ipfs · willscott · Oct 15, 2022 · Oct 15, 2022 · guillaumemichel · Oct 25, 2022
diff --git a/reframe/REFRAME_KNOWN_METHODS.md b/reframe/REFRAME_KNOWN_METHODS.md
@@ -22,6 +22,7 @@ This document is defining known methods (request-response message types) and sem
     - [Identify DAG-JSON Examples](#identify-dag-json-examples)
   - [FindProviders](#findproviders)
     - [FindProviders DAG-JSON Examples](#findproviders-dag-json-examples)
+  - [FindProvidersBlinded](#findproviders-blinded)
   - [GetIPNS](#getipns)
     - [GetIPNS DAG-JSON Examples](#getipns-dag-json-examples)
   - [PutIPNS](#putipns)
@@ -39,6 +40,7 @@ The known Request types are the following and are described below:
 type Request union {
     | "IdentifyRequest" IdentifyRequest
     | "FindProvidersRequest" FindProvidersRequest
+    | "FindHashedSHA256Request" FindHashedSHA256Request
     | "GetIPNSRequest" GetIPNSRequest
     | "PutIPNSRequest" PutIPNSRequest
     | "ProvideRequest" ProvideRequest
@@ -51,6 +53,7 @@ The known Response types are the following and are described below:
 type Response union {
     | "IdentifyResponse" IdentifyResponse
     | "FindProvidersResponse" FindProvidersResponse
+    | "FindHashedSHA256Response" FindHashedSHA256Response
     | "GetIPNSResponse" GetIPNSResponse
     | "PutIPNSResponse" PutIPNSResponse
     | "ProvideResponse" ProvideResponse
@@ -69,6 +72,7 @@ The following methods (request-response pairs) are _cachable_:
 type CachableRequest union {
     | "IdentifyRequest" IdentifyRequest
     | "FindProvidersRequest" FindProvidersRequest
+    | "FindHashedSHA256Request" FindHashedSHA256Request
     | "GetIPNSRequest" GetIPNSRequest
 }
 ```
@@ -145,6 +149,7 @@ Note: While the Key is a CID it is highly recommended that server implementation
     # We expect different types of nodes, e.g. peer, miner, public IP, etc.
     type Node union {
      | Peer "peer"
+     | AuthenticatedPeer "apeer"  # This type will be returned in blinded queries
      | Any default
     } representation keyed
 
@@ -203,6 +208,39 @@ Response:
 }}
 ```
 
+### FindProviders Blinded
+
+A message for finding nodes with interest in a given key using double hashing to blind the key being requested.
+
+```ipldsch
+    type FindHashedSHA256Request struct {
+        Query Bytes
+    }
+```
+
+The query is a derived hash of the multihash being requested.
+It is constructed by taking the raw bytes of the multihash, prepending the ascii bytes "CR_DOUBLEHASH", and taking the SHA256 hash of that data.
-It is constructed by taking the raw bytes of the multihash, prepending the ascii bytes "CR_DOUBLEHASH", and taking the SHA256 hash of that data.
+It is constructed by taking the raw bytes of the multihash, prepending the ascii bytes "CR_DOUBLEHASH", and taking a variable length prefix of the SHA256 hash of that data.
+
-It is constructed by taking the raw bytes of the multihash, prepending the ascii bytes "CR_DOUBLEHASH", and taking the SHA256 hash of that data.
+It is constructed by taking the raw bytes of the multihash, prepending the ascii bytes "CR_DOUBLEHASH", and taking a variable length prefix of the SHA256 hash of that data.
+
+The resulting digest is then packed itself into a multihash, using the multihash code identifier multihash.DBL_SHA2_256.
+
+The full semantics of double hashing in the context of content routing are described at https://www.notion.so/protocollabs/IPFS-Double-Hashing-Repurpose-8fdaae8748414ae592a5d24d59c0d8ed
+
+```ipldsch
+    type FindHashedSHA256Response struct {
+        Providers [Provider]
+    }
+
+    type AuthenticatedPeer struct {
+        // ID is included in this superset of 'Peer'
+        ID Bytes // Enc_{MH}(PeerID || 0[32bytes]) 
+        // Multiaddresses may be set as a hint if the server knows the publisher.
+        Multiaddresses optional [Bytes]
+
+        Signature Bytes // signature of ID field by the publisher's PeerID.
+    }
+}
+```
+
+
 ### GetIPNS
 
 A message for finding the latest IPNS records for a given identifier.