Closed
Description
Where we are today (2023 Q1)
We are still living with the legacy of decisions made in 2021 and require creation of hybrid V1+V2 records, but we only care about V2 fields during the validation.
I've researched and documented the current state in #319, and obviously it is not the best.
Gist:
- Created records have both v1 and V2 signatures, and we have duplicated values in both top level protobuf AND
dataCBOR field - Record Validation only cares about V2 signature, but still requires fields related to V1 to be always present in a record and match values from CBOR in
datafield, for the record to be considered valid- This means many fields MUST be duplicated, even when both ends use a modern client that only cares about signatureV2 that guards CBOR field.
We've been producing and expecting these hybrid V1+V2 records since 2021.
Proposed move to V2-only IPNS
It is time to clean up IPNS ecosystem and stop requiring V1 fields when there is no signatureV1.
For modern IPNS, the outer IpnsEntry protobuf should effectively only have two required fields: data and its signatureV2, and such record, as long signature is valid, should be accepted as valid.
We can get to that future in two steps:
- Keep producing V1+V2 records as backward-compatible default, but relax validation
- Only check/require fields to be duplicated in top level protobuf IF
signatureV1is present. IF there is nosignatureV1and onlysignatureV2anddatafields are present and valid, the record should be considered valid. - This will allow people to build V2-only systems that produce records that are considered valid.
- Only check/require fields to be duplicated in top level protobuf IF
- (at some point in the future) stop producing V1+V2 and switch to publishing V2-only records that are protobuf with only two fields: Data CBOR+signatureV2
- we have to do this in two steps, because we've rushed the way V2 was introduced in 2021, and STILL require field copying, even when
signatureV1is missing 🙃 and we could only care about CBOR versions from the start :(
- we have to do this in two steps, because we've rushed the way V2 was introduced in 2021, and STILL require field copying, even when
### Migration plan for V2-only IPNS
- [x] Create IPIP that updates record Creation and Validation to be V2-only. (move [Backward Compatibility](https://github.com/ipfs/specs/blob/main/ipns/IPNS.md#backward-compatibility) section to the end, move current V1+V2 creation/validation to "Backward Compatibility" and then relax legacy record Validation to be compatible with new default) → https://github.com/ipfs/specs/pull/428
- [x] Implement relaxed validation in [boxo/ipns](https://github.com/ipfs/boxo) (see [this old PR](https://github.com/ipfs/go-ipns/pull/42)) → https://github.com/ipfs/boxo/pull/339
- [ ] Implement relaxed validation in [js-ipns](https://github.com/ipfs/js-ipns/)
- [ ] Kubo: `ipfs name publish`: add a flag `--v1compat` that is true by default, but allows publisher/tests to opt-out and produce V2-only records → https://github.com/ipfs/kubo/pull/9932
- [ ] Iroh: Reach out to Iroh for parity in Rust. Ideally, they should start clean and publish V2-only from the start (cc https://github.com/rs-ipfs/rust-ipfs/issues/6, https://github.com/n0-computer/beetle/issues/58, https://github.com/n0-computer/beetle/issues/82, https://github.com/n0-computer/iroh/pull/539)
- [ ] Make sure gateway-conformance tests are updated and test V2-only records (https://github.com/ipfs/kubo/pull/9667/files#diff-d4f4dee0e70225e2de23ea521dc782efc5438d721194aa0882f8a40a0e288656R83 - this needs version with and without V1 fields)
cc #205 @aschmahmann for sanity check