Add BIP152 (Compact Blocks) structures

[stevenroose]

Adds the basic structures for BIP152 and a method to create a compact block from a full block.

Depends on rust-bitcoin/bitcoin_hashes#46.

[stevenroose]

So I understand we don't want a siphasher dependency, but rather a bitcoin_hashes::siphash impl?

[tamasblummer]

yes, siphash is also used in BIP158. It would be better included into bitcoin_hashes

[stevenroose]

yes, siphash is also used in BIP158. It would be better included into bitcoin_hashes

@tamasblummer
I added a siphash24 module in bitcoin_hashes: rust-bitcoin/bitcoin_hashes#46

Could you check if that suits your need for BIP 158 usage? I'm actually very interested in BIP-158 implementation in rust-bitcoin. Are you planning to do them?

[tamasblummer]

@stevenroose will review tomorrow. I already implemented and using BIP158 in murmel: https://github.com/rust-bitcoin/murmel/blob/master/src/blockfilter.rs

[stevenroose]

I already implemented and using BIP158 in murmel: https://github.com/rust-bitcoin/murmel/blob/master/src/blockfilter.rs

@tamasblummer would you mind upstreaming that to rust-bitcoin? Into src/util/bip185.rs f.e.?

[stevenroose]

@tamasblummer I made 2 changes:

• HeaderAndShortIds::from_block now takes a version number instead of the use_wtxid bool. It returns an error if the version is not 1 or 2. This is probably better for backwards compatibility when we add support for other versions.
• HeaderAndShortIds::from_block now takes an additional &[bool] argument to indicate which transactions to prefill. It must be of length one less than the nb of txs in the block because the coinbase is always prefilled. This is quite rudimentary support for arbitrary fillings. I thought about a closure argument Fn(&sha256d::Hash) -> bool. One could pass a HashSet::contains or HashMap::contains_key into that argument, f.e., as well as a custom method. Would that be a better solution? Thought? @apoelstra @dongcarl

[stevenroose]

This is rebased and ready to be reviewed. Uses the new bitcoin_hashes siphash impl.

[stevenroose]

rebased

[stevenroose]

@dr-orlovsky Addressed all your derives, had to derive PartialOrd, Ord, Hash on BlockHeader (which tbh I think makes more sense than on most of the compact block types), I did that in a separate commit.

[vincenzopalazzo]

ack 1d519df

[dr-orlovsky]

Concept ACK. I am not knowledgeable in compact filters to do a code vs standard review though :(

[apoelstra]

I know this PR is a million years old, but can you provide a citation/explanation for this witness-stripping behavior? I don't see it in Core or in BIP 152 or 158.

[stevenroose]

It's been ages indeed, but it says that txs inside v1 should be like responses to MSG_TX and v2 should be like responses to MSG_WITNESS_TX:
https://github.com/bitcoin/bips/blob/master/bip-0152.mediawiki#specification-for-version-2

[apoelstra]

Done review of 1d519df

ACK except for the thing about witness stripping.

I think this PR beats Carl's PSBT PR for "longest open PR" :)

[stevenroose]

Rebased once again! :)

[tcharding]

Perhaps we should use impl_bytes_newtype to get this and the impls below?

[tcharding]

Should we have an AsRef implementation for ShortId as well?

[0xB10C]

Nice, was looking for the BIP152 network messages in rust-bitcoin and was about to implement them myself. Will test against Bitcoin Core's network messages and review!

[0xB10C]

I guess using u64 is fine here though we'll probably not even going to get close to u32::MAX transactions in a block too.

[tcharding]

Hey mate, this PR is currently marked as part of the 0.29 milestone, would you like to get this functionality in before the 0.29 release?

[0xB10C]

I'm interested in seeing this in 0.29. I've rebased this branch on current master: https://github.com/0xB10C/rust-bitcoin/tree/compact-blocks - maybe this helps speed things up. I've been using 68760f5 to deserialize Bitcoin Core's compact block P2P messages for more than a month now without problems.

[tcharding]

Legend @0xB10C, thanks. Perhaps if @stevenroose does not pick this up in a week or so you could create a PR and just mention that its Steven's work and it supersedes this one [0]. I can do it if you either don't have time or don't feel comfortable doing so.

I'm totally speaking for @stevenroose here, Steven you can go right ahead and slap me if I'm out of place :)

[0]: When doing so I typically add a co-authored-by tag to any commit if I make any non-trivial changes.

[0xB10C]

for reference: While adding a deserialize(serialize(BlockTransactionsRequest{..})) test I noticed a subtle off-by-one error here. The increment in L321 (differential.0 + 1) is too early. This should only be incremented after we indexes.push(last_index);. Otherwise a differentially encoded [0, 1, 0] would become [1, 3, 4] when it should be [0, 2, 3].

Fixed this in #1088.

[tcharding]

Superseded by #1088

I've messaged @stevenroose via text also to make sure he is aware of this.