Skip to content

[RFC 004 DF] Disqualification Flow

Jump to bottom
bitkis edited this page Mar 26, 2019 · 1 revision

Qualification Sample

Qualification Sample is a special sample of supernodes which collectively make a decision whether or not a supernode (SN) is qualified to participate in an authorization sample and submits a disqualification transaction to the blockchain in case the supernode is not qualified.

There are two types of SN qualification samples:

  • Authorization Qualification Sample effectively is the currently active authorization sample. It's purpose is to filter out supernodes from the authorization sample that did not satisfy the authorization sample requirements.
  • Blockchain-based Qualification Sample is selected from the current Blockchain-based List. The sample makes a decision about qualification of all (or a random subset of) supernodes from Full Blockchain-based List. The decision is driven by sending special "ping" requests to the supernodes in question. Supernodes that haven't responded to these requests are disqualified from participation in authorization samples over a number of blocks.

Disqualification Transaction

Disqualification Transaction is a special type of transaction which reports a supernode that isn't meeting its criteria for participation in authorizations. The disqualification transaction has the following attributes:

  1. The transaction cannot contain any key images.
  2. The transaction has zero mining fee.
  3. Field transaction_extra of the transaction must contain:
    1. Data for validating qualification sample. This data can vary depending on the qualification sample which generates disqualification transaction.
    2. List of public identification keys of supernodes from the qualification sample voted for disqualification.
    3. List of public identification keys of supernodes to be disqualified. The list must contain at least one value.
    4. List of signatures from all supernodes, voting for disqualification. Each signature must be created based on the disqualification transaction hash, qualification sample validation data (i), and the list of public identification keys of qualification supernodes (ii). Signature signs by supernode private identification key.

Disqualification Transaction Validation

Disqualification Transaction Validation by the Member of Authorization Qualification Sample

To validate the disqualification transaction, each supernode which participates in the Authorization Qualification Sample should:

  • check if the disqualification transaction contains key images. If the disqualification transaction contains key images, it should be rejected.
  • check if the disqualification transaction is the zero-fee transaction. If the disqualification transaction isn't a zero-fee transaction, it should be rejected.
  • check correctness of the data for validation qualification sample. If data is incorrect, the disqualification transaction should be rejected.
  • check correctness of qualification supernodes added to the transaction. For this, supernode should
    • select the qualification sample using qualification sample data
    • validate public identification keys of qualification supernodes, added to the disqualification transaction, with the selected qualification sample.
  • check correctness of the list of supernodes to be disqualified.

Disqualification Transaction Validation by Blockchain-based List Member

To validate a disqualification transaction, graftnode should:

  • check if the disqualification transaction contains key images. If the disqualification transaction contains key images, it should be rejected.
  • check if the disqualification transaction is the zero-fee transaction. If the disqualification transaction isn't a zero-fee transaction, it should be rejected.
  • check correctness of the data for validation qualification sample (the data depends on the type of qualification sample). If data is incorrect, the disqualification transaction should be rejected.
  • check correctness of qualification supernodes if they were added to the transaction. For this, graftnode should
    • select the qualification sample using qualification sample data,
    • validate public identification keys of qualification supernodes, which added to the disqualification transaction, with the selected qualification sample.
  • check correctness of the list of supernodes to be disqualified. Depending on the type of the disqualification transaction, this validation can differ:
    • for the disqualification transaction from Authorization Disqualification Sample, disqualified supernodes should be part of the authorization sample. To validate them, graftnode should
      • select the qualification sample using qualification sample data,
      • validate if disqualified-to-be supernodes are a part of the selected qualification sample.
    • for the disqualification transaction from Blockchain-based Disqualification Sample, disqualified supernodes should be part of the Full Blockchain-based List or next Blockchain-based List. To validate them, graftnode should
      • select the Full Blockchain-based List or next Blockchain-based List using qualification sample data,
      • validate if disqualified-to-be supernodes are a part of the selected list.
  • validate signatures of qualification supernodes. If some of these signatures are invalid, the disqualification transaction should be rejected.

Authorization Sample Qualification Flow

Authorization Sample Qualification Flow is used by Authorization Sample to provide authorization supernode qualification after RTA Transaction validation and consists of the following steps:

  1. Authorization Qualification Sample Initialization
    1. After a supernode from the authorization sample successfully submits RTA transaction to the blockchain, it checks signatures in the RTA Transaction and adds all public identification keys of unresponsive supernodes to Disqualification List, and all public identification keys of active supernodes to Authorization Qualification Sample.
    2. In case a supernode in the authorization sample reaches validation timeout state, the supernode creates a "status fail" message, adds signatures in the RTA Transaction, as well as collects all public identification keys of authorization sample supernodes that missed validation to Disqualification List.
  2. Disqualification Transaction Creation To create a disqualification transaction, supernode should add the following data to the transaction:
    1. Qualification sample validation data: payment block number, payment block hash and RTA payment ID.
    2. The list of public identification keys of active supernodes from Authorization Qualification Sample. In this case, active supernode means an authorization supernode sent its signature for RTA Transaction validation.
    3. The list of public identification keys of supernodes from Disqualification List.
  3. Disqualification Transaction Signing
    1. After disqualification transaction creation, supernode signs it as a regular transaction, using empty randomly created wallet.
    2. Then supernode encrypts transaction for supernodes from Authorization Qualification Sample using Multiple Recipients Message Encryption and multicasts it over the network.
    3. When each supernode in the Authorization Qualification Sample receives disqualification transaction, it
      1. validates the transaction,
      2. signs if everything is correct,
      3. encrypts it for supernodes from Authorization Qualification Sample using Multiple Recipients Message Encryption, and
      4. multicasts to the network.
    4. Supernode issued disqualification transaction collects the signatures; and, upon receiving signatures from all supernodes from Authorization Qualification Sample, sends disqualification transaction to the blockchain.

Blockchain-based List Qualification Flow

Blockchain-based List Qualification Flow is used by current Blockchain-based List to provide supernode disqualification for supernodes from Full Blockchain-based List. Blockchain-based List Qualification Flow consists of the following steps:

  1. Blockchain-based List Qualification Sample Initialization
    1. Since Blockchain-based Qualification Sample is always based on the current Blockchain-based List, the qualification process starts upon a new active Blockchain-based List is selected.
    2. Blockchain-based Qualification Sample is selected, using a random and fixed subset of supernodes from the current Blockchain-based List, based on the block hash of the next (or few next) Blockchain-based List(s) to be validated.
    3. The Qualification Candidates List -- the list of the supernodes to be checked for disqualification -- is selected randomly, using a fixed subset of supernodes from the next (or few next)Blockchain-based List(s) based on block hash(es) corresponding to the Blockchain-based List(s).
  2. Qualification Poll
    1. To vote for disqualification of a supernode, qualification supernode should poll all supernodes, validated by the current qualification sample. For this, qualification supernode:
      1. creates "ping" request including qualification supernode public identification key and data for validation qualification sample,
      2. signs message using qualification supernode private identification key,
      3. encrypts the message for all supernodes, validated by the current qualification sample, using Multiple Recipients Message Encryption, and
      4. multicasts "ping" request over the network.
    2. When supernode receives "ping" request, it:
      1. decrypts "ping" request,
      2. selects a qualification sample,
      3. validates if qualification supernode which sent "ping" request may participate in the qualification sample.
    3. If "ping" request validation passes, the supernode:
      1. creates "ping" response with its public identification key, current blockchain height and the hash of the last block in the blockchain,
      2. signs it using private identification key,
      3. encrypts it for the qualification supernode, which sent "ping" request, using Multiple Recipients Message Encryption, and
      4. unicasts it to this qualification supernode.
  3. Disqualification Voting
    1. Qualification supernode waits for "ping" responses from supernodes to-be-validated during some period of time, after that the qualification supernode:
      1. collects all responses from supernodes,
      2. validates responses by checking the public identification key, current blockchain height and hash of the last block in the blockchain that come in the response, as well as a signature that signed this response,
      3. gets the list of supernodes missed sending "ping" response or failed response validation,
      4. creates disqualification request; the request contains data for validation qualification sample, creator's public identification key, and the list of public identification keys of supernodes to be disqualified (Disqualification List),
      5. signs it using qualification supernode private identification key,
      6. encrypts a request for all supernodes in the qualification sample, using Multiple Recipients Message Encryption, and
      7. multicasts it over the network.
    2. When qualification supernode receives disqualification request, it:
      1. decrypts disqualification requests,
      2. validates data for selection qualification sample,
      3. validates that the requester is eligible to participate in a qualification sample,
      4. validates the signature of the requester,
      5. validates that supernodes from the list of disqualified supernodes in the disqualification request are in both Disqualification CandidatesList and Disqualification List of this supernode,
      6. if all validations passed, supernode accepts disqualification request and stores it.
  4. Disqualification Transaction Processing After a supernode in the qualification sample receives disqualification requests from all other supernodes in the qualification sample, it: 1. collects all supernodes, voted for disqualification by all supernodes in the qualification sample, into Disqualification List, 2. creates disqualification transaction: block number and block hash for Blockchain-based List selection, (if needed) block number and block hash for validated Blockchain-based List, and the list of public identification keys of supernodes from Disqualification List, 3. signs transaction and 4. sends it to the blockchain.

Supernode List Selection Extension

SDP - Supernode Disqualification Period - The number of blocks during which disqualification rules affecting at the supernode if it was added to the disqualification transaction.

ADS - Average Disqualification Score - The value computed as an average of all disqualification scores of some supernode in the Blockchain-based Qualification List.

AAoS - Accumulated Age of stake - The value determines the reliability of the stake, based on the stake amount, number of blocks, passed after stake activation (as usual AoS) and average disqualification score (ADS), AoS = StakeAmount * StakeTxBlockNumber * (1 - ADS).

Selecting Blockchain-based Disqualification List

To form a blockchain-based disqualification list at a block, graftnode performs the following operations:

  1. Gets three block numbers: current block height (called BlockHeight), a block number for the block we build Blockchain-based Disqualification List for (called BDListBlockNumber), and a block number which is less than BDListBlockNumber on Supernode Disqualification Period (SDP) (called SDPBlockNumber).
  2. Scans all blocks in the blockchain from SDPBlockNumber to BDListBlockNumber, and
    1. collects all disqualification transactions,
    2. checks all disqualified supernodes in all disqualification transactions,
    3. checks type of disqualification transaction,
    4. computes the disqualification score for each disqualified supernode as
    (DTBlockNumber - SDPBlockNumber) / (2 * (BDListBlockNumber - SDPBlockNumber)),
    where DTBlockNumber is block number of the block that contains corresponding disqualification transaction, and 5. adds each disqualified supernode to the blockchain-based disqualification list with the following data: 1. supernode public identification key, 2. supernode disqualification score, 3. type of disqualification transaction, 4. block number of the block which includes corresponding disqualification transaction. 6. If disqualified supernode already presents in the blockchain-based disqualification list, simply adds new data to the related item in the list without duplicating the supernode entry itself.
  3. Scans all blocks in the blockchain from BDListBlockNumber to BlockHeight, and
    1. collects all disqualification transactions,
    2. checks all disqualified supernodes in all disqualification transactions,
    3. checks type of disqualification transaction,
    4. computes the disqualification score for each disqualified supernode as
    0.5 + (DTBlockNumber - BDListBlockNumber) / (2 * (BlockHeight - BDListBlockNumber)),
    where DTBlockNumber is block number of the block which includes corresponding disqualification transaction, and 5. adds each disqualified supernode to the blockchain-based disqualification list with the following data: 1. supernode public identification key, 2. supernode disqualification score, 3. type of disqualification transaction, 4. block number of the block which includes corresponding disqualification transaction. 6. If disqualified supernode already presents in the blockchain-based disqualification list, simply adds new data to the related item in the list without duplicating the supernode entry itself.

Selecting current Blockchain-based List

To form the current blockchain-based list from the Full Blockchain-based List for some block, graftnode performs the following operations:

  1. Gets block hash (hexadecimal encoded) for the block we build Blockchain-based List for, and splits it into bytes.
  2. Gets Blockchain-based List or the previous block hash:
    1. Sorts previous Blockchain-based List by accumulated age of stake (AAoS).
    2. Gets first PBLSize bytes from the split block hash and selects PBLSize supernodes from it, using these one-byte numbers as indexes. If selected supernode is already taken, increase the index by one and check next supernode in the list until it found unselected supernode. Then graftnode moves to the next one-byte number and searches for next supernode.
  3. Gets Full Blockchain-based List:
    1. Sorts Full Blockchain-based List by accumulated age of stake (AAoS).
    2. Gets next RBLSize bytes from the split block hash and selects RBLSize supernodes from it, using these one-byte numbers as indexes. If selected supernode is already taken, increase the index by one and check next supernode in the list until it found unselected supernode. Then graftnode moves to the next one-byte number and searches for next supernode.
  4. Joins both sublists into one list.
Clone this wiki locally