solana/book/src/cluster.md

# A Solana Cluster

A Solana cluster is a set of fullnodes working together to serve client
transactions and maintain the integrity of the ledger. Many clusters may
coexist. When two clusters share a common genesis block, they attempt to
converge. Otherwise, they simply ignore the existence of the other.
Transactions sent to the wrong one are quietly rejected. In this chapter, we'll
discuss how a cluster is created, how nodes join the cluster, how they share
the ledger, how they ensure the ledger is replicated, and how they cope with
buggy and malicious nodes.

## Creating a Cluster

Before starting any fullnodes, one first needs to create a  *genesis block*.
The block contains entries referencing two public keys, a *mint* and a
*bootstrap leader*. The fullnode holding the bootstrap leader's secret key is
responsible for appending the first entries to the ledger. It initializes its
internal state with the mint's account. That account will hold the number of
native tokens defined by the genesis block. The second fullnode then contact
the bootstrap leader to register as a validator or replicator. Additional
fullnodes then register with any registered member of the cluster.

A validator receives all entries from the leader and is expected to submit
votes confirming those entries are valid. After voting, the validator is
expected to store those entries until *replicator* nodes submit proofs that
they have stored copies of it. Once the validator observes a sufficient number
of copies exist, it deletes its copy.

## Joining a Cluster

Fullnodes and replicators enter the cluster via registration messages sent to
its *control plane*. The control plane is implemented using a *gossip*
protocol, meaning that a node may register with any existing node, and expect
its registeration to propogate to all nodes in the cluster. The time it takes
for all nodes to synchonize is proportional to the square of the number of
nodes particating in the cluster. Algorithmically, that's considered very slow,
but in exchange for that time, a node is assured that it eventually has all the
same information as every other node, and that that information cannot be
censored by any one node.

## Ledger Broadcasting

The [Avalance explainer video](https://www.youtube.com/watch?v=qt_gDRXHrHQ) is
a conceptual overview of how a Solana leader can continuously process a gigabit
of transaction data per second and then get that same data, after being
recorded on the ledger, out to multiple validators on a single gigabit *data
plane*.

In practice, we found that just one level of the Avalanche validator tree is
sufficient for at least 150 validators. We anticipate adding the second level
to solve one of two problems:

1. To transmit ledger segments to slower "replicator" nodes.
2. To scale up the number of validators nodes.

Both problems justify the additional level, but you won't find it implemented
in the reference design just yet, because Solana's gossip implementation is
currently the bottleneck on the number of nodes per Solana cluster.

## Malicious Nodes

Solana is a *permissionless* blockchain, meaning that anyone wanting to
participate in the network may do so. They need only *stake* some
cluster-defined number of tokens and be willing to lose that stake if the
cluster observes the node acting maliciously. The process is called *Proof of
Stake* consensus, which defines rules to *slash* the stakes of malicious nodes.
Reorg the markdown book to cater to app devs First, talk about how a client interacts with Solana to do useful things. Then describe how the fullnode you're talking to works and why it's so very fast. Last, why that fullnode you don't trust does what you asked it to anyway. 2018-11-21 15:18:51 -08:00			`# A Solana Cluster`

			`A Solana cluster is a set of fullnodes working together to serve client`
			`transactions and maintain the integrity of the ledger. Many clusters may`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00			`coexist. When two clusters share a common genesis block, they attempt to`
Reorg the markdown book to cater to app devs First, talk about how a client interacts with Solana to do useful things. Then describe how the fullnode you're talking to works and why it's so very fast. Last, why that fullnode you don't trust does what you asked it to anyway. 2018-11-21 15:18:51 -08:00			`converge. Otherwise, they simply ignore the existence of the other.`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00			`Transactions sent to the wrong one are quietly rejected. In this chapter, we'll`
			`discuss how a cluster is created, how nodes join the cluster, how they share`
			`the ledger, how they ensure the ledger is replicated, and how they cope with`
			`buggy and malicious nodes.`

Fix capitalization And delete JSON RPC Service for now, since it currently has no content. 2018-11-28 13:00:02 -08:00			`## Creating a Cluster`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00
Drop mention of CLI tooling This is a "how does it work?" chapter, not "how do I do it?" 2018-11-28 14:45:43 -08:00			`Before starting any fullnodes, one first needs to create a genesis block.`
			`The block contains entries referencing two public keys, a mint and a`
			`bootstrap leader. The fullnode holding the bootstrap leader's secret key is`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00			`responsible for appending the first entries to the ledger. It initializes its`
Drop mention of CLI tooling This is a "how does it work?" chapter, not "how do I do it?" 2018-11-28 14:45:43 -08:00			`internal state with the mint's account. That account will hold the number of`
			`native tokens defined by the genesis block. The second fullnode then contact`
			`the bootstrap leader to register as a validator or replicator. Additional`
			`fullnodes then register with any registered member of the cluster.`

			`A validator receives all entries from the leader and is expected to submit`
			`votes confirming those entries are valid. After voting, the validator is`
			`expected to store those entries until replicator nodes submit proofs that`
			`they have stored copies of it. Once the validator observes a sufficient number`
			`of copies exist, it deletes its copy.`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00
Fix capitalization And delete JSON RPC Service for now, since it currently has no content. 2018-11-28 13:00:02 -08:00			`## Joining a Cluster`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00
			`Fullnodes and replicators enter the cluster via registration messages sent to`
			`its control plane. The control plane is implemented using a gossip`
			`protocol, meaning that a node may register with any existing node, and expect`
			`its registeration to propogate to all nodes in the cluster. The time it takes`
			`for all nodes to synchonize is proportional to the square of the number of`
			`nodes particating in the cluster. Algorithmically, that's considered very slow,`
			`but in exchange for that time, a node is assured that it eventually has all the`
			`same information as every other node, and that that information cannot be`
			`censored by any one node.`

			`## Ledger Broadcasting`

			`The [Avalance explainer video](https://www.youtube.com/watch?v=qt_gDRXHrHQ) is`
			`a conceptual overview of how a Solana leader can continuously process a gigabit`
			`of transaction data per second and then get that same data, after being`
Drop mention of CLI tooling This is a "how does it work?" chapter, not "how do I do it?" 2018-11-28 14:45:43 -08:00			`recorded on the ledger, out to multiple validators on a single gigabit *data`
			`plane*.`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00
			`In practice, we found that just one level of the Avalanche validator tree is`
			`sufficient for at least 150 validators. We anticipate adding the second level`
			`to solve one of two problems:`

			`1. To transmit ledger segments to slower "replicator" nodes.`
			`2. To scale up the number of validators nodes.`

			`Both problems justify the additional level, but you won't find it implemented`
			`in the reference design just yet, because Solana's gossip implementation is`
			`currently the bottleneck on the number of nodes per Solana cluster.`

Fix capitalization And delete JSON RPC Service for now, since it currently has no content. 2018-11-28 13:00:02 -08:00			`## Malicious Nodes`
Expland cluster overview, integrate Avalanche chapter 2018-11-28 10:56:45 -08:00
			`Solana is a permissionless blockchain, meaning that anyone wanting to`
			`participate in the network may do so. They need only stake some`
			`cluster-defined number of tokens and be willing to lose that stake if the`
			`cluster observes the node acting maliciously. The process is called *Proof of`
			`Stake* consensus, which defines rules to slash the stakes of malicious nodes.`