` to R using protocol RELAY | ||
| - A writes Bs multiaddr `/ipfs/QmB` on `sAR` | ||
| - R receives stream `sAR` and reads `/ipfs/QmB` from it. | ||
| - R opens a new stream `sRB` to B using protocol RELAY | ||
| - R writes `/ipfs/QmB` on `sRB` | ||
| - B receives stream `sRB` and reads `/ipfs/QmB` from it. | ||
| - B sees that the multiaddr it read is its own and chooses to handle this stream as an endpoint instead of attempting to relay further | ||
| - TODO: step for R to send back status code to A | ||
|
There was a problem hiding this comment. Thoughts on status codes:
|
||
| - R now pipes `sAR` and `sRB` together | ||
| - TODO: step for B to send back status code to A | ||
| - B passes stream to `NewConnHandler` to be handled like any other new incoming connection | ||
|
|
||
| ### Under the microscope | ||
|
|
||
| Peer A wants to connect to peer B through peer R. | ||
|
|
||
| `maddrA` is peer A's multiaddr | ||
| `maddrR` is peer R's multiaddr | ||
| `maddrB` is peer B's multiaddr | ||
| `maxAddrLen` is arbitrarily 1024 | ||
|
|
||
| #### Function definitions | ||
| ##### Process for reading a multiaddr | ||
| We define `readLpMaddr` to be the following: | ||
|
|
||
| Read a Uvarint `V` from the stream. If the value is higher | ||
| than `maxAddrLen`, (write an error message back?) close the | ||
| stream and halt the relay attempt. | ||
|
|
||
| Then read `V` bytes from the stream and checks if its a valid multiaddr. | ||
| If it is not a valid multiaddr (write an error back?) close the stream and return. | ||
|
|
||
| #### Opening a relay | ||
| Peer A opens a new stream to R on the 'hop' protocol and writes: | ||
| ``` | ||
| <uvarint len(maddrA)><madddrA><uvarint len(maddrB)><madddrB> | ||
| ``` | ||
|
|
||
| It then waits for a response in the form of: | ||
| ``` | ||
| <uvarint error code><uvarint msglength><message> | ||
| ``` | ||
|
|
||
| Once it receives that, it checks if the status code is `OK`. If it is, it passes the new connection to its `NewConnHandler`. | ||
| Otherwise, it returns the error message to the caller. | ||
|
|
||
| ### 'hop' protocol handler | ||
|
There was a problem hiding this comment. By There was a problem hiding this comment. No, i mean |
||
|
|
||
| Peer R receives a new stream on the 'hop' protocol. | ||
| It then calls `readLpMaddr` twice. The first value is `<src>` and the second is `<dst>`. | ||
| Peer R checks to make sure that `<src>` matches the remote peer of the stream its reading | ||
| from. If it does not match, it (writes an error back?) closes the stream and halts the relay attempt. | ||
|
|
||
| Peer R checks if `<dst>` refers to itself, if it does, it (writes an error back?) closes the stream and halts the relay attempt. | ||
| Peer R then checks if it has an open connection to the peer specified by `<dst>`. | ||
| If it does not, and the relay is not an "active" relay it (writes an error back) closes the stream, and halts the relay attempt. | ||
| If R does not have a connection to `<dst>`, and it *is* an "active" relay, it attempts to connect to `<dst>`. | ||
| If this connection succeeds it continues, otherwise it (writes back an error) closes the stream, and halts the relay attempt. | ||
| R now opens a new stream to B with the 'stop' relay protocol ID, and writes: | ||
| ``` | ||
| <uvarint len(maddrA)><madddrA><uvarint len(maddrB)><madddrB> | ||
| ``` | ||
|
|
||
| After this, R simply pipes the stream from A and the stream it opened to B together. R's job is complete. | ||
|
|
||
| ### 'stop' protocol handler | ||
|
|
||
| Peer B receives a new stream on the 'stop' protocol. It then calls `readLpMaddr` twice on this stream. | ||
| The first value is `<src>` and the second value is `<dst>`. Any error from those calls should be written back accordingly. | ||
|
|
||
| B now verifies that `<dst>` matches its peer ID. It then also checks that `<src>` is valid. It uses src as the | ||
| 'remote addr' of the new 'incoming relay connection' it will create. | ||
|
|
||
| Peer B now writes back a message of the form: | ||
| ``` | ||
| <uvarint 'OK'><uvarint len(msg)><string "OK"> | ||
| ``` | ||
|
|
||
| And passes the relayed connection into its `NewConnHandler`. | ||
|
There was a problem hiding this comment. I'm confused by this There was a problem hiding this comment. Thats the end point in the relay flow, |
||
|
|
||
| ### Error table | ||
|
|
||
| This is a table of error codes and sample messages that may occur during a relay setup. Codes in the 200 range are returned by the relay node. Codes in the 300 range are returned by the destination node. | ||
|
|
||
|
|
||
| | Code | Message | Meaning | | ||
| | ----- |:-----------------:|:----------:| | ||
| | 100 | OK | Relay was setup correctly | | ||
| | 220 | "src address too long" | | | ||
| | 221 | "dst address too long" | | | ||
| | 250 | "failed to parse src addr: no such protocol ipfs" | The `<src>` multiaddr in the header was invalid | | ||
| | 251 | "failed to parse dst addr: no such protocol ipfs" | The `<dst>` multiaddr in the header was invalid | | ||
| | 260 | "passive relay has no connection to dst" | | | ||
| | 261 | "active relay could not connect to dst: connection refused" | relay could not form new connection to target peer | | ||
| | 262 | "could not open new stream to dst: BAD ERROR" | relay has connection to dst, but failed to open a new stream | | ||
| | 270 | "<dst> does not support relay" | | | ||
|
There was a problem hiding this comment. Do we really want to use 2XX+3XX for errors? Can we follow the pattern laid by HTTP: There was a problem hiding this comment. 👍HTTP codes are well known, which makes them more intuitive and expected. There was a problem hiding this comment. It doesnt map exactly though, i'm fine moving the 100 OK to 200 OK. I guess we could map all the 200 errors to 400 'client' errors, and map all the 300 errors to 500 'server' errors There was a problem hiding this comment. @whyrusleeping exactly what I was hoping for ❤️ There was a problem hiding this comment. After, re-reading the table... They don't really map to HTTP at all... 200s are relay codes and 300 are dst errors. So, I think 1xx, 2xx, 3xx make sense here. |
||
| | 320 | "src address too long" | | | ||
|
There was a problem hiding this comment. From IRC: |
||
| | 321 | "dst address too long" | | | ||
| | 350 | "failed to parse src addr: no such protocol ifps" | The `<src>` multiaddr in the header was invalid | | ||
| | 351 | "failed to parse dst addr: no such protocol ifps" | The `<dst>` multiaddr in the header was invalid | | ||
|
|
||
| ## Interfaces | ||
|
|
||
| As explained above, the relay is both a transport (`tpt.Transport`) and a mounted stream protocol (`p2pnet.StreamHandler`). In addition it provides a means of specifying relay nodes to listen/dial through. | ||
|
|
||
| TODO: the usage of p2pnet.StreamHandler is a little bit off, but it gets the point across. | ||
|
|
||
|
|
@@ -192,8 +271,9 @@ type CircuitRelay interface { | |
| fund NewCircuitRelay(h p2phost.Host) | ||
| ``` | ||
|
|
||
| ## Implementation details | ||
|
|
||
| ### Removing existing relay protocol in Go | ||
|
|
||
| Note that there is an existing swarm protocol colloqiually called relay. | ||
| It lives in the go-libp2p package and is named `/ipfs/relay/line/0.1.0`. | ||
|
|
@@ -208,5 +288,4 @@ It lives in the go-libp2p package and is named `/ipfs/relay/line/0.1.0`. | |
| - Capable of *accepting* connections, and *relaying* connections. | ||
| - Not capable of *connecting* via relaying. | ||
|
|
||
| Since the existing protocol is incomplete, insecure, and certainly not used, we can safely remove it. | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
maybe put slashes in here?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Also, after @lgierth clarifications this should be
<relay peer multiaddr>/p2p-circuit/<destination peer multiaddr>