Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: blob protocol draft #115

Merged
merged 21 commits into from
Mar 22, 2024
Merged

feat: blob protocol draft #115

Show file tree
Hide file tree
Changes from 2 commits
Commits
Show all changes
21 commits
Select commit Hold shift + click to select a range
1ca5aa5
feat: revamp store & upload specs
Gozala Mar 19, 2024
6570185
draft: blob spec
Gozala Mar 19, 2024
9544c3e
fix: ignore some words
Gozala Mar 19, 2024
7f9c548
fix: grammar
Gozala Mar 19, 2024
0ab6911
fix: ignore some words
Gozala Mar 19, 2024
90e9607
chore: ignore more words
Gozala Mar 19, 2024
4f94fa9
chore: ignore more words
Gozala Mar 19, 2024
6ede80c
Apply suggestions from code review
Gozala Mar 19, 2024
192c183
fix: spelling errors
Gozala Mar 19, 2024
7b7bdc3
Merge remote-tracking branch 'origin/feat/store-api-revamp' into feat…
Gozala Mar 19, 2024
6784ecd
fix: broken link
Gozala Mar 19, 2024
e95aab2
fix: md lint issues
Gozala Mar 19, 2024
5751177
chore: remove double blank
Gozala Mar 19, 2024
727d905
fix: capture allocation fields
Gozala Mar 19, 2024
0140d3e
fix: lint
Gozala Mar 19, 2024
86705a2
Merge remote-tracking branch 'origin/feat/store-api-revamp' into feat…
Gozala Mar 19, 2024
b292df3
fix: broken link
Gozala Mar 19, 2024
6a60a0a
chore: second draft
Gozala Mar 22, 2024
76ef963
Apply suggestions from code review
Gozala Mar 22, 2024
bcccbc0
Update w3-blob.md
Gozala Mar 22, 2024
81a4ded
Merge remote-tracking branch 'origin/main' into feat/location-claims
Gozala Mar 22, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
199 changes: 199 additions & 0 deletions w3-blob.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,199 @@
# W3 Blob Protocol

![status:wip](https://img.shields.io/badge/status-wip-orange.svg?style=flat-square)

- [Irakli Gozalishvili](https://github.com/gozala)

## Authors

- [Irakli Gozalishvili](https://github.com/gozala)

## Abstract

W3 blob protocol allows authorized agents to store arbitrary content blobs with a storage provider.

## Language

The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119](https://datatracker.ietf.org/doc/html/rfc2119).

# Introduction

W3 blob protocol provides core building block for storing content and sharing access to it through UCAN authorization system. It is successor to the [store protocol] which no longer requires use of [Content Archive][CAR]s even if in practice clients can continue to use it for storing shards of large DAGs.

## Concepts

### Roles

There are several distinct roles that [principal]s may assume in this specification:

| Name | Description |
| ----------- | ---------------------------------------------------------------------------------------------------------------------------------------------- |
| Principal | The general class of entities that interact with a UCAN. Identified by a DID that can be used in the `iss` or `aud` field of a UCAN. |
| Agent | A [Principal] identified by [`did:key`] identifier, representing a user in an application. |
| Issuer | A [principal] delegating capabilities to another [principal]. It is the signer of the [UCAN]. Specified in the `iss` field of a UCAN. |
| Audience | Principal access is shared with. Specified in the `aud` field of a UCAN. |


### Space

A namespace, often referred as a "space", is an owned resource that can be shared. It corresponds to a unique asymmetric cryptographic keypair and is identified by a [`did:key`] URI.

### Blob

Blob is a fixed size byte array addressed by the [multihash]. Usually blobs are used to represent set of IPLD blocks at different byte ranges.

Check failure on line 43 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "multihash".
Suggested alternatives: "multi hash", "multi-hash", "multitask"
If you want to ignore this message, add multihash to the ignore file at ./.github/workflows/words-to-ignore.txt

# Capabilities

## Add Blob

Authorized agent MAY invoke `/space/content/add/blob` capability on the [space] subject to store specific byte array.

> Note that storing a blob does not imply advertising it on the network or making it publicly available.

### Add Blob Capability

#### Add Blob Capability Schema

```ipldsch
type struct AddBlob {
cmd "/space/content/add/blob"
sub SpaceDID
args Blob
Gozala marked this conversation as resolved.
Show resolved Hide resolved
}

type struct Blob {
content Multihash
size Int
}
```

#### Blob Content

Blob `content` field MUST be a [multihash] digest of the blob payload bytes, uniquely identifying blob.

Check failure on line 72 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "multihash".
Suggested alternatives: "multi hash", "multi-hash", "multitask"
If you want to ignore this message, add multihash to the ignore file at ./.github/workflows/words-to-ignore.txt

#### Blob Size

Blob `size` field MUST be set to the size of the blob in bytes.

### Add Blob Receipt

#### Add Blob Result

```ipldsch
type BlobAddResult union {
BlobAddSuccess "ok"
BlobAddFailure "error"
} representation keyed

type BlobAddSuccess union {
BlobAddAllocation "allocated"
&UCANLocationClaim "committed"
Gozala marked this conversation as resolved.
Show resolved Hide resolved
} representation keyed

type BlobAddAllocation struct {
content Multihash
size Int
Gozala marked this conversation as resolved.
Show resolved Hide resolved

url URL
headers HTTPHeaders
}

type UCANLocationClaim struct {
iss DID
aud DID
sub SpaceDID
cmd "assert/location"
args LocationClaim
nonce bytes
exp Int
}

type LocationClaim struct {
content Multihash
url URL
range ByteRange
}

type ByteRange struct {
offset Int
length Int
} representation tuple
```

#### Add Blob Success

##### Add Blob Allocated

Capability provider MUST issue receipt with `BlobAddAllocation` success result if underlying space has enough capacity for the requested blob, but has not such blob locally.

The `url` field MUST be set to the HTTP PUT endpoint where `content` matching specified [multihash] and `size` could be uploaded.

Check failure on line 129 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "multihash".
Suggested alternatives: "multi hash", "multi-hash", "multitask"
If you want to ignore this message, add multihash to the ignore file at ./.github/workflows/words-to-ignore.txt

The `headers` field MUST be set to the HTTP headers to be send along with `content` to the HTTP PUT endpoint.

###### Add Blob Committed

Capability provider MUST issue receipt with `LocationClaim` capability delegated to the [space] when requested blob is added to the space, which can happen if provider already has a matching blob locally.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am confused here. This should only happen when bytes make its way to the bucket right? (based also on the diagram you previously shared)

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this is poorly worded, I'll fix it but what I meant to say that if provider already has such blob they can issue "committed" case of the ok result as opposed to "allocated".

You are right that if provider does not already have a blob we are not going to issue LocationClaim until we know we have it.


By delegating `LocationClaim` to the space provider makes a commitment to serve corresponding blob at byte range in from given URL to all authorized agents.

> Not that since `aud` of the claim is the `space` DID, space can authorize other principals by re-delegating this claim.

## Get Blob

Authorized agent MAY invoke `/space/content/get/blob` capability on the [space] subject to query a state of the corresponding blob.

### Get Blob Capability

#### Get Blob Capability Schema

```ipldsch
type struct GetBlob {
cmd "/space/content/get/blob"
sub SpaceDID
args BlobQuery
}

type struct BlobQuery {
content Multihash
}
```

### Get Blob Receipt

#### Get Blob Result

```ipldsch
type BlobAddResult union {
BlobGetSuccess "ok"
BlobGetFailure "error"
} representation keyed

type BlobGetSuccess union {
BlobAddAllocation "allocated"
&UCANLocationClaim "committed"
} representation keyed

type BlobGetFailure struct {
message string
}
```

#### Get Blob Success

Capability provider MUST return the state of the requested blob. If memory for the blob was allocated but content has not been yet uploaded result MUST be of `BlobAddAllocation` case. If blob has been allocated and uploaded result MUST of `UCANLocationClaim` case.

> Please note that implementation MAY check local state on invocation and update from `BlobAddAllocation` to `UCANLocationClaim`, however this SHOULD be done in referentially transparent way. In other words no side effects should be exhibited, instead function should lazily compute and cache.

Check failure on line 185 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "referentially".
Suggested alternatives: "preferentially", "deferentially", "reverentially", "referential", "deferential", "inferential", "differential"
If you want to ignore this message, add referentially to the ignore file at ./.github/workflows/words-to-ignore.txt

## Publish Blob

Blob can be published by authorizing read interface (e.g. IPFS gateway) by re-delegating `LocationClaim` for a corresponding blob to it.
Gozala marked this conversation as resolved.
Show resolved Hide resolved

> Note that same applies to publishing blob on IPNI, new capability is not necessary, user simply needs to re-delegate `LocationClaim` to the DID representing IPNI publisher. IPNI publisher in turn may publish delegation to DID with publicly known private key allowing anyone to perform the reads.

Check failure on line 191 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "IPNI".
Suggested alternatives: "NIP"
If you want to ignore this message, add IPNI to the ignore file at ./.github/workflows/words-to-ignore.txt

Check failure on line 191 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "IPNI".
Suggested alternatives: "NIP"
If you want to ignore this message, add IPNI to the ignore file at ./.github/workflows/words-to-ignore.txt

Check failure on line 191 in w3-blob.md

View workflow job for this annotation

GitHub Actions / spellcheck

Misspelled word 

Misspelled word "IPNI".
Suggested alternatives: "NIP"
If you want to ignore this message, add IPNI to the ignore file at ./.github/workflows/words-to-ignore.txt


[store protocol]:./w3-store.md
[CAR]:https://ipld.io/specs/transport/car/
[multihash]:https://github.com/multiformats/multihash
[space]:#space


Loading
Loading