lite-rpc/quic-forward-proxy/README.md


Purpose
-------
This component (__quic-forward-proxy__) can be optionally used along with one or multiple Lite RPC micro-service instances.
The Lite RPC services need to be reconfigured to send transactions via __quic-forward-proxy__ instead of sending them directly to the solana tpu nodes.

Benefits:
* the __quic-forward-proxy__ can batch transactions from multiple source and send them efficiently to the solana validator
* the __quic-forward-proxy__ can be configured with a validator identity keypair
  * connections to TPU will be privileged (__staked connections__)
  * keypair can be kept in one place while the Lite RPC instances can benefit from the staked connection


Configuration
---------------------
Prepare: choose a proxy port (e.g. 11111) and bind address of appropriate (minimal) network interface (e.g. 127.0.0.1)
1. run quic proxy
    ```
    # unstaked
    solana-lite-rpc-quic-forward-proxy --proxy-listen-addr 127.0.0.1:11111
    # staked
    solana-lite-rpc-quic-forward-proxy --proxy-listen-addr 127.0.0.1:11111 --identity-keypair /pathto-test-ledger/validator-keypair.json
    ```
2. run lite-rpc
    ```bash
    lite-rpc --experimental-quic-proxy-addr 127.0.0.1:11111
    ```

Architecture Overview
---------------------
```
 +------------+          +------------+          +------------+          +------------+
 |            |          |            |          |            |          |            |
 |   client   | ---1---> |  lite-rpc  | ---2---> |   proxy    | ---3---> |  validator |
 |            |          |            |          |            |          |            |
 +------------+          +------------+          +------------+          +------------+
 
 1. rpc request
 2. tpu forward proxy request (QUIC): transactions, tpu address and tpu identity
 3. tpu call (QUIC), transactions:
 
 * client: RPC client to lite-rpc
 * proxy: QUIC forward proxy service (one instance)
 * lite-rpc: N lite-rpc services 
 * validator: solana validator (TPU) according to the leader schedule
 
```

Local Development / Testing
---------------------------
### Rust Integration Test

Use integrated testing in __quic_proxy_tpu_integrationtest.rs__.

### Local Setup With Solana Test Validator
1. run test-validator (tested with 1.16.1)
    ```bash
    RUST_LOG="error,solana_streamer::nonblocking::quic=debug" solana-test-validator --log
    ```
2. run quic proxy
    ```bash
    # unstaked
    RUST_LOG=debug cargo run --bin solana-lite-rpc-quic-forward-proxy -- --proxy-listen-addr 0.0.0.0:11111
    # staked
    RUST_LOG=debug cargo run --bin solana-lite-rpc-quic-forward-proxy -- --proxy-listen-addr 0.0.0.0:11111 --identity-keypair /pathto-test-ledger/validator-keypair.json
    ```
3. run lite-rpc
    ```bash
    RUST_LOG=debug cargo run --bin lite-rpc -- --experimental-quic-proxy-addr 127.0.0.1:11111
    ```
4. run rust bench tool in _lite-rpc_
    ```bash
    cd bench; cargo run -- --tx-count=10
    ```

Implementation Details
----------------------
* the __proxy__ is designed to be light-weight and stateless (no persistence)
* note: only one instance of the __proxy__ should talk to the TPU nodes at a time to be able to correctly comply with the validator quic policy
* outbound connections (to TPU):
  * __proxy__ tries to maintain active quic connections to recent TPU nodes
  * __proxy__ will maintain multiple quic connection per TPU according to the solána validator quic policy
* __proxy__ will use lightweight quic streams to send the transactions
  * inbound traffic (from Lite RPC)
  * __proxy__ supports only quic ATM but that could be extended to support other protocols
  * __proxy__ will perform client authentication by TLS (see [issue](https://github.com/blockworks-foundation/lite-rpc/issues/167))
* TPU selection / Leader Schedule
  * the __proxy__ will not perform any TPU selection; the TPU target nodes __MUST__ be selected by the __client__ (Lite RPC) and not by the __proxy__
  * pitfall: the TPU target node list might become stale if the transactions are not sent out fast enough

### Example Output from _Solana Validator_:
(note: the peer type is __Staked__)
```
[2023-06-26T15:16:18.430602000Z INFO  solana_streamer::nonblocking::quic] Got a connection 127.0.0.1:8058
[2023-06-26T15:16:18.430633000Z DEBUG solana_streamer::nonblocking::quic] Peer public key is EPLzGRhibYmZ7qysF9BiPmSTRaL8GiLhrQdFTfL8h2fy
[2023-06-26T15:16:18.430839000Z DEBUG solana_streamer::nonblocking::quic] Peer type: Staked, stake 999999997717120, total stake 999999997717120, max streams 2048 receive_window Ok(12320) from peer 127.0.0.1:8058
[2023-06-26T15:16:18.430850000Z DEBUG solana_streamer::nonblocking::quic] quic new connection 127.0.0.1:8058 streams: 0 connections: 1
[2023-06-26T15:16:18.430854000Z DEBUG solana_streamer::nonblocking::quic] stream error: ApplicationClosed(ApplicationClose { error_code: 0, reason: b"done" })
```

solana validator quic policy
----------------------------
TPU has complex logic to assign connection capacity to TPU clients; this considers stake vs unstaked connections, per peer/per node limits, QUIC stream limits (see solana quic.rs)

Project Info
----------------
* [Lite RPC](https://github.com/blockworks-foundation/lite-rpc/)
add readme 2023-06-27 03:08:26 -07:00
proxy: improve docs 2023-08-21 06:23:09 -07:00			`Purpose`
			`-------`
			`This component (__quic-forward-proxy__) can be optionally used along with one or multiple Lite RPC micro-service instances.`
			`The Lite RPC services need to be reconfigured to send transactions via __quic-forward-proxy__ instead of sending them directly to the solana tpu nodes.`
add readme 2023-06-27 03:08:26 -07:00
proxy: improve docs 2023-08-21 06:23:09 -07:00			`Benefits:`
			`* the __quic-forward-proxy__ can batch transactions from multiple source and send them efficiently to the solana validator`
			`* the __quic-forward-proxy__ can be configured with a validator identity keypair`
			`* connections to TPU will be privileged (__staked connections__)`
			`* keypair can be kept in one place while the Lite RPC instances can benefit from the staked connection`
add readme 2023-06-27 03:08:26 -07:00

proxy: improve docs 2023-08-21 06:23:09 -07:00			`Configuration`
			`---------------------`
			`Prepare: choose a proxy port (e.g. 11111) and bind address of appropriate (minimal) network interface (e.g. 127.0.0.1)`
			`1. run quic proxy`
			```
			`# unstaked`
			`solana-lite-rpc-quic-forward-proxy --proxy-listen-addr 127.0.0.1:11111`
			`# staked`
			`solana-lite-rpc-quic-forward-proxy --proxy-listen-addr 127.0.0.1:11111 --identity-keypair /pathto-test-ledger/validator-keypair.json`
			```
			`2. run lite-rpc`
			```bash
			`lite-rpc --experimental-quic-proxy-addr 127.0.0.1:11111`
			```

			`Architecture Overview`
			`---------------------`
add readme 2023-06-27 03:08:26 -07:00			```
			`+------------+ +------------+ +------------+ +------------+`
			`\| \| \| \| \| \| \| \|`
proxy: improve docs 2023-08-21 06:23:09 -07:00			`\| client \| ---1---> \| lite-rpc \| ---2---> \| proxy \| ---3---> \| validator \|`
add readme 2023-06-27 03:08:26 -07:00			`\| \| \| \| \| \| \| \|`
			`+------------+ +------------+ +------------+ +------------+`

			`1. rpc request`
			`2. tpu forward proxy request (QUIC): transactions, tpu address and tpu identity`
			`3. tpu call (QUIC), transactions:`

proxy: improve docs 2023-08-21 06:23:09 -07:00			`* client: RPC client to lite-rpc`
			`* proxy: QUIC forward proxy service (one instance)`
			`* lite-rpc: N lite-rpc services`
			`* validator: solana validator (TPU) according to the leader schedule`

add readme 2023-06-27 03:08:26 -07:00			```

			`Local Development / Testing`
			`---------------------------`
proxy: improve docs 2023-08-21 06:23:09 -07:00			`### Rust Integration Test`
add readme 2023-06-27 03:08:26 -07:00
proxy: improve docs 2023-08-21 06:23:09 -07:00			`Use integrated testing in __quic_proxy_tpu_integrationtest.rs__.`

			`### Local Setup With Solana Test Validator`
add readme 2023-06-27 03:08:26 -07:00			`1. run test-validator (tested with 1.16.1)`
proxy: improve docs 2023-08-21 06:23:09 -07:00			```bash
			`RUST_LOG="error,solana_streamer::nonblocking::quic=debug" solana-test-validator --log`
			```
			`2. run quic proxy`
			```bash
			`# unstaked`
			`RUST_LOG=debug cargo run --bin solana-lite-rpc-quic-forward-proxy -- --proxy-listen-addr 0.0.0.0:11111`
			`# staked`
			`RUST_LOG=debug cargo run --bin solana-lite-rpc-quic-forward-proxy -- --proxy-listen-addr 0.0.0.0:11111 --identity-keypair /pathto-test-ledger/validator-keypair.json`
			```
			`3. run lite-rpc`
			```bash
			`RUST_LOG=debug cargo run --bin lite-rpc -- --experimental-quic-proxy-addr 127.0.0.1:11111`
			```
			`4. run rust bench tool in _lite-rpc_`
			```bash
			`cd bench; cargo run -- --tx-count=10`
			```
add readme 2023-06-27 03:08:26 -07:00
proxy: improve docs 2023-08-21 06:23:09 -07:00			`Implementation Details`
			`----------------------`
			`* the __proxy__ is designed to be light-weight and stateless (no persistence)`
			`* note: only one instance of the __proxy__ should talk to the TPU nodes at a time to be able to correctly comply with the validator quic policy`
			`* outbound connections (to TPU):`
			`* __proxy__ tries to maintain active quic connections to recent TPU nodes`
			`* __proxy__ will maintain multiple quic connection per TPU according to the solána validator quic policy`
			`* __proxy__ will use lightweight quic streams to send the transactions`
			`* inbound traffic (from Lite RPC)`
			`* __proxy__ supports only quic ATM but that could be extended to support other protocols`
			`* __proxy__ will perform client authentication by TLS (see [issue](https://github.com/blockworks-foundation/lite-rpc/issues/167))`
			`* TPU selection / Leader Schedule`
			`* the __proxy__ will not perform any TPU selection; the TPU target nodes __MUST__ be selected by the __client__ (Lite RPC) and not by the __proxy__`
			`* pitfall: the TPU target node list might become stale if the transactions are not sent out fast enough`
add readme 2023-06-27 03:08:26 -07:00
			`### Example Output from _Solana Validator_:`
			`(note: the peer type is __Staked__)`
			```
			`[2023-06-26T15:16:18.430602000Z INFO solana_streamer::nonblocking::quic] Got a connection 127.0.0.1:8058`
			`[2023-06-26T15:16:18.430633000Z DEBUG solana_streamer::nonblocking::quic] Peer public key is EPLzGRhibYmZ7qysF9BiPmSTRaL8GiLhrQdFTfL8h2fy`
			`[2023-06-26T15:16:18.430839000Z DEBUG solana_streamer::nonblocking::quic] Peer type: Staked, stake 999999997717120, total stake 999999997717120, max streams 2048 receive_window Ok(12320) from peer 127.0.0.1:8058`
			`[2023-06-26T15:16:18.430850000Z DEBUG solana_streamer::nonblocking::quic] quic new connection 127.0.0.1:8058 streams: 0 connections: 1`
			`[2023-06-26T15:16:18.430854000Z DEBUG solana_streamer::nonblocking::quic] stream error: ApplicationClosed(ApplicationClose { error_code: 0, reason: b"done" })`
integrate send_transaction_batch 2023-07-26 02:10:57 -07:00			```

proxy: improve docs 2023-08-21 06:23:09 -07:00			`solana validator quic policy`
			`----------------------------`
			`TPU has complex logic to assign connection capacity to TPU clients; this considers stake vs unstaked connections, per peer/per node limits, QUIC stream limits (see solana quic.rs)`
integrate send_transaction_batch 2023-07-26 02:10:57 -07:00
proxy: improve docs 2023-08-21 06:23:09 -07:00			`Project Info`
			`----------------`
			`* [Lite RPC](https://github.com/blockworks-foundation/lite-rpc/)`