routing table

Author: guillaumemichel

src/routing/kad-dht.md

@@ -6,10 +6,11 @@ description: >
   InterPlanetary File System (IPFS). It extends the libp2p Kademlia DHT
   specification, adapting and adding features to support IPFS-specific
   requirements.
-date: 2022-08-26
+date: FIXME
 maturity: reliable
 editors:
   - name: Guillaume Michel
+    url: https://guillaume.michel.id
     github: guillaumemichel
     affiliation:
       name: Shipyard
@@ -28,6 +29,10 @@ requirements.
 
 FIXME:
 
+Distributed Key-Value Store
+
+Goal of DHT is to find the closest peers to some key (in a specific geometry). Once this routing to the closest nodes is possible, nodes can interact with these nodes in various ways, including in asking them to store and serve data.
+
 ### Relation to [libp2p kad-dht](https://github.com/libp2p/specs/tree/master/kad-dht)
 
 The IPFS Kademlia DHT specification is a specialization of the libp2p Kademlia DHT.
@@ -39,112 +44,218 @@ in the [Amino DHT](#relation-to-the-amino-dht). If you're designing a new
 Kademlia-based DHT for use with IPFS, some details in this specification may
 appear overly specific or prescriptive.
 
-### Relation to the [Amino DHT](https://blog.ipfs.tech/2023-09-amino-refactoring/#why-amino)
+### Relation to the [Amino DHT](#amino-dht)
 
-The Amino DHT is the swarm of peers also referred to as the _Public IPFS DHT_.
-It implements the IPFS Kademlia DHT specification and uses the protocol
-identifier `/ipfs/kad/1.0.0`. The Amino DHT can be joined by using the [Amino
-DHT
-Bootstrappers](https://docs.ipfs.tech/concepts/public-utilities/#amino-dht-bootstrappers).
+Nodes participating in the [Amino DHT Swarm](#amino-dht) MUST implement the
+IPFS Kademlia DHT specification. The IPFS Kademlia DHT specification MAY be
+used in other DHT swarms as well.
 
-The Amino DHT is utilized by multiple IPFS implementations, including
-[`kubo`](https://github.com/ipfs/kubo) and
-[`helia`](https://github.com/ipfs/helia). Multiple DHT swarms can coexist and
-nodes MAY participate in multiple DHT swarms. DHT swarms can be either public
-or private.
+## DHT Swarms
 
-Note that there could be multiple distinct DHT swarms using the same protocol
-identifier as long as they don't have any common peers. This practice is
-discouraged as networks will immediately merge if they enter in contact. Each
-DHT swarm SHOULD have a dedicated protocol identifier.
+A DHT swarm is a group of interconnected nodes running the IPFS Kademlia DHT protocol, collectively identified by a unique protocol identifier. IPFS nodes MAY participate in multiple DHT swarms simultaneously. DHT swarms can be either public or private.
 
-## Protocol Parameters
+### Protocol Identifier
 
-FIXME: move parameters to appropriate sections
+All nodes participating in the same DHT swarm MUST use the same libp2p protocol
+identifier. The libp2p protocol identifier uniquely identifies a DHT swarm. It
+follows the format `/<swarm-prefix>/kad/<version>`, e.g `/ipfs/kad/1.0.0` for
+the Amino DHT protocol version `1.0.0`, or `/ipfs/lan/kad/1.0.0` for a local
+DHT swarm.
 
-The IPFS Kademlia DHT defines a number of Client and Server parameters that
-need to be set to ensure the DHT operates correctly as a system.
+Note that there could be multiple distinct DHT swarms using the same libp2p
+protocol identifier as long as they don't have any common peers. This practice
+is discouraged as networks will immediately merge if they enter in contact.
+Each DHT swarm SHOULD have a dedicated protocol identifier.
 
-### Protocol Identifier
+### Amino DHT
 
-All nodes participating in the same DHT swarm MUST use the same protocol
-identifier. The protocol identifier uniquely identifies a DHT swarm. It follows
-the format `/<swarm-prefix>/kad/<version>`, e.g `/ipfs/kad/1.0.0` for the Amino
-DHT protocol version `1.0.0`, or `/ipfs/lan/kad/1.0.0` for a local DHT swarm.
+The [Amino DHT](https://blog.ipfs.tech/2023-09-amino-refactoring/#why-amino) is
+the swarm of peers also referred to as the _Public IPFS DHT_. It implements the
+IPFS Kademlia DHT specification and uses the protocol identifier
+`/ipfs/kad/1.0.0`. The Amino DHT can be joined by using the [Amino DHT
+Bootstrappers](https://docs.ipfs.tech/concepts/public-utilities/#amino-dht-bootstrappers).
 
-### Routing Table Bucket Size
+The Amino DHT is utilized by multiple IPFS implementations, including
+[`kubo`](https://github.com/ipfs/kubo) and
+[`helia`](https://github.com/ipfs/helia).
+
+### Client and Server Mode
+
+A node operating in Server Mode (or DHT Server) is responsible for responding
+to lookup queries from other nodes and storing records. It stores a share of
+the global DHT state, and needs to ensure that this state is up-to-date.
+
+A node operating in Client Mode (or DHT Client) is simply a client able to make
+requests to DHT Servers. DHT Client don't answer to queries and don't store
+records.
+
+Having a large number of reliable DHT servers benefits the network by
+distributing the load of handling queries and storing records. Nodes SHOULD
+operate in Server Mode if they are publicly reachable and have sufficient
+resources. Conversely, nodes behind NATs or firewalls, or with intermittent
+availability, low bandwidth, or limited CPU, RAM, or storage resources, SHOULD
+operate in Client Mode. Operating a DHT server without the capacity to respond
+quickly to queries negatively impacts network performance.
+
+DHT Servers advertise the libp2p Kademlia protocol identifier via the [libp2p
+identify
+protocol](https://github.com/libp2p/specs/blob/master/identify/README.md). In
+addition DHT Servers accept incoming streams using the Kademlia protocol
+identifier. DHT Clients do not advertise support for the libp2p Kademlia
+protocol identifier. In addition they do not offer the Kademlia protocol
+identifier for incoming streams.
+
+## Kademlia Keyspace
+
+Kademlia [0] operates on a binary keyspace defined as $\{0, 1\}^m$. In
+particular, the IPFS Kademlia DHT uses a keyspace of length $m=256, containing
+all bitstrings of 256 bits. The distance between any pair of keys is defined as
+the bitwise XOR of the two keys, resulting in a new key representing the
+distance between the two keys. This keyspace is used for indexing both nodes
+and content.
+
+The Kademlia node identifier is derived from the node's [Peer
+ID](https://github.com/libp2p/specs/blob/master/peer-ids/peer-ids.md). The
+Kademlia node identifier is computed as the digest of the SHA256 hash function
+of the binary representation of the Peer ID. The Kademlia identifier is a
+256-bit number, which is used as the node's identifier in the Kademlia
+keyspace.
+
+Example:
+
+```sh
+PeerID b58 representation: 12D3KooWKudojFn6pff7Kah2Mkem3jtFfcntpG9X3QBNiggsYxK2
+PeerID hex representation: 0024080112209e3b433cbd31c2b8a6ebbdca998bd0f4c2141c9c9af5422e976051b1e63af14d
+Kademlia identifier (hex): e43d28f0996557c0d5571d75c62a57a59d7ac1d30a51ecedcdb9d5e4afa56100
+```
 
-DHT Servers MUST have a routing table bucket size of `20` (see [Routing
-Table](#routing-table)). This corresponds to the `k` value as defined in the
-original Kademlia paper [0]. The `k` value is also used as a replication factor
-and defines how many peers are returned to a lookup request.
+## Routing Table
 
-While DHT Client technically don't need to store a routing table, DHT Clients
-MUST nonetheless use a replication factor of `20`. If Client implementations
-decide to include a routing table, they SHOULD use a bucket size of `20`.
+The Kademlia Routing Table maintains contact information about other DHT
+Servers in the network. It has knowledge about all nearby nodes and
+progressively fewer nodes as the XOR distance increases. This structure allows
+efficient and rapid navigation of the network during lookups.
 
-### Provide Validity
+The Routing Table MUST contain information about at least `k` DHT Servers whose
+Kademlia Identifier shares a common prefix of length `l` with the local node,
+for every `l` in `[0, 255]`, provided such nodes exist. The set of `k` peers
+sharing a common prefix of length `l` with the local node is called the
+_bucket_ `l`.
 
-Provide Validity defines the time-to-live (TTL) of a Provider Record on a DHT
-Server. DHT Servers MUST implement a Provide Validity of `48h`.
+In practice, buckets with smaller indices will typically be full, as many nodes
+in the network share shorter prefix lengths with the local node. Conversely,
+buckets beyond a certain index usually remain empty, since it's statistically
+unlikely that any node will have an identifier sharing a very long common
+prefix with the local node. For more information see [bucket population
+measurements](https://github.com/probe-lab/network-measurements/blob/master/results/rfm19-dht-routing-table-health.md#peers-distribution-in-the-k-buckets).
 
-### Provider Record Republish Interval
+The IPFS Kademlia DHT uses a bucket size of `k = 20`. This corresponds to the
+`k` value as defined in the original Kademlia paper [0]. The `k` value is also
+used as a replication factor and defines how many peers are returned to a
+lookup request.
 
-Because of the churn in the network, Provider Records need to be republished
-more often than their validity period. DHT Clients SHOULD republish Provider
-Records every `22h`
-([rationale](https://github.com/probe-lab/network-measurements/blob/master/results/rfm17-provider-record-liveness.md#42-alternative-k-values-and-their-performance-comparison)).
+Note that DHT Clients are never included in a Routing Table.
 
-### Provider Addresses TTL
+Each DHT Server MUST store the public
+[multiaddresses](https://github.com/libp2p/specs/blob/master/addressing/README.md)
+for every node in its Routing Table. DHT Servers MUST discard nodes with only
+private and/or relay multiaddresses. Additionally, DHT Servers must verify that
+these nodes are reachable and replace any nodes that are no longer accessible.
 
-DHT Servers SHOULD persist the multiaddresses of providers for `24h` after the
-`PROVIDE` operation. This allows DHT Servers to serve the multiaddresses of the
-content provider alongside the provide record, avoiding an additional DHT walk
-for the Client
-([rationale](https://github.com/probe-lab/network-measurements/blob/master/results/rfm17.1-sharing-prs-with-multiaddresses.md)).
+### Replacement Policy
 
-### Concurrency
+Nodes MUST NOT be removed from the Routing Table as long as they remain online.
+Therefore, the bucket replacement policy is based on seniority, ensuring that
+the most stable peers are eventually retained in the Routing Table.
 
-Implementation specific. Recommendation is `10`
+#### IP Diversity Filter
 
-### Resiliency
+SHOULD implement
 
-Implementation specific. Recommendation is `3`
+FIXME:
 
-### Routing Table Refresh Interval
+### Routing Table Refresh
 
-SHOULD `10min`. Only peers that have been seen in the last 10 minutes should remain in the routing table. If peer hasn't been seen recently, try to ping it to see if it's still alive.
+There are several strategies a DHT Server can use to verify that nodes in its
+Routing Table remain reachable. Implementations may choose their own methods,
+provided they avoid serving unresponsive nodes. One recommended strategy is to
+periodically refresh the Routing Table.
 
-## DHT Swarm
+DHT Servers SHOULD perform a Routing Table Refresh every `10` minutes. During
+this process, the server sends a ping request to all nodes it hasn’t heard from
+recently (e.g in the last 5 minutes). Any peer that fails to respond MUST be
+removed from the Routing Table.
 
-## Routing Table
+After removing unresponsive peers, any buckets that are not full MUST be
+replenished with fresh, online peers. This can be accomplished by either adding
+recently connected peers or by executing a `FIND_NODE` request with a randomly
+generated Peer ID matching the bucket. `FIND_NODE` requests should only be run
+for buckets up to the last non-empty bucket.
 
-### Routing Table Refresh
+Finally, the refresh process concludes by executing a `FIND_NODE` request for
+the local node's Peer ID, ensuring the DHT Server maintains up-to-date
+information on its closest peers.
 
-### Public addresses
+## Lookup Process
 
-### IP Diversity Filter
+Iterative vs Recursive
 
-SHOULD implement.
+### Server behavior
 
-## Lookup Process
+In public DHT swarms, DHT Servers MUST never respond with private or loopback multiaddresses.
+
+Should Server tell Client about Server? And about Client?
+
+### Concurrency
+
+Implementation specific. Recommendation is `10`
 
 ### Lookup termination
 
 This is hard
 
+#### Resiliency
+
+Implementation specific. Recommendation is `3`
+
 ## Peer Routing
 
 DHT Clients that want to be routable must make sure they are in the peerstore of the closest DHT servers to their own PeerID.
 
 When performing a `FIND_NODE` lookup, the client will converge to the closest nodes in XOR distance to the requested PeerID. These nodes are expected to know the multiaddrs of the target peer. The
 
+### Routing to non-DHT Servers
+
 ### Signed Peer Records
 
 ## Content Routing
 
+### Content Kademlia Identifier
+
+sha256
+
 ### Provider Records
 
+#### Provide Validity
+
+Provide Validity defines the time-to-live (TTL) of a Provider Record on a DHT
+Server. DHT Servers MUST implement a Provide Validity of `48h`.
+
+#### Provider Record Republish Interval
+
+Because of the churn in the network, Provider Records need to be republished
+more often than their validity period. DHT Clients SHOULD republish Provider
+Records every `22h`
+([rationale](https://github.com/probe-lab/network-measurements/blob/master/results/rfm17-provider-record-liveness.md#42-alternative-k-values-and-their-performance-comparison)).
+
+#### Provider Addresses TTL
+
+DHT Servers SHOULD persist the multiaddresses of providers for `24h` after the
+`PROVIDE` operation. This allows DHT Servers to serve the multiaddresses of the
+content provider alongside the provide record, avoiding an additional DHT walk
+for the Client
+([rationale](https://github.com/probe-lab/network-measurements/blob/master/results/rfm17.1-sharing-prs-with-multiaddresses.md)).
+
 ### IPNS
 
 ### Validators
@@ -161,6 +272,10 @@ TBD
 
 ## Client Optimizations
 
+### LAN DHT Swarms
+
+Fine to store private multiaddresses in the routing table and serve them to other nodes in the same LAN DHT swarm.
+
 ### Checking peer behaviour before adding to routing table
 
 Make a `FIND_NODE` request and inspect response before adding node to RT. Followed https://blog.ipfs.tech/2023-ipfs-unresponsive-nodes/