Bump version to 1.0.3

automerge

.appveyor.yml

@@ -1,22 +1,23 @@
-os: Visual Studio 2017
 version: '{build}'
 
 branches:
   only:
   - master
-  - /^v[0-9.]+/
+  - /^v[0-9.]+\.[0-9.]+/
 
 cache:
   - '%USERPROFILE%\.cargo'
   - '%APPVEYOR_BUILD_FOLDER%\target'
 
+clone_folder: d:\projects\solana
+
 build_script:
   - bash ci/publish-tarball.sh
 
 notifications:
   - provider: Slack
     incoming_webhook:
-      secure: 6HnLbeS6/Iv7JSMrrHQ7V9OSIjH/3KFzvZiinNWgQqEN0e9A6zaE4MwEXUYDWbcvVJiQneWit6dswY8Scoms2rS1PWEN5N6sjgLgyzroptc=
+      secure: GJsBey+F5apAtUm86MHVJ68Uqa6WN1SImcuIc4TsTZrDhA8K1QWUNw9FFQPybUWDyOcS5dly3kubnUqlGt9ux6Ad2efsfRIQYWv0tOVXKeY=
     channel: ci-status
     on_build_success: false
     on_build_failure: true
@@ -25,16 +26,16 @@ notifications:
 deploy:
   - provider: S3
     access_key_id:
-      secure: G6uzyGqbkMCXS2+sCeBCT/+s/11AHLWXCuGayfKcMEE=
+      secure: fTbJl6JpFebR40J7cOWZ2mXBa3kIvEiXgzxAj6L3N7A=
     secret_access_key:
-      secure: Lc+aVrbcPSXoDV7h2J7gqKT+HX0n3eEzp3JIrSP2pcKxbAikGnCtOogCiHO9/er2
+      secure: vItsBXb2rEFLvkWtVn/Rcxu5a5+2EwC+b7GsA0waJy9hXh6XuBAD0lnHd9re3g/4
     bucket: release.solana.com
     region: us-west-1
     set_public: true
 
   - provider: GitHub
     auth_token:
-      secure: JdggY+mrznklWDcV0yvetHhD9eRcNdc627q6NcZdZAJsDidYcGgZ/tgYJiXb9D1A
+      secure: 81fEmPZ0cV1wLtNuUrcmtgxKF6ROQF1+/ft5m+fHX21z6PoeCbaNo8cTyLioWBj7
     draft: false
     prerelease: false
     on:

.buildkite/env/secrets.ejson

@@ -1,14 +1,15 @@
 {
     "_public_key": "ae29f4f7ad2fc92de70d470e411c8426d5d48db8817c9e3dae574b122192335f",
     "environment": {
-      "CODECOV_TOKEN": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:ks2/ElgxwgxqgmFcxTHANNLmj23YH74h:U4uzRONRfiQyqy6HrPQ/e7OnBUY4HkW37R0iekkF3KJ9UGnHqT1UvwgVbDqLahtDIJ4rWw==]",
-      "CRATES_IO_TOKEN": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:lKMh3aLW+jyRrfS/c7yvkpB+TaPhXqLq:j0v27EbaPgwRdHZAbsM0FlAnt3r9ScQrFbWJYOAZtM3qestEiByTlKpZ0eyF/823]",
-      "GITHUB_TOKEN": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:Ll78c3jGpYqnTwR7HJq3mNNUC7pOv9Lu:GrInO2r8MjmP5c54szkyygdsrW5KQYkDgJQUVyFEPyG8SWfchyM9Gur8RV0a+cdwuxNkHLi4U2M=]",
-      "INFLUX_DATABASE": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:IlH/ZLTXv3SwlY3TVyAPCX2KzLRY6iG3:gGmUGSU/kCfR/mTwKONaUC/X]",
-      "INFLUX_PASSWORD": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:o2qm95GU4VrrcC4OU06jjPvCwKZy/CZF:OW2ga3kLOQJvaDEdGRJ+gn3L2ckFm8AJZtv9wj/GeUIKDH2A4uBPTHsAH9PMe6zujpuHGk3qbeg=]",
-      "INFLUX_USERNAME": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:yDWW/uIHsJqOTDYskZoSx3pzoB1vztWY:2z31oTA3g0Xs9fCczGNJRcx8xf/hFCed]",
-      "SOLANA_INSTALL_UPDATE_MANIFEST_KEYPAIR_x86_64_unknown_linux_gnu": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:RqRaHlYUvGPNFJa6gmciaYM3tRJTURUH:q78/3GTHCN3Uqx9z4nOBjPZcO1lOazNoB/mdhGRDFsnAqVd2hU8zbKkqLrZfLlGqyD8WQOFuw5oTJR9qWg6L9LcOyj3pGL8jWF2yjgZxdtNMXnkbSrCWLooWBBLT61jYQnEwg73gT8ld3Q8EVv3T+MeSMu6FnPz+0+bqQCAGgfqksP4hsUAJGzgZu+i0tNOdlT7fxnh5KJK/yFM/CKgN2sRwEjukA9hXsffyB61g2zqzTDJxCUDLbCVrCkA/bfUk7Of/t0W5t0nK1H3oyGZEc/lRMauCknDBka3Gz11dVss2QT19WQNh0u7bHVaT/U4lepX1j9Zv]",
-      "SOLANA_INSTALL_UPDATE_MANIFEST_KEYPAIR_x86_64_apple_darwin": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:wFDl3INEnA3EQDHRX40avqGe1OMoJxyy:6ncCRVRTIRuYI5o/gayeuWCudWvmKNYr8KEHAWeTq34a5bdcKInBdKhjmjX+wLHqsEwQ5gcyhcxy4Ri2mbuN6AHazfZOZlubQkGlyUOAIYO5D5jkbyIh40DAtjVzo1MD/0HsW9zdGOzqUKp5xJJeDsbR4F153jbxa7fvwF90Q4UQjYFTKAtExEmHtDGSJG48ToVwTabTV/OnISMIggDZBviIv2QWHvXgK07b2mUj34rHJywEDGN1nj5rITTDdUeRcB1x4BAMOe94kTFPSTaj/OszvYlGECt8rkKFqbm092qL+XLfiBaImqe/WJHRCnAj6Don]",
-      "SOLANA_INSTALL_UPDATE_MANIFEST_KEYPAIR_x86_64_pc_windows_msvc": "EJ[1:8iZ6baJB4fbBV+XDsrUooyGAnGL/8Ol+4Qd0zKh5YjI=:wAh+dBuZopv6vruVOYegUcq/aBnbksT1:qIJfCfDvDWiqicMOkmbJs/0n7UJLKNmgMQaKzeQ8J7Q60YpXbtWzKVW3tS6lzlgf64m3MrPXyo1C+mWh6jkjsb18T/OfggZy1ZHM4AcsOC6/ldUkV5YtuxUQuAmd5jCuV/R7iuYY8Z66AcfAevlb+bnLpgIifdA8fh/IktOo58nZUQwZDdppAacmftsLc6Frn5Er6A6+EXpxK1nmnlmLJ4AJztqlh6X0r+JvE2O7qeoZUXrIegnkxo7Aay7I/dd8zdYpp7ICSiTEtfVN/xNIu/5QmTRU7gWoz7cPl9epq4aiEALzPOzb6KVOiRcsOg+TlFvLQ71Ik5o=]"
+      "CODECOV_TOKEN": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:JnxhrIxh09AvqdJgrVSYmb7PxSrh19aE:07WzVExCHEd1lJ1m8QizRRthGri+WBNeZRKjjEvsy5eo4gv3HD7zVEm42tVTGkqITKkBNQ==]",
+      "CRATES_IO_TOKEN": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:d0jJqC32/axwzq/N7kMRmpxKhnRrhtpt:zvcPHwkOzGnjhNkAQSejwdy1Jkr9wR1qXFFCnfIjyt/XQYubzB1tLkoly/qdmeb5]",
+      "GEOLOCATION_API_KEY": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:R4gfB6Ey4i50HyfLt4UZDLBqg3qHEUye:UfZCOgt8XI6Y2g+ivCRVoS1fjFycFs7/GSevvCqh1B50mG0+hzpEyzXQLuKG5OeI]",
+      "GITHUB_TOKEN": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:Vq2dkGTOzfEpRht0BAGHFp/hDogMvXJe:tFXHg1epVt2mq9hkuc5sRHe+KAnVREi/p8S+IZu67XRyzdiA/nGak1k860FXYuuzuaE0QWekaEc=]",
+      "INFLUX_DATABASE": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:5KI9WBkXx3R/W4m256mU5MJOE7N8aAT9:Cb8QFELZ9I60t5zhJ9h55Kcs]",
+      "INFLUX_PASSWORD": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:hQRMpLCrav+OYkNphkeM4hagdVoZv5Iw:AUO76rr6+gF1OLJA8ZLSG8wHKXgYCPNk6gRCV8rBhZBJ4KwDaxpvOhMl7bxxXG6jol7v4aRa/Lk=]",
+      "INFLUX_USERNAME": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:R7BNmQjfeqoGDAFTJu9bYTGHol2NgnYN:Q2tOT/EBcFvhFk+DKLKmVU7tLCpVC3Ui]",
+      "SOLANA_INSTALL_UPDATE_MANIFEST_KEYPAIR_x86_64_unknown_linux_gnu": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:Egc2dMrHDU0NcZ71LwGv/V66shUhwYUE:04VoIb8CKy7KYhQ5W4cEW9SDKZltxWBL5Hob106lMBbUOD/yUvKYcG3Ep8JfTMwO3K8zowW5HpU/IdGoilX0XWLiJJ6t+p05WWK0TA16nOEtwrEG+UK8wm3sN+xCO20i4jDhpNpgg3FYFHT5rKTHW8+zaBTNUX/SFxkN67Lm+92IM28CXYE43SU1WV6H99hGFFVpTK5JVM3JuYU1ex/dHRE+xCzTr4MYUB/F+nGoNFW8HUDV/y0e1jxT9to3x0SmnytEEuk+5RUzFuEt9cKNFeNml3fOCi4qL+sfj/Y5pjH9xDiUxsvH/8NL35jbLP244aFHgWcp]",
+      "SOLANA_INSTALL_UPDATE_MANIFEST_KEYPAIR_x86_64_apple_darwin": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:NeOxSoWCvXB9AL4H6OK26l/7bmsKd/oz:Ijfoxtvk2CHlN1ZXHup3Gg/914kbbAkEGWJfvozA8UIe+aUzUObMyTrKkVOeNAH8Q8YH9tNzk7RRnrTcpnzeCCBLlWcVEeruMxHox3mPRzmSeDLxtbzCl9VePlRO3T7jg90K5hW+ZAkd5J/WJNzpAcmr93ts/of3MbvGHSujId/efCTzJEcP6JInnBb8Vrj7TlgKbzUlnqpq1+NjYPSXN3maKa9pKeo2JWxZlGBMoy6QWUUY5GbYEylw9smwh1LJcHZjlaZNMuOl4gNKtaSr38IXQkAXaRUJDPAmPras00YObKzXU8RkTrP4EoP/jx5LPR7f]",
+      "SOLANA_INSTALL_UPDATE_MANIFEST_KEYPAIR_x86_64_pc_windows_msvc": "EJ[1:yGpTmjdbyjW2kjgIHkFoJv7Ue7EbUvUbqHyw6anGgWg=:7t+56twjW+jR7fpFNNeRFLPd7E4lbmyN:JuviDpkQrfVcNUGRGsa2e/UhvH6tTYyk1s4cHHE5xZH1NByL7Kpqx36VG/+o1AUGEeSQdsBnKgzYdMoFYbO8o50DoRPc86QIEVXCupD6J9avxLFtQgOWgJp+/mCdUVXlqXiFs/vQgS/L4psrcKdF6WHd77BeUr6ll8DjH+9m5FC9Rcai2pXno6VbPpunHQ0oUdYzhFR64+LiRacBaefQ9igZ+nSEWDLqbaZSyfm9viWkijoVFTq8gAgdXXEh7g0QdxVE5T6bPristJhT6jWBhWunPUCDNFFErWIsbRGctepl4pbCWqh2hNTw9btSgVfeY6uGCOsdy9E=]"
     }
 }

.buildkite/pipeline-upload.sh

@@ -10,11 +10,22 @@
 set -e
 cd "$(dirname "$0")"/..
 
-buildkite-agent pipeline upload ci/buildkite.yml
+if [[ -n $BUILDKITE_TAG ]]; then
+  buildkite-agent annotate --style info --context release-tag \
+    "https://github.com/solana-labs/solana/releases/$BUILDKITE_TAG"
+  buildkite-agent pipeline upload ci/buildkite-release.yml
+else
+  if [[ $BUILDKITE_BRANCH =~ ^pull ]]; then
+    # Add helpful link back to the corresponding Github Pull Request
+    buildkite-agent annotate --style info --context pr-backlink \
+      "Github Pull Request: https://github.com/solana-labs/solana/$BUILDKITE_BRANCH"
+  fi
 
-if [[ $BUILDKITE_BRANCH =~ ^pull ]]; then
-  # Add helpful link back to the corresponding Github Pull Request
-  buildkite-agent annotate --style info --context pr-backlink \
-    "Github Pull Request: https://github.com/solana-labs/solana/$BUILDKITE_BRANCH"
+  if [[ $BUILDKITE_MESSAGE =~ GitBook: ]]; then
+    buildkite-agent annotate --style info --context gitbook-ci-skip \
+      "GitBook commit detected, CI skipped"
+    exit
+  fi
+
+  buildkite-agent pipeline upload ci/buildkite.yml
 fi
-

.gitbook.yaml

@@ -0,0 +1,5 @@
+root: ./docs/src
+
+structure:
+    readme: introduction.md
+    summary: SUMMARY.md

.github/stale.yml

@@ -0,0 +1,24 @@
+only: pulls
+
+# Number of days of inactivity before a pull request becomes stale
+daysUntilStale: 7
+
+# Number of days of inactivity before a stale pull request is closed
+daysUntilClose: 7
+
+# Issues with these labels will never be considered stale
+exemptLabels:
+  - security
+
+# Label to use when marking a pull request as stale
+staleLabel: stale
+
+# Comment to post when marking a pull request as stale. Set to `false` to disable
+markComment: >
+  This pull request has been automatically marked as stale because it has not had
+  recent activity. It will be closed if no further activity occurs.
+
+# Comment to post when closing a stale pull request. Set to `false` to disable
+closeComment: >
+  This stale pull request has been automatically closed.
+  Thank you for your contributions.

.gitignore

@@ -1,6 +1,6 @@
-/book/html/
-/book/src/img/
-/book/src/tests.ok
+/docs/html/
+/docs/src/tests.ok
+/docs/src/.gitbook/assets/*.svg
 /farf/
 /solana-release/
 /solana-release.tar.bz2
@@ -11,14 +11,12 @@
 **/*.rs.bk
 .cargo
 
-# node config that is rsynced
 /config/
-# node config that remains local
-/config-local/
 
 # log files
 *.log
 log-*.txt
+log-*/
 
 # intellij files
 /.idea/

.mergify.yml

@@ -19,27 +19,35 @@ pull_request_rules:
       label:
         add:
           - automerge
-  - name: v0.16 backport
+  - name: v0.23 backport
     conditions:
       - base=master
-      - label=v0.16
+      - label=v0.23
     actions:
       backport:
         branches:
-          - v0.16
-  - name: v0.17 backport
+          - v0.23
+  - name: v1.0 backport
     conditions:
       - base=master
-      - label=v0.17
+      - label=v1.0
     actions:
       backport:
         branches:
-          - v0.17
-  - name: v0.18 backport
+          - v1.0
+  - name: v1.1 backport
     conditions:
       - base=master
-      - label=v0.18
+      - label=v1.1
     actions:
       backport:
         branches:
-          - v0.18
+          - v1.1
+  - name: v1.2 backport
+    conditions:
+      - base=master
+      - label=v1.2
+    actions:
+      backport:
+        branches:
+          - v1.2

.travis.yml

@@ -2,13 +2,11 @@ os:
   - osx
 
 language: rust
-cache: cargo
 rust:
-  - 1.36.0
+  - stable
 
 install:
   - source ci/rust-version.sh
-  - test $rust_stable = $TRAVIS_RUST_VERSION # Update .travis.yml rust version above when this fails
 
 script:
   - source ci/env.sh
@@ -17,7 +15,7 @@ script:
 branches:
   only:
     - master
-    - /^v\d+\.\d+(\.\d+)?(-\S*)?$/
+    - /^v\d+\.\d+/
 
 notifications:
   slack:

CONTRIBUTING.md

@@ -1,23 +1,41 @@
-Solana Coding Guidelines
-===
+# Solana Coding Guidelines
 
-The goal of these guidelines is to improve developer productivity by allowing developers to
-jump any file in the codebase and not need to adapt to inconsistencies in how the code is
-written. The codebase should appear as if it had been authored by a single developer. If you
-don't agree with a convention, submit a PR patching this document and let's discuss! Once
-the PR is accepted, *all* code should be updated as soon as possible to reflect the new
+The goal of these guidelines is to improve developer productivity by allowing
+developers to jump into any file in the codebase and not need to adapt to
+inconsistencies in how the code is written. The codebase should appear as if it
+had been authored by a single developer. If you don't agree with a convention,
+submit a PR patching this document and let's discuss! Once the PR is accepted,
+*all* code should be updated as soon as possible to reflect the new
 conventions.
 
-Pull Requests
----
+## Pull Requests
 
-Small, frequent PRs are much preferred to large, infrequent ones. A large PR is difficult
-to review, can block others from making progress, and can quickly get its author into
-"rebase hell". A large PR oftentimes arises when one change requires another, which requires
-another, and then another. When you notice those dependencies, put the fix into a commit of
-its own, then checkout a new branch, and cherrypick it. Open a PR to start the review
-process and then jump back to your original branch to keep making progress. Once the commit
-is merged, you can use git-rebase to purge it from your original branch.
+Small, frequent PRs are much preferred to large, infrequent ones. A large PR is
+difficult to review, can block others from making progress, and can quickly get
+its author into "rebase hell". A large PR oftentimes arises when one change
+requires another, which requires another, and then another. When you notice
+those dependencies, put the fix into a commit of its own, then checkout a new
+branch, and cherry-pick it.
+
+```bash
+$ git commit -am "Fix foo, needed by bar"
+$ git checkout master
+$ git checkout -b fix-foo
+$ git cherry-pick fix-bar
+$ git push --set-upstream origin fix-foo
+```
+
+Open a PR to start the review process and then jump back to your original
+branch to keep making progress. Consider rebasing to make your fix the first
+commit:
+
+```bash
+$ git checkout fix-bar
+$ git rebase -i master <Move fix-foo to top>
+```
+
+Once the commit is merged, rebase the original branch to purge the
+cherry-picked commit:
 
 ```bash
 $ git pull --rebase upstream master
@@ -25,26 +43,137 @@ $ git pull --rebase upstream master
 
 ### How big is too big?
 
-If there are no functional changes, PRs can be very large and that's no problem. If,
-however, your changes are making meaningful changes or additions, then about 1,000 lines of
-changes is about the most you should ask a Solana maintainer to review.
+If there are no functional changes, PRs can be very large and that's no
+problem. If, however, your changes are making meaningful changes or additions,
+then about 1.0.3 lines of changes is about the most you should ask a Solana
+maintainer to review.
 
 ### Should I send small PRs as I develop large, new components?
 
-Add only code to the codebase that is ready to be deployed. If you are building a large
-library, consider developing it in a separate git repository. When it is ready to be
-integrated, the Solana maintainers will work with you to decide on a path forward. Smaller
-libraries may be copied in whereas very large ones may be pulled in with a package manager.
+Add only code to the codebase that is ready to be deployed. If you are building
+a large library, consider developing it in a separate git repository. When it
+is ready to be integrated, the Solana maintainers will work with you to decide
+on a path forward. Smaller libraries may be copied in whereas very large ones
+may be pulled in with a package manager.
+
+## Getting Pull Requests Merged
+
+There is no single person assigned to watching GitHub PR queue and ushering you
+through the process. Typically, you will ask the person that wrote a component
+to review changes to it. You can find the author using `git blame` or asking on
+Discord.  When working to get your PR merged, it's most important to understand
+that changing the code is your priority and not necessarily a priority of the
+person you need an approval from. Also, while you may interact the most with
+the component author, you should aim to be inclusive of others. Providing a
+detailed problem description is the most effective means of engaging both the
+component author and other potentially interested parties.
+
+Consider opening all PRs as Draft Pull Requests first. Using a draft PR allows
+you to kickstart the CI automation, which typically takes between 10 and 30
+minutes to execute. Use that time to write a detailed problem description. Once
+the description is written and CI succeeds, click the "Ready to Review" button
+and add reviewers. Adding reviewers before CI succeeds is a fast path to losing
+reviewer engagement. Not only will they be notified and see the PR is not yet
+ready for them, they will also be bombarded them with additional notifications
+each time you push a commit to get past CI or until they "mute" the PR. Once
+muted, you'll need to reach out over some other medium, such as Discord, to
+request they have another look. When you use draft PRs, no notifications are
+sent when you push commits and edit the PR description. Use draft PRs
+liberally.  Don't bug the humans until you have gotten past the bots.
+
+### What should be in my PR description?
+
+Reviewing code is hard work and generally involves an attempt to guess the
+author's intent at various levels. Please assume reviewer time is scarce and do
+what you can to make your PR as consumable as possible. Inspired by techniques
+for writing good whitepapers, the guidance here aims to maximize reviewer
+engagement.
+
+Assume the reviewer will spend no more than a few seconds reading the PR title.
+If it doesn't describe a noteworthy change, don't expect the reviewer to click
+to see more.
+
+Next, like the abstract of a whitepaper, the reviewer will spend ~30 seconds
+reading the PR problem description. If what is described there doesn't look
+more important than competing issues, don't expect the reviewer to read on.
+
+Next, the reviewer will read the proposed changes. At this point, the reviewer
+needs to be convinced the proposed changes are a *good* solution to the problem
+described above.  If the proposed changes, not the code changes, generates
+discussion, consider closing the PR and returning with a design proposal
+instead.
+
+Finally, once the reviewer understands the problem and agrees with the approach
+to solving it, the reviewer will view the code changes. At this point, the
+reviewer is simply looking to see if the implementation actually implements
+what was proposed and if that implementation is maintainable. When a concise,
+readable test for each new code path is present, the reviewer can safely ignore
+the details of its implementation. When those tests are missing, expect to
+either lose engagement or get a pile of review comments as the reviewer
+attempts to consider every ambiguity in your implementation.
+
+### The PR Title
+
+The PR title should contain a brief summary of the change, from the perspective
+of the user. Examples of good titles:
+
+* Add rent to accounts
+* Fix out-of-memory error in validator
+* Clean up `process_message()` in runtime
+
+The conventions here are all the same as a good git commit title:
+
+* First word capitalized and in the imperative mood, not past tense ("add", not
+  "added")
+* No trailing period
+* What was done, whom it was done to, and in what context
+
+### The PR Problem Statement
+
+The git repo implements a product with various features. The problem statement
+should describe how the product is missing a feature, how a feature is
+incomplete, or how the implementation of a feature is somehow undesirable. If
+an issue being fixed already describes the problem, go ahead and copy-paste it.
+As mentioned above, reviewer time is scarce. Given a queue of PRs to review,
+the reviewer may ignore PRs that expect them to click through links to see if
+the PR warrants attention.
+
+### The Proposed Changes
+
+Typically the content under the "Proposed changes" section will be a bulleted
+list of steps taken to solve the problem. Oftentimes, the list is identical to
+the subject lines of the git commits contained in the PR. It's especially
+generous (and not expected) to rebase or reword commits such that each change
+matches the logical flow in your PR description.
 
 ### When will my PR be reviewed?
 
-PRs are typically reviewed and merged in under 7 days. If your PR has been open for longer,
-it's a strong indicator that the reviewers aren't confident the change meets the quality
-standards of the codebase. You might consider closing it and coming back with smaller PRs
-and longer descriptions detailing what problem it solves and how it solves it.
+PRs are typically reviewed and merged in under 7 days. If your PR has been open
+for longer, it's a strong indicator that the reviewers aren't confident the
+change meets the quality standards of the codebase. You might consider closing
+it and coming back with smaller PRs and longer descriptions detailing what
+problem it solves and how it solves it. Old PRs will be marked stale and then
+closed automatically 7 days later.
 
-Draft Pull Requests
----
+### How to manage review feedback?
+
+After a reviewer provides feedback, you can quickly say "acknowledged, will
+fix" using a thumb's up emoji. If you're confident your fix is exactly as
+prescribed, add a reply "Fixed in COMMIT\_HASH" and mark the comment as
+resolved. If you're not sure, reply "Is this what you had in mind?
+COMMIT\_HASH" and if so, the reviewer will reply and mark the conversation as
+resolved. Marking conversations as resolved is an excellent way to engage more
+reviewers. Leaving conversations open may imply the PR is not yet ready for
+additional review.
+
+### When will my PR be re-reviewed?
+
+Recall that once your PR is opened, a notification is sent every time you push
+a commit.  After a reviewer adds feedback, they won't be checking on the status
+of that feedback after every new commit. Instead, directly mention the reviewer
+when you feel your PR is ready for another pass.
+
+## Draft Pull Requests
 
 If you want early feedback on your PR, use GitHub's "Draft Pull Request"
 mechanism. Draft PRs are a convenient way to collaborate with the Solana
@@ -52,67 +181,68 @@ maintainers without triggering notifications as you make changes. When you feel
 your PR is ready for a broader audience, you can transition your draft PR to a
 standard PR with the click of a button.
 
-Do not add reviewers to draft PRs.  GitHub doesn't automatically clear approvals
-when you click "Ready for Review", so a review that meant "I approve of the
-direction" suddenly has the appearance of "I approve of these changes." Instead,
-add a comment that mentions the usernames that you would like a review from. Ask
-explicitly what you would like feedback on.
+Do not add reviewers to draft PRs.  GitHub doesn't automatically clear
+approvals when you click "Ready for Review", so a review that meant "I approve
+of the direction" suddenly has the appearance of "I approve of these changes."
+Instead, add a comment that mentions the usernames that you would like a review
+from. Ask explicitly what you would like feedback on.
 
-Rust coding conventions
----
+## Rust coding conventions
 
-* All Rust code is formatted using the latest version of `rustfmt`. Once installed, it will be
-  updated automatically when you update the compiler with `rustup`.
+* All Rust code is formatted using the latest version of `rustfmt`. Once
+  installed, it will be updated automatically when you update the compiler with
+`rustup`.
 
-* All Rust code is linted with Clippy. If you'd prefer to ignore its advice, do so explicitly:
+* All Rust code is linted with Clippy. If you'd prefer to ignore its advice, do
+  so explicitly:
 
-  ```rust
-  #[allow(clippy::too_many_arguments)]
-  ```
+  ```rust #[allow(clippy::too_many_arguments)] ```
 
   Note: Clippy defaults can be overridden in the top-level file `.clippy.toml`.
 
-* For variable names, when in doubt, spell it out. The mapping from type names to variable names
-  is to lowercase the type name, putting an underscore before each capital letter. Variable names
-  should *not* be abbreviated unless being used as closure arguments and the brevity improves
-  readability. When a function has multiple instances of the same type, qualify each with a
-  prefix and underscore (i.e. alice_keypair) or a numeric suffix (i.e. tx0).
+* For variable names, when in doubt, spell it out. The mapping from type names
+  to variable names is to lowercase the type name, putting an underscore before
+each capital letter. Variable names should *not* be abbreviated unless being
+used as closure arguments and the brevity improves readability. When a function
+has multiple instances of the same type, qualify each with a prefix and
+underscore (i.e. alice\_keypair) or a numeric suffix (i.e. tx0).
 
-* For function and method names, use `<verb>_<subject>`. For unit tests, that verb should
-  always be `test` and for benchmarks the verb should always be `bench`. Avoid namespacing
-  function names with some arbitrary word. Avoid abbreviating words in function names.
+* For function and method names, use `<verb>_<subject>`. For unit tests, that
+  verb should always be `test` and for benchmarks the verb should always be
+`bench`. Avoid namespacing function names with some arbitrary word. Avoid
+abbreviating words in function names.
 
-* As they say, "When in Rome, do as the Romans do." A good patch should acknowledge the coding
-  conventions of the code that surrounds it, even in the case where that code has not yet been
-  updated to meet the conventions described here.
+* As they say, "When in Rome, do as the Romans do." A good patch should
+  acknowledge the coding conventions of the code that surrounds it, even in the
+case where that code has not yet been updated to meet the conventions described
+here.
 
 
-Terminology
----
+## Terminology
 
-Inventing new terms is allowed, but should only be done when the term is widely used and
-understood. Avoid introducing new 3-letter terms, which can be confused with 3-letter acronyms.
+Inventing new terms is allowed, but should only be done when the term is widely
+used and understood. Avoid introducing new 3-letter terms, which can be
+confused with 3-letter acronyms.
 
-[Terms currently in use](book/src/terminology.md)
+[Terms currently in use](docs/src/terminology.md)
 
 
-Design Proposals
----
+## Design Proposals
 
-Solana's architecture is described by a book generated from markdown files in
-the `book/src/` directory, maintained by an *editor* (currently @garious). To
-add a design proposal, you'll need to at least propose a change the content
-under the [Accepted Design
-Proposals](https://solana-labs.github.io/book-edge/proposals.html) chapter.
-Here's the full process:
+Solana's architecture is described by docs generated from markdown files in
+the `docs/src/` directory, maintained by an *editor* (currently @garious). To
+add a design proposal, you'll need to include it in the
+[Accepted Design Proposals](https://docs.solana.com/proposals)
+section of the Solana docs.  Here's the full process:
 
 1. Propose a design by creating a PR that adds a markdown document to the
-   directory `book/src/` and references it from the [table of
-   contents](book/src/SUMMARY.md). Add any relevant *maintainers* to the PR review.
+   `docs/src/proposals` directory and references it from the [table of
+   contents](docs/src/SUMMARY.md). Add any relevant *maintainers* to the PR
+   review.
 2. The PR being merged indicates your proposed change was accepted and that the
    maintainers support your plan of attack.
 3. Submit PRs that implement the proposal. When the implementation reveals the
-   need for tweaks to the proposal, be sure to update the proposal and have
-   that change reviewed by the same people as in step 1.
+   need for tweaks to the proposal, be sure to update the proposal and have that
+   change reviewed by the same people as in step 1.
 4. Once the implementation is complete, submit a PR that moves the link from
    the Accepted Proposals to the Implemented Proposals section.

Cargo.toml

@@ -3,54 +3,62 @@ members = [
     "bench-exchange",
     "bench-streamer",
     "bench-tps",
-    "sdk-c",
+    "banking-bench",
+    "chacha",
+    "chacha-cuda",
     "chacha-sys",
+    "cli-config",
     "client",
     "core",
-    "drone",
+    "faucet",
+    "perf",
     "validator",
     "genesis",
+    "genesis-programs",
     "gossip",
     "install",
     "keygen",
-    "kvstore",
+    "ledger",
     "ledger-tool",
+    "local-cluster",
     "logger",
+    "log-analyzer",
     "merkle-tree",
     "measure",
     "metrics",
-    "netutil",
-    "programs/bpf",
-    "programs/bpf_loader_api",
-    "programs/bpf_loader_program",
-    "programs/budget_api",
-    "programs/budget_program",
-    "programs/config_api",
-    "programs/config_program",
-    "programs/exchange_api",
-    "programs/exchange_program",
-    "programs/failure_program",
-    "programs/move_loader_api",
-    "programs/move_loader_program",
-    "programs/noop_program",
-    "programs/stake_api",
-    "programs/stake_program",
-    "programs/stake_tests",
-    "programs/storage_api",
-    "programs/storage_program",
-    "programs/token_api",
-    "programs/token_program",
-    "programs/vote_api",
-    "programs/vote_program",
-    "replicator",
+    "net-shaper",
+    "programs/bpf_loader",
+    "programs/budget",
+    "programs/btc_spv",
+    "programs/btc_spv_bin",
+    "programs/config",
+    "programs/exchange",
+    "programs/failure",
+    "programs/noop",
+    "programs/ownable",
+    "programs/stake",
+    "programs/storage",
+    "programs/vest",
+    "programs/vote",
+    "archiver",
+    "archiver-lib",
+    "archiver-utils",
+    "remote-wallet",
     "runtime",
     "sdk",
+    "sdk-c",
+    "scripts",
+    "sys-tuner",
     "upload-perf",
-    "validator-info",
+    "net-utils",
     "vote-signer",
-    "wallet",
+    "cli",
+    "rayon-threadlimit",
+    "watchtower",
 ]
 
 exclude = [
-    "programs/bpf/rust/noop",
+    "programs/bpf",
+    "programs/move_loader",
+    "programs/librapay",
 ]

README.md

@@ -1,5 +1,5 @@
-[![Solana crate](https://img.shields.io/crates/v/solana.svg)](https://crates.io/crates/solana)
-[![Solana documentation](https://docs.rs/solana/badge.svg)](https://docs.rs/solana)
+[![Solana crate](https://img.shields.io/crates/v/solana-core.svg)](https://crates.io/crates/solana-core)
+[![Solana documentation](https://docs.rs/solana-core/badge.svg)](https://docs.rs/solana-core)
 [![Build status](https://badge.buildkite.com/8cc350de251d61483db98bdfc895b9ea0ac8ffa4a32ee850ed.svg?branch=master)](https://buildkite.com/solana-labs/solana/builds?branch=master)
 [![codecov](https://codecov.io/gh/solana-labs/solana/branch/master/graph/badge.svg)](https://codecov.io/gh/solana-labs/solana)
 
@@ -23,12 +23,12 @@ It's possible for a centralized database to process 710,000 transactions per sec
 
 Furthermore, and much to our surprise, it can be implemented using a mechanism that has existed in Bitcoin since day one. The Bitcoin feature is called nLocktime and it can be used to postdate transactions using block height instead of a timestamp. As a Bitcoin client, you'd use block height instead of a timestamp if you don't trust the network. Block height turns out to be an instance of what's being called a Verifiable Delay Function in cryptography circles. It's a cryptographically secure way to say time has passed. In Solana, we use a far more granular verifiable delay function, a SHA 256 hash chain, to checkpoint the ledger and coordinate consensus. With it, we implement Optimistic Concurrency Control and are now well en route towards that theoretical limit of 710,000 transactions per second.
 
-Architecture
+Documentation
 ===
 
-Before you jump into the code, review the online book [Solana: Blockchain Rebuilt for Scale](https://solana-labs.github.io/book/).
+Before you jump into the code, review the documentation [Solana: Blockchain Rebuilt for Scale](https://docs.solana.com).
 
-(The _latest_ development version of the online book is also [available here](https://solana-labs.github.io/book-edge/).)
+(The _latest_ development version of the docs is [available here](https://docs.solana.com/v/master).)
 
 Release Binaries
 ===
@@ -78,7 +78,7 @@ $ source $HOME/.cargo/env
 $ rustup component add rustfmt
 ```
 
-If your rustc version is lower than 1.34.0, please update it:
+If your rustc version is lower than 1.39.0, please update it:
 
 ```bash
 $ rustup update
@@ -87,7 +87,8 @@ $ rustup update
 On Linux systems you may need to install libssl-dev, pkg-config, zlib1g-dev, etc.  On Ubuntu:
 
 ```bash
-$ sudo apt-get install libssl-dev pkg-config zlib1g-dev llvm clang
+$ sudo apt-get update
+$ sudo apt-get install libssl-dev libudev-dev pkg-config zlib1g-dev llvm clang
 ```
 
 Download the source code:
@@ -120,16 +121,13 @@ $ cargo test
 Local Testnet
 ---
 
-Start your own testnet locally, instructions are in the book [Solana: Blockchain Rebuild for Scale: Getting Started](https://solana-labs.github.io/book/getting-started.html).
+Start your own testnet locally, instructions are in the online docs [Solana: Blockchain Rebuild for Scale: Getting Started](https://docs.solana.com/building-from-source).
 
 Remote Testnets
 ---
 
-We maintain several testnets:
+* `testnet` - public stable testnet accessible via devnet.solana.com. Runs 24/7
 
-* `testnet` - public stable testnet accessible via testnet.solana.com. Runs 24/7
-* `testnet-beta` - public beta channel testnet accessible via beta.testnet.solana.com. Runs 24/7
-* `testnet-edge` - public edge channel testnet accessible via edge.testnet.solana.com. Runs 24/7
 
 ## Deploy process
 
@@ -240,5 +238,3 @@ problem is solved by this code?" On the other hand, if a test does fail and you
 better way to solve the same problem, a Pull Request with your solution would most certainly be
 welcome! Likewise, if rewriting a test can better communicate what code it's protecting, please
 send us that patch!
-
-

RELEASE.md

@@ -59,81 +59,90 @@ There are three release channels that map to branches as follows:
 * beta - tracks the largest (and latest) `vX.Y` stabilization branch, more stable.
 * stable - tracks the second largest `vX.Y` stabilization branch, most stable.
 
-## Release Steps
+## Steps to Create a Branch
 
-### Creating a new branch from master
-
-#### Create the new branch
-1. Pick your branch point for release on master.
-1. Create the branch.  The name should be "v" + the first 2 "version" fields
+### Create the new branch
+1. Check out the latest commit on `master` branch:
+    ```
+    git fetch --all
+    git checkout upstream/master
+    ```
+1. Determine the new branch name.  The name should be "v" + the first 2 version fields
    from Cargo.toml.  For example, a Cargo.toml with version = "0.9.0" implies
    the next branch name is "v0.9".
-    1.  Note the Cargo.toml in the repo root directory does not contain a version.  Look at any other Cargo.toml file.
-1. Create a new branch and push this branch to the solana repository.
-    1. `git checkout -b <branchname>`
-    1. `git push -u origin <branchname>`
+1. Create the new branch and push this branch to the `solana` repository:
+    ```
+    git checkout -b <branchname>
+    git push -u origin <branchname>
+    ```
 
-#### Update master with the next version
+### Update master branch with the next version
 
-1. After the new branch has been created and pushed, update Cargo.toml on **master** to the next semantic version (e.g. 0.9.0 -> 0.10.0)
-   by running `./scripts/increment-cargo-version.sh`, then rebuild with
-   `cargo build` to cause a refresh of `Cargo.lock`.
-1. Push your Cargo.toml change and the autogenerated Cargo.lock changes to the
-   master branch
+1. After the new branch has been created and pushed, update the Cargo.toml files on **master** to the next semantic version (e.g. 0.9.0 -> 0.10.0) with:
+     ```
+     scripts/increment-cargo-version.sh minor
+     ```
+1. Rebuild to get an updated version of `Cargo.lock`:
+    ```
+    cargo build
+    ```
+1. Push all the changed Cargo.toml and Cargo.lock files to the `master` branch with something like:
+    ```
+    git co -b version_update
+    git ls-files -m | xargs git add
+    git commit -m 'Update Cargo.toml versions from X.Y to X.Y+1'
+    git push -u origin version_update
+    ```
+1. Confirm that your freshly cut release branch is shown as `BETA_CHANNEL` and the previous release branch as `STABLE_CHANNEL`:
+    ```
+    ci/channel_info.sh
+    ```
 
-At this point, `ci/channel-info.sh` should show your freshly cut release branch as
-"BETA_CHANNEL" and the previous release branch as "STABLE_CHANNEL".
+## Steps to Create a Release
+
+### Create the Release Tag on GitHub
+
+1. Go to [GitHub's Releases UI](https://github.com/solana-labs/solana/releases) for tagging a release.
+1. Click "Draft new release".  The release tag must exactly match the `version`
+   field in `/Cargo.toml` prefixed by `v`.
+   1.  If the Cargo.toml verion field is **0.12.3**, then the release tag must be **v0.12.3**
+1. Make sure the Target Branch field matches the branch you want to make a release on.
+   1.  If you want to release v0.12.0, the target branch must be v0.12
+1. If this is the first release on the branch (e.g. v0.13.**0**), paste in [this
+   template](https://raw.githubusercontent.com/solana-labs/solana/master/.github/RELEASE_TEMPLATE.md).  Engineering Lead can provide summary contents for release notes if needed.
+1. Click "Save Draft", then confirm the release notes look good and the tag name and branch are correct.  Go back into edit the release and click "Publish release" when ready.
+
+### Update release branch with the next patch version
+
+1. After the new release has been tagged, update the Cargo.toml files on **release branch** to the next semantic version (e.g. 0.9.0 -> 0.9.1) with:
+     ```
+     scripts/increment-cargo-version.sh patch
+     ```
+1. Rebuild to get an updated version of `Cargo.lock`:
+    ```
+    cargo build
+    ```
+1. Push all the changed Cargo.toml and Cargo.lock files to the **release branch** with something like:
+    ```
+    git co -b version_update
+    git ls-files -m | xargs git add
+    git commit -m 'Update Cargo.toml versions from X.Y.Z to X.Y.Z+1'
+    git push -u origin version_update
+    ```
+
+### Verify release automation success
+1. Go to [Solana Releases](https://github.com/solana-labs/solana/releases) and click on the latest release that you just published.  Verify that all of the build artifacts are present.  This can take up to 90 minutes after creating the tag.
+1. The `solana-secondary` Buildkite pipeline handles creating the binary tarballs and updated crates.  Look for a job under the tag name of the release: https://buildkite.com/solana-labs/solana-secondary
+1. [Crates.io](https://crates.io/crates/solana) should have an updated Solana version.
 
 ### Update documentation
+TODO: Documentation update procedure is WIP as we move to gitbook
 
-Document the new recommended version by updating
-```export SOLANA_RELEASE=[new scheduled TESTNET_TAG value]```
-in book/src/testnet-participation.md on the release (beta) branch.
+Document the new recommended version by updating `docs/src/running-archiver.md` and `docs/src/validator-testnet.md` on the release (beta) branch to point at the `solana-install` for the upcoming release version.
 
-### Make the Release
+### Update software on devnet.solana.com
 
-We use [github's Releases UI](https://github.com/solana-labs/solana/releases) for tagging a release.
-
-1. Go [there ;)](https://github.com/solana-labs/solana/releases).
-1. Click "Draft new release".  The release tag must exactly match the `version`
-   field in `/Cargo.toml` prefixed by `v` (ie, `<branchname>.X`).
-   1.  If the Cargo.toml verion field is **0.12.3**, then the release tag must be **v0.12.3**
-1. If this is the first release on the branch (e.g. v0.13.**0**), paste in [this
-   template](https://raw.githubusercontent.com/solana-labs/solana/master/.github/RELEASE_TEMPLATE.md)
-   and fill it in.
-1. Test the release by generating a tag using semver's rules.  First try at a
-   release should be `<branchname>.X-rc.0`.
-1. Verify release automation:
-   1. [Crates.io](https://crates.io/crates/solana) should have an updated Solana version.
-1. Once the release has been made, update Cargo.toml on the release branch to the next
-   semantic version (e.g. 0.9.0 -> 0.9.1) by running
-   `./scripts/increment-cargo-version.sh patch`, then rebuild with `cargo
-   build` to cause a refresh of `Cargo.lock`.
-1. Push your Cargo.toml change and the autogenerated Cargo.lock changes to the
-   release branch.
-
-### Publish updated Book
-We maintain three copies of the "book" as official documentation:
-
-1) "Book" is the documentation for the latest official release.  This should get manually updated whenever a new release is made.  It is published here:
-https://solana-labs.github.io/book/
-
-2) "Book-edge" tracks the tip of the master branch and updates automatically.
-https://solana-labs.github.io/book-edge/
-
-3) "Book-beta" tracks the tip of the beta branch and updates automatically.
-https://solana-labs.github.io/book-beta/
-
-To manually trigger an update of the "Book", create a new job of the manual-update-book pipeline.
-Set the tag of the latest release as the PUBLISH_BOOK_TAG environment variable.
-```bash
-PUBLISH_BOOK_TAG=v0.16.6
-```
-https://buildkite.com/solana-labs/manual-update-book
-
-### Update software on testnet.solana.com
-
-The testnet running on testnet.solana.com is set to use a fixed release tag
+The testnet running on devnet.solana.com is set to use a fixed release tag
 which is set in the Buildkite testnet-management pipeline.
 This tag needs to be updated and the testnet restarted after a new release
 tag is created.
@@ -173,4 +182,4 @@ TESTNET_OP=create-and-start
 ### Alert the community
 
 Notify Discord users on #validator-support that a new release for
-testnet.solana.com is available
+devnet.solana.com is available

archiver-lib/Cargo.toml

@@ -0,0 +1,39 @@
+[package]
+name = "solana-archiver-lib"
+version = "1.0.3"
+description = "Solana Archiver Library"
+authors = ["Solana Maintainers <maintainers@solana.com>"]
+repository = "https://github.com/solana-labs/solana"
+license = "Apache-2.0"
+homepage = "https://solana.com/"
+edition = "2018"
+
+[dependencies]
+bincode = "1.2.1"
+crossbeam-channel = "0.3"
+ed25519-dalek = "=1.0.0-pre.1"
+log = "0.4.8"
+rand = "0.6.5"
+rand_chacha = "0.1.1"
+solana-client = { path = "../client", version = "1.0.3" }
+solana-storage-program = { path = "../programs/storage", version = "1.0.3" }
+thiserror = "1.0"
+serde = "1.0.104"
+serde_json = "1.0.46"
+serde_derive = "1.0.103"
+solana-net-utils = { path = "../net-utils", version = "1.0.3" }
+solana-chacha = { path = "../chacha", version = "1.0.3" }
+solana-chacha-sys = { path = "../chacha-sys", version = "1.0.3" }
+solana-ledger = { path = "../ledger", version = "1.0.3" }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-perf = { path = "../perf", version = "1.0.3" }
+solana-sdk = { path = "../sdk", version = "1.0.3" }
+solana-core = { path = "../core", version = "1.0.3" }
+solana-archiver-utils = { path = "../archiver-utils", version = "1.0.3" }
+solana-metrics = { path = "../metrics", version = "1.0.3" }
+
+[dev-dependencies]
+hex = "0.4.0"
+
+[lib]
+name = "solana_archiver_lib"

archiver-lib/src/lib.rs

@@ -0,0 +1,11 @@
+#[macro_use]
+extern crate log;
+
+#[macro_use]
+extern crate serde_derive;
+
+#[macro_use]
+extern crate solana_metrics;
+
+pub mod archiver;
+mod result;

archiver-lib/src/result.rs

@@ -0,0 +1,48 @@
+use serde_json;
+use solana_client::client_error;
+use solana_ledger::blockstore;
+use solana_sdk::transport;
+use std::any::Any;
+use thiserror::Error;
+
+#[derive(Error, Debug)]
+pub enum ArchiverError {
+    #[error("IO error")]
+    IO(#[from] std::io::Error),
+
+    #[error("blockstore error")]
+    BlockstoreError(#[from] blockstore::BlockstoreError),
+
+    #[error("crossbeam error")]
+    CrossbeamSendError(#[from] crossbeam_channel::SendError<u64>),
+
+    #[error("send error")]
+    SendError(#[from] std::sync::mpsc::SendError<u64>),
+
+    #[error("join error")]
+    JoinError(Box<dyn Any + Send + 'static>),
+
+    #[error("transport error")]
+    TransportError(#[from] transport::TransportError),
+
+    #[error("client error")]
+    ClientError(#[from] client_error::ClientError),
+
+    #[error("Json parsing error")]
+    JsonError(#[from] serde_json::error::Error),
+
+    #[error("Storage account has no balance")]
+    EmptyStorageAccountBalance,
+
+    #[error("No RPC peers..")]
+    NoRpcPeers,
+
+    #[error("Couldn't download full segment")]
+    SegmentDownloadError,
+}
+
+impl std::convert::From<Box<dyn Any + Send + 'static>> for ArchiverError {
+    fn from(e: Box<dyn Any + Send + 'static>) -> ArchiverError {
+        ArchiverError::JoinError(e)
+    }
+}

archiver-utils/Cargo.toml

@@ -0,0 +1,25 @@
+[package]
+name = "solana-archiver-utils"
+version = "1.0.3"
+description = "Solana Archiver Utils"
+authors = ["Solana Maintainers <maintainers@solana.com>"]
+repository = "https://github.com/solana-labs/solana"
+license = "Apache-2.0"
+homepage = "https://solana.com/"
+edition = "2018"
+
+[dependencies]
+log = "0.4.8"
+rand = "0.6.5"
+solana-chacha = { path = "../chacha", version = "1.0.3" }
+solana-chacha-sys = { path = "../chacha-sys", version = "1.0.3" }
+solana-ledger = { path = "../ledger", version = "1.0.3" }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-perf = { path = "../perf", version = "1.0.3" }
+solana-sdk = { path = "../sdk", version = "1.0.3" }
+
+[dev-dependencies]
+hex = "0.4.0"
+
+[lib]
+name = "solana_archiver_utils"

archiver-utils/src/lib.rs

@@ -0,0 +1,120 @@
+#[macro_use]
+extern crate log;
+
+use solana_sdk::hash::{Hash, Hasher};
+use std::fs::File;
+use std::io::{self, BufReader, ErrorKind, Read, Seek, SeekFrom};
+use std::mem::size_of;
+use std::path::Path;
+
+pub fn sample_file(in_path: &Path, sample_offsets: &[u64]) -> io::Result<Hash> {
+    let in_file = File::open(in_path)?;
+    let metadata = in_file.metadata()?;
+    let mut buffer_file = BufReader::new(in_file);
+
+    let mut hasher = Hasher::default();
+    let sample_size = size_of::<Hash>();
+    let sample_size64 = sample_size as u64;
+    let mut buf = vec![0; sample_size];
+
+    let file_len = metadata.len();
+    if file_len < sample_size64 {
+        return Err(io::Error::new(ErrorKind::Other, "file too short!"));
+    }
+    for offset in sample_offsets {
+        if *offset > (file_len - sample_size64) / sample_size64 {
+            return Err(io::Error::new(ErrorKind::Other, "offset too large"));
+        }
+        buffer_file.seek(SeekFrom::Start(*offset * sample_size64))?;
+        trace!("sampling @ {} ", *offset);
+        match buffer_file.read(&mut buf) {
+            Ok(size) => {
+                assert_eq!(size, buf.len());
+                hasher.hash(&buf);
+            }
+            Err(e) => {
+                warn!("Error sampling file");
+                return Err(e);
+            }
+        }
+    }
+
+    Ok(hasher.result())
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+    use rand::{thread_rng, Rng};
+    use std::fs::{create_dir_all, remove_file};
+    use std::io::Write;
+    use std::path::PathBuf;
+
+    extern crate hex;
+
+    fn tmp_file_path(name: &str) -> PathBuf {
+        use std::env;
+        let out_dir = env::var("FARF_DIR").unwrap_or_else(|_| "farf".to_string());
+        let mut rand_bits = [0u8; 32];
+        thread_rng().fill(&mut rand_bits[..]);
+
+        let mut path = PathBuf::new();
+        path.push(out_dir);
+        path.push("tmp");
+        create_dir_all(&path).unwrap();
+
+        path.push(format!("{}-{:?}", name, hex::encode(rand_bits)));
+        println!("path: {:?}", path);
+        path
+    }
+
+    #[test]
+    fn test_sample_file() {
+        solana_logger::setup();
+        let in_path = tmp_file_path("test_sample_file_input.txt");
+        let num_strings = 4096;
+        let string = "12foobar";
+        {
+            let mut in_file = File::create(&in_path).unwrap();
+            for _ in 0..num_strings {
+                in_file.write(string.as_bytes()).unwrap();
+            }
+        }
+        let num_samples = (string.len() * num_strings / size_of::<Hash>()) as u64;
+        let samples: Vec<_> = (0..num_samples).collect();
+        let res = sample_file(&in_path, samples.as_slice());
+        let ref_hash: Hash = Hash::new(&[
+            173, 251, 182, 165, 10, 54, 33, 150, 133, 226, 106, 150, 99, 192, 179, 1, 230, 144,
+            151, 126, 18, 191, 54, 67, 249, 140, 230, 160, 56, 30, 170, 52,
+        ]);
+        let res = res.unwrap();
+        assert_eq!(res, ref_hash);
+
+        // Sample just past the end
+        assert!(sample_file(&in_path, &[num_samples]).is_err());
+        remove_file(&in_path).unwrap();
+    }
+
+    #[test]
+    fn test_sample_file_invalid_offset() {
+        let in_path = tmp_file_path("test_sample_file_invalid_offset_input.txt");
+        {
+            let mut in_file = File::create(&in_path).unwrap();
+            for _ in 0..4096 {
+                in_file.write("123456foobar".as_bytes()).unwrap();
+            }
+        }
+        let samples = [0, 200000];
+        let res = sample_file(&in_path, &samples);
+        assert!(res.is_err());
+        remove_file(in_path).unwrap();
+    }
+
+    #[test]
+    fn test_sample_file_missing_file() {
+        let in_path = tmp_file_path("test_sample_file_that_doesnt_exist.txt");
+        let samples = [0, 5];
+        let res = sample_file(&in_path, &samples);
+        assert!(res.is_err());
+    }
+}

archiver/Cargo.toml

@@ -0,0 +1,20 @@
+[package]
+authors = ["Solana Maintainers <maintainers@solana.com>"]
+edition = "2018"
+name = "solana-archiver"
+version = "1.0.3"
+repository = "https://github.com/solana-labs/solana"
+license = "Apache-2.0"
+homepage = "https://solana.com/"
+
+[dependencies]
+clap = "2.33.0"
+console = "0.9.2"
+solana-clap-utils = { path = "../clap-utils", version = "1.0.3" }
+solana-core = { path = "../core", version = "1.0.3" }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-metrics = { path = "../metrics", version = "1.0.3" }
+solana-archiver-lib = { path = "../archiver-lib", version = "1.0.3" }
+solana-net-utils = { path = "../net-utils", version = "1.0.3" }
+solana-sdk = { path = "../sdk", version = "1.0.3" }
+

archiver/src/main.rs

@@ -0,0 +1,153 @@
+use clap::{crate_description, crate_name, App, Arg};
+use console::style;
+use solana_archiver_lib::archiver::Archiver;
+use solana_clap_utils::{
+    input_validators::is_keypair,
+    keypair::{
+        self, keypair_input, KeypairWithSource, ASK_SEED_PHRASE_ARG,
+        SKIP_SEED_PHRASE_VALIDATION_ARG,
+    },
+};
+use solana_core::{
+    cluster_info::{Node, VALIDATOR_PORT_RANGE},
+    contact_info::ContactInfo,
+};
+use solana_sdk::{commitment_config::CommitmentConfig, signature::Signer};
+use std::{
+    net::{IpAddr, Ipv4Addr, SocketAddr},
+    path::PathBuf,
+    process::exit,
+    sync::Arc,
+};
+
+fn main() {
+    solana_logger::setup();
+
+    let matches = App::new(crate_name!())
+        .about(crate_description!())
+        .version(solana_clap_utils::version!())
+        .arg(
+            Arg::with_name("identity_keypair")
+                .short("i")
+                .long("identity-keypair")
+                .value_name("PATH")
+                .takes_value(true)
+                .validator(is_keypair)
+                .help("File containing an identity (keypair)"),
+        )
+        .arg(
+            Arg::with_name("entrypoint")
+                .short("n")
+                .long("entrypoint")
+                .value_name("HOST:PORT")
+                .takes_value(true)
+                .required(true)
+                .validator(solana_net_utils::is_host_port)
+                .help("Rendezvous with the cluster at this entry point"),
+        )
+        .arg(
+            Arg::with_name("ledger")
+                .short("l")
+                .long("ledger")
+                .value_name("DIR")
+                .takes_value(true)
+                .required(true)
+                .help("use DIR as persistent ledger location"),
+        )
+        .arg(
+            Arg::with_name("storage_keypair")
+                .short("s")
+                .long("storage-keypair")
+                .value_name("PATH")
+                .takes_value(true)
+                .validator(is_keypair)
+                .help("File containing the storage account keypair"),
+        )
+        .arg(
+            Arg::with_name(ASK_SEED_PHRASE_ARG.name)
+                .long(ASK_SEED_PHRASE_ARG.long)
+                .value_name("KEYPAIR NAME")
+                .multiple(true)
+                .takes_value(true)
+                .possible_values(&["identity-keypair", "storage-keypair"])
+                .help(ASK_SEED_PHRASE_ARG.help),
+        )
+        .arg(
+            Arg::with_name(SKIP_SEED_PHRASE_VALIDATION_ARG.name)
+                .long(SKIP_SEED_PHRASE_VALIDATION_ARG.long)
+                .requires(ASK_SEED_PHRASE_ARG.name)
+                .help(SKIP_SEED_PHRASE_VALIDATION_ARG.help),
+        )
+        .get_matches();
+
+    let ledger_path = PathBuf::from(matches.value_of("ledger").unwrap());
+
+    let identity_keypair = keypair_input(&matches, "identity_keypair")
+        .unwrap_or_else(|err| {
+            eprintln!("Identity keypair input failed: {}", err);
+            exit(1);
+        })
+        .keypair;
+    let KeypairWithSource {
+        keypair: storage_keypair,
+        source: storage_keypair_source,
+    } = keypair_input(&matches, "storage_keypair").unwrap_or_else(|err| {
+        eprintln!("Storage keypair input failed: {}", err);
+        exit(1);
+    });
+    if storage_keypair_source == keypair::Source::Generated {
+        clap::Error::with_description(
+            "The `storage-keypair` argument was not found",
+            clap::ErrorKind::ArgumentNotFound,
+        )
+        .exit();
+    }
+
+    let entrypoint_addr = matches
+        .value_of("entrypoint")
+        .map(|entrypoint| {
+            solana_net_utils::parse_host_port(entrypoint)
+                .expect("failed to parse entrypoint address")
+        })
+        .unwrap();
+
+    let gossip_addr = {
+        let ip = solana_net_utils::get_public_ip_addr(&entrypoint_addr).unwrap();
+        let mut addr = SocketAddr::new(ip, 0);
+        addr.set_ip(solana_net_utils::get_public_ip_addr(&entrypoint_addr).unwrap());
+        addr
+    };
+    let node = Node::new_archiver_with_external_ip(
+        &identity_keypair.pubkey(),
+        &gossip_addr,
+        VALIDATOR_PORT_RANGE,
+        IpAddr::V4(Ipv4Addr::new(0, 0, 0, 0)),
+    );
+
+    println!(
+        "{} version {} (branch={}, commit={})",
+        style(crate_name!()).bold(),
+        solana_clap_utils::version!(),
+        option_env!("CI_BRANCH").unwrap_or("unknown"),
+        option_env!("CI_COMMIT").unwrap_or("unknown")
+    );
+    solana_metrics::set_host_id(identity_keypair.pubkey().to_string());
+    println!(
+        "replicating the data with identity_keypair={:?} gossip_addr={:?}",
+        identity_keypair.pubkey(),
+        gossip_addr
+    );
+
+    let entrypoint_info = ContactInfo::new_gossip_entry_point(&entrypoint_addr);
+    let archiver = Archiver::new(
+        &ledger_path,
+        node,
+        entrypoint_info,
+        Arc::new(identity_keypair),
+        Arc::new(storage_keypair),
+        CommitmentConfig::recent(),
+    )
+    .unwrap();
+
+    archiver.join();
+}

banking-bench/Cargo.toml

@@ -0,0 +1,20 @@
+[package]
+authors = ["Solana Maintainers <maintainers@solana.com>"]
+edition = "2018"
+name = "solana-banking-bench"
+version = "1.0.3"
+repository = "https://github.com/solana-labs/solana"
+license = "Apache-2.0"
+homepage = "https://solana.com/"
+
+[dependencies]
+log = "0.4.6"
+rayon = "1.2.0"
+solana-core = { path = "../core", version = "1.0.3" }
+solana-ledger = { path = "../ledger", version = "1.0.3" }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-runtime = { path = "../runtime", version = "1.0.3" }
+solana-measure = { path = "../measure", version = "1.0.3" }
+solana-sdk = { path = "../sdk", version = "1.0.3" }
+rand = "0.6.5"
+crossbeam-channel = "0.3"

banking-bench/src/main.rs

@@ -0,0 +1,306 @@
+use crossbeam_channel::unbounded;
+use log::*;
+use rand::{thread_rng, Rng};
+use rayon::prelude::*;
+use solana_core::banking_stage::{create_test_recorder, BankingStage};
+use solana_core::cluster_info::ClusterInfo;
+use solana_core::cluster_info::Node;
+use solana_core::genesis_utils::{create_genesis_config, GenesisConfigInfo};
+use solana_core::packet::to_packets_chunked;
+use solana_core::poh_recorder::PohRecorder;
+use solana_core::poh_recorder::WorkingBankEntry;
+use solana_ledger::bank_forks::BankForks;
+use solana_ledger::{blockstore::Blockstore, get_tmp_ledger_path};
+use solana_measure::measure::Measure;
+use solana_runtime::bank::Bank;
+use solana_sdk::hash::Hash;
+use solana_sdk::pubkey::Pubkey;
+use solana_sdk::signature::Keypair;
+use solana_sdk::signature::Signature;
+use solana_sdk::system_transaction;
+use solana_sdk::timing::{duration_as_us, timestamp};
+use solana_sdk::transaction::Transaction;
+use std::sync::atomic::Ordering;
+use std::sync::mpsc::Receiver;
+use std::sync::{Arc, Mutex, RwLock};
+use std::thread::sleep;
+use std::time::{Duration, Instant};
+
+fn check_txs(
+    receiver: &Arc<Receiver<WorkingBankEntry>>,
+    ref_tx_count: usize,
+    poh_recorder: &Arc<Mutex<PohRecorder>>,
+) -> bool {
+    let mut total = 0;
+    let now = Instant::now();
+    let mut no_bank = false;
+    loop {
+        if let Ok((_bank, (entry, _tick_height))) = receiver.recv_timeout(Duration::from_millis(10))
+        {
+            total += entry.transactions.len();
+        }
+        if total >= ref_tx_count {
+            break;
+        }
+        if now.elapsed().as_secs() > 60 {
+            break;
+        }
+        if poh_recorder.lock().unwrap().bank().is_none() {
+            trace!("no bank");
+            no_bank = true;
+            break;
+        }
+    }
+    if !no_bank {
+        assert!(total >= ref_tx_count);
+    }
+    no_bank
+}
+
+fn make_accounts_txs(txes: usize, mint_keypair: &Keypair, hash: Hash) -> Vec<Transaction> {
+    let to_pubkey = Pubkey::new_rand();
+    let dummy = system_transaction::transfer(mint_keypair, &to_pubkey, 1, hash);
+    (0..txes)
+        .into_par_iter()
+        .map(|_| {
+            let mut new = dummy.clone();
+            let sig: Vec<u8> = (0..64).map(|_| thread_rng().gen()).collect();
+            new.message.account_keys[0] = Pubkey::new_rand();
+            new.message.account_keys[1] = Pubkey::new_rand();
+            new.signatures = vec![Signature::new(&sig[0..64])];
+            new
+        })
+        .collect()
+}
+
+struct Config {
+    packets_per_batch: usize,
+    chunk_len: usize,
+    num_threads: usize,
+}
+
+impl Config {
+    fn get_transactions_index(&self, chunk_index: usize) -> usize {
+        chunk_index * (self.chunk_len / self.num_threads) * self.packets_per_batch
+    }
+}
+
+fn bytes_as_usize(bytes: &[u8]) -> usize {
+    bytes[0] as usize | (bytes[1] as usize) << 8
+}
+
+fn main() {
+    solana_logger::setup();
+    let num_threads = BankingStage::num_threads() as usize;
+    //   a multiple of packet chunk duplicates to avoid races
+    const CHUNKS: usize = 8 * 2;
+    const PACKETS_PER_BATCH: usize = 192;
+    let txes = PACKETS_PER_BATCH * num_threads * CHUNKS;
+    let mint_total = 1_000_000_000_000;
+    let GenesisConfigInfo {
+        genesis_config,
+        mint_keypair,
+        ..
+    } = create_genesis_config(mint_total);
+
+    let (verified_sender, verified_receiver) = unbounded();
+    let (vote_sender, vote_receiver) = unbounded();
+    let bank0 = Bank::new(&genesis_config);
+    let mut bank_forks = BankForks::new(0, bank0);
+    let mut bank = bank_forks.working_bank();
+
+    info!("threads: {} txs: {}", num_threads, txes);
+
+    let mut transactions = make_accounts_txs(txes, &mint_keypair, genesis_config.hash());
+
+    // fund all the accounts
+    transactions.iter().for_each(|tx| {
+        let fund = system_transaction::transfer(
+            &mint_keypair,
+            &tx.message.account_keys[0],
+            mint_total / txes as u64,
+            genesis_config.hash(),
+        );
+        let x = bank.process_transaction(&fund);
+        x.unwrap();
+    });
+    //sanity check, make sure all the transactions can execute sequentially
+    transactions.iter().for_each(|tx| {
+        let res = bank.process_transaction(&tx);
+        assert!(res.is_ok(), "sanity test transactions");
+    });
+    bank.clear_signatures();
+    //sanity check, make sure all the transactions can execute in parallel
+    let res = bank.process_transactions(&transactions);
+    for r in res {
+        assert!(r.is_ok(), "sanity parallel execution");
+    }
+    bank.clear_signatures();
+    let mut verified: Vec<_> = to_packets_chunked(&transactions.clone(), PACKETS_PER_BATCH);
+    let ledger_path = get_tmp_ledger_path!();
+    {
+        let blockstore = Arc::new(
+            Blockstore::open(&ledger_path).expect("Expected to be able to open database ledger"),
+        );
+        let (exit, poh_recorder, poh_service, signal_receiver) =
+            create_test_recorder(&bank, &blockstore, None);
+        let cluster_info = ClusterInfo::new_with_invalid_keypair(Node::new_localhost().info);
+        let cluster_info = Arc::new(RwLock::new(cluster_info));
+        let banking_stage = BankingStage::new(
+            &cluster_info,
+            &poh_recorder,
+            verified_receiver,
+            vote_receiver,
+            None,
+        );
+        poh_recorder.lock().unwrap().set_bank(&bank);
+
+        let chunk_len = verified.len() / CHUNKS;
+        let mut start = 0;
+
+        // This is so that the signal_receiver does not go out of scope after the closure.
+        // If it is dropped before poh_service, then poh_service will error when
+        // calling send() on the channel.
+        let signal_receiver = Arc::new(signal_receiver);
+        let mut total_us = 0;
+        let mut tx_total_us = 0;
+        let mut txs_processed = 0;
+        let mut root = 1;
+        let collector = Pubkey::new_rand();
+        const ITERS: usize = 1_000;
+        let config = Config {
+            packets_per_batch: PACKETS_PER_BATCH,
+            chunk_len,
+            num_threads,
+        };
+        let mut total_sent = 0;
+        for _ in 0..ITERS {
+            let now = Instant::now();
+            let mut sent = 0;
+
+            for (i, v) in verified[start..start + chunk_len]
+                .chunks(chunk_len / num_threads)
+                .enumerate()
+            {
+                let mut byte = 0;
+                let index = config.get_transactions_index(start + i);
+                if index < transactions.len() {
+                    byte = bytes_as_usize(transactions[index].signatures[0].as_ref());
+                }
+                trace!(
+                    "sending... {}..{} {} v.len: {} sig: {} transactions.len: {} index: {}",
+                    start + i,
+                    start + chunk_len,
+                    timestamp(),
+                    v.len(),
+                    byte,
+                    transactions.len(),
+                    index,
+                );
+                for xv in v {
+                    sent += xv.packets.len();
+                }
+                verified_sender.send(v.to_vec()).unwrap();
+            }
+            let start_tx_index = config.get_transactions_index(start);
+            let end_tx_index = config.get_transactions_index(start + chunk_len);
+            for tx in &transactions[start_tx_index..end_tx_index] {
+                loop {
+                    if bank.get_signature_status(&tx.signatures[0]).is_some() {
+                        break;
+                    }
+                    if poh_recorder.lock().unwrap().bank().is_none() {
+                        break;
+                    }
+                    sleep(Duration::from_millis(5));
+                }
+            }
+            if check_txs(&signal_receiver, txes / CHUNKS, &poh_recorder) {
+                debug!(
+                    "resetting bank {} tx count: {} txs_proc: {}",
+                    bank.slot(),
+                    bank.transaction_count(),
+                    txs_processed
+                );
+                assert!(txs_processed < bank.transaction_count());
+                txs_processed = bank.transaction_count();
+                tx_total_us += duration_as_us(&now.elapsed());
+
+                let mut poh_time = Measure::start("poh_time");
+                poh_recorder.lock().unwrap().reset(
+                    bank.last_blockhash(),
+                    bank.slot(),
+                    Some((bank.slot(), bank.slot() + 1)),
+                );
+                poh_time.stop();
+
+                let mut new_bank_time = Measure::start("new_bank");
+                let new_bank = Bank::new_from_parent(&bank, &collector, bank.slot() + 1);
+                new_bank_time.stop();
+
+                let mut insert_time = Measure::start("insert_time");
+                bank_forks.insert(new_bank);
+                bank = bank_forks.working_bank();
+                insert_time.stop();
+
+                poh_recorder.lock().unwrap().set_bank(&bank);
+                assert!(poh_recorder.lock().unwrap().bank().is_some());
+                if bank.slot() > 32 {
+                    bank_forks.set_root(root, &None);
+                    root += 1;
+                }
+                debug!(
+                    "new_bank_time: {}us insert_time: {}us poh_time: {}us",
+                    new_bank_time.as_us(),
+                    insert_time.as_us(),
+                    poh_time.as_us(),
+                );
+            } else {
+                tx_total_us += duration_as_us(&now.elapsed());
+            }
+
+            // This signature clear may not actually clear the signatures
+            // in this chunk, but since we rotate between CHUNKS then
+            // we should clear them by the time we come around again to re-use that chunk.
+            bank.clear_signatures();
+            total_us += duration_as_us(&now.elapsed());
+            debug!(
+                "time: {} us checked: {} sent: {}",
+                duration_as_us(&now.elapsed()),
+                txes / CHUNKS,
+                sent,
+            );
+            total_sent += sent;
+
+            if bank.slot() > 0 && bank.slot() % 16 == 0 {
+                for tx in transactions.iter_mut() {
+                    tx.message.recent_blockhash = bank.last_blockhash();
+                    let sig: Vec<u8> = (0..64).map(|_| thread_rng().gen()).collect();
+                    tx.signatures[0] = Signature::new(&sig[0..64]);
+                }
+                verified = to_packets_chunked(&transactions.clone(), PACKETS_PER_BATCH);
+            }
+
+            start += chunk_len;
+            start %= verified.len();
+        }
+        eprintln!(
+            "{{'name': 'banking_bench_total', 'median': '{}'}}",
+            (1000.0 * 1000.0 * total_sent as f64) / (total_us as f64),
+        );
+        eprintln!(
+            "{{'name': 'banking_bench_tx_total', 'median': '{}'}}",
+            (1000.0 * 1000.0 * total_sent as f64) / (tx_total_us as f64),
+        );
+
+        drop(verified_sender);
+        drop(vote_sender);
+        exit.store(true, Ordering::Relaxed);
+        banking_stage.join().unwrap();
+        debug!("waited for banking_stage");
+        poh_service.join().unwrap();
+        sleep(Duration::from_secs(1));
+        debug!("waited for poh_service");
+    }
+    let _unused = Blockstore::destroy(&ledger_path);
+}

bench-exchange/Cargo.toml

@@ -2,41 +2,33 @@
 authors = ["Solana Maintainers <maintainers@solana.com>"]
 edition = "2018"
 name = "solana-bench-exchange"
-version = "0.17.0"
+version = "1.0.3"
 repository = "https://github.com/solana-labs/solana"
 license = "Apache-2.0"
 homepage = "https://solana.com/"
 publish = false
 
 [dependencies]
-bincode = "1.1.4"
-bs58 = "0.2.0"
 clap = "2.32.0"
-env_logger = "0.6.2"
-itertools = "0.8.0"
-log = "0.4.7"
-num-derive = "0.2"
+itertools = "0.8.2"
+log = "0.4.8"
+num-derive = "0.3"
 num-traits = "0.2"
 rand = "0.6.5"
-rayon = "1.1.0"
-serde = "1.0.97"
-serde_derive = "1.0.97"
-serde_json = "1.0.40"
-serde_yaml = "0.8.9"
-# solana-runtime = { path = "../solana/runtime"}
-solana = { path = "../core", version = "0.17.0" }
-solana-client = { path = "../client", version = "0.17.0" }
-solana-drone = { path = "../drone", version = "0.17.0" }
-solana-exchange-api = { path = "../programs/exchange_api", version = "0.17.0" }
-solana-exchange-program = { path = "../programs/exchange_program", version = "0.17.0" }
-solana-logger = { path = "../logger", version = "0.17.0" }
-solana-metrics = { path = "../metrics", version = "0.17.0" }
-solana-netutil = { path = "../netutil", version = "0.17.0" }
-solana-runtime = { path = "../runtime", version = "0.17.0" }
-solana-sdk = { path = "../sdk", version = "0.17.0" }
-untrusted = "0.7.0"
-ws = "0.8.1"
-
-[features]
-cuda = ["solana/cuda"]
+rayon = "1.2.0"
+serde_json = "1.0.46"
+serde_yaml = "0.8.11"
+solana-clap-utils = { path = "../clap-utils", version = "1.0.3" }
+solana-core = { path = "../core", version = "1.0.3" }
+solana-genesis = { path = "../genesis", version = "1.0.3" }
+solana-client = { path = "../client", version = "1.0.3" }
+solana-faucet = { path = "../faucet", version = "1.0.3" }
+solana-exchange-program = { path = "../programs/exchange", version = "1.0.3" }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-metrics = { path = "../metrics", version = "1.0.3" }
+solana-net-utils = { path = "../net-utils", version = "1.0.3" }
+solana-runtime = { path = "../runtime", version = "1.0.3" }
+solana-sdk = { path = "../sdk", version = "1.0.3" }
 
+[dev-dependencies]
+solana-local-cluster = { path = "../local-cluster", version = "1.0.3" }

bench-exchange/README.md

@@ -23,7 +23,7 @@ demo demonstrates one way to host an exchange on the Solana blockchain by
 emulating a currency exchange.
 
 The assets are virtual tokens held by investors who may post order requests to
-the exchange.  A Swapper monitors the exchange and posts swap requests for
+the exchange.  A Matcher monitors the exchange and posts swap requests for
 matching orders.  All the transactions can execute concurrently.
 
 ## Premise
@@ -42,30 +42,26 @@ matching orders.  All the transactions can execute concurrently.
   - A request to create a token account
 - Token request
   - A request to deposit tokens of a particular type into a token account.
-- Token pair
-  - A unique ordered list of two tokens.  For the four types of tokens used in
-    this demo, the valid pairs are AB, AC, AD, BC, BD, CD.
-- Direction of trade
-  - Describes which token in the pair the investor wants to sell and buy and can
-    be either "To" or "From".  For example, if an investor issues a "To" trade
-    for "AB" then they which to exchange A tokens to B tokens.  A "From" order
-    would read the other way,  A tokens from B tokens.
+- Asset pair
+  - A struct with fields Base and Quote, representing the two assets which make up a 
+    trading pair,  which themselves are Tokens. The Base or 'primary' asset is the
+    numerator and the Quote is the denominator for pricing purposes.
+- Order side
+  - Describes which side of the market an investor wants to place a trade on. Options
+    are "Bid" or "Ask", where a bid represents an offer to purchase the Base asset of
+    the AssetPair for a sum of the Quote Asset and an Ask is an offer to sell Base asset
+    for the Quote asset.
 - Price ratio
-  -  An expression of the relative prices of two tokens.  They consist of the
-     price of the primary token and the price of the secondary token.  For
-     simplicity sake, the primary token's price is always 1, which forces the
-     secondary to be the common denominator.  For example, if token A was worth
-     2 and token B was worth 6, the price ratio would be 1:3 or just 3.  Price
-     ratios are represented as fixed point numbers.  The fixed point scaler is
-     defined in
+  -  An expression of the relative prices of two tokens. Calculated with the Base
+     Asset as the numerator and the Quote Asset as the denominator. Ratios are 
+     represented as fixed point numbers.  The fixed point scaler is defined in
      [exchange_state.rs](https://github.com/solana-labs/solana/blob/c2fdd1362a029dcf89c8907c562d2079d977df11/programs/exchange_api/src/exchange_state.rs#L7)
 - Order request
-  - A Solana transaction executed by the exchange requesting the trade of one
-    type of token for another.  order requests are made up of the token pair,
-    the direction of the trade, quantity of the primary token, the price ratio,
-    and the two token accounts to be credited/deducted.  An example trade
-    request looks like "T AB 5 2" which reads "Exchange 5 A tokens to B tokens
-    at a price ratio of 1:2"  A fulfilled trade would result in 5 A tokens
+  - A Solana transaction sent by a trader to the exchange to submit an order. 
+    Order requests are made up of the token pair, the order side (bid or ask),
+    quantity of the primary token, the price ratio, and the two token accounts
+    to be credited/deducted.  An example trade request looks like "T AB 5 2" 
+    which reads "Exchange 5 A tokens to B tokens at a price ratio of 1:2"  A fulfilled trade would result in 5 A tokens
     deducted and 10 B tokens credited to the trade initiator's token accounts.
     Successful order requests result in an order.
 - Order
@@ -75,59 +71,62 @@ matching orders.  All the transactions can execute concurrently.
     contain the same information as the order request.
 - Price spread
   - The difference between the two matching orders. The spread is the
-    profit of the Swapper initiating the swap request.
-- Swap requirements
+    profit of the Matcher initiating the swap request.
+- Match requirements
   - Policies that result in a successful trade swap.
-- Swap request
-  - A request to exchange tokens between to orders
-- Trade swap
-  - A successful trade.  A swap consists of two matching orders that meet
-    swap requirements.  A trade swap may not wholly satisfy one or both of the
-    orders in which case the orders are adjusted appropriately.  As
-    long as the swap requirements are met there will be an exchange of tokens
-    between accounts.  Any price spread is deposited into the Swapper's profit
-    account.  All trade swaps are recorded in a new account for posterity.
+- Match request
+  - A request to fill two complementary orders (bid/ask), resulting if successful,
+    in a trade being created.
+- Trade
+  - A successful trade is created from two matching orders that meet
+    swap requirements which are submitted in a Match Request by a Matcher and
+    executed by the exchange. A trade may not wholly satisfy one or both of the
+    orders in which case the orders are adjusted appropriately. Upon execution,
+    tokens are distributed to the traders' accounts and any overlap or 
+    "negative spread" between orders is deposited into the Matcher's profit
+    account.  All successful trades are recorded in the data of a new solana 
+    account for posterity.
 - Investor
   - Individual investors who hold a number of tokens and wish to trade them on
     the exchange.  Investors operate as Solana thin clients who own a set of
     accounts containing tokens and/or order requests.  Investors post
     transactions to the exchange in order to request tokens and post or cancel
     order requests.
-- Swapper
-  - An agent who facilitates trading between investors.  Swappers operate as
+- Matcher
+  - An agent who facilitates trading between investors.  Matchers operate as
     Solana thin clients who monitor all the orders looking for a trade
-    match.  Once found, the Swapper issues a swap request to the exchange.
-    Swappers are the engine of the exchange and are rewarded for their efforts by
-    accumulating the price spreads of the swaps they initiate.  Swappers also
+    match.  Once found, the Matcher issues a swap request to the exchange.
+    Matchers are the engine of the exchange and are rewarded for their efforts by
+    accumulating the price spreads of the swaps they initiate.  Matchers also
     provide current bid/ask price and OHLCV (Open, High, Low, Close, Volume)
     information on demand via a public network port.
 - Transaction fees
   - Solana transaction fees are paid for by the transaction submitters who are
-    the Investors and Swappers.
+    the Investors and Matchers.
 
 ## Exchange startup
 
 The exchange is up and running when it reaches a state where it can take
-investor's trades and Swapper's swap requests.  To achieve this state the
+investors' trades and Matchers' match requests.  To achieve this state the
 following must occur in order:
 
 - Start the Solana blockchain
-- Start the Swapper thin-client
-- The Swapper subscribes to change notifications for all the accounts owned by
+- Start the  thin-client
+- The Matcher subscribes to change notifications for all the accounts owned by
   the exchange program id.  The subscription is managed via Solana's JSON RPC
   interface.
-- The Swapper starts responding to queries for bid/ask price and OHLCV
+- The Matcher starts responding to queries for bid/ask price and OHLCV
 
-The Swapper responding successfully to price and OHLCV requests is the signal to
+The Matcher responding successfully to price and OHLCV requests is the signal to
 the investors that trades submitted after that point will be analyzed.  <!--This
 is not ideal, and instead investors should be able to submit trades at any time,
-and the Swapper could come and go without missing a trade.  One way to achieve
-this is for the Swapper to read the current state of all accounts looking for all
+and the Matcher could come and go without missing a trade.  One way to achieve
+this is for the Matcher to read the current state of all accounts looking for all
 open orders.-->
 
 Investors will initially query the exchange to discover their current balance
 for each type of token.  If the investor does not already have an account for
-each type of token, they will submit account requests.  Swappers as well will
+each type of token, they will submit account requests.  Matcher as well will
 request accounts to hold the tokens they earn by initiating trade swaps.
 
 ```rust
@@ -165,7 +164,7 @@ pub struct TokenAccountInfo {
 }
 ```
 
-For this demo investors or Swappers can request more tokens from the exchange at
+For this demo investors or Matcher can request more tokens from the exchange at
 any time by submitting token requests. In non-demos, an exchange of this type
 would provide another way to exchange a 3rd party asset into tokens.
 
@@ -269,10 +268,10 @@ pub enum ExchangeInstruction {
 
 ## Trade swaps
 
-The Swapper is monitoring the accounts assigned to the exchange program and
+The Matcher is monitoring the accounts assigned to the exchange program and
 building a trade-order table.  The order table is used to identify
 matching orders which could be fulfilled.  When a match is found the
-Swapper should issue a swap request.  Swap requests may not satisfy the entirety
+Matcher should issue a swap request.  Swap requests may not satisfy the entirety
 of either order, but the exchange will greedily fulfill it.  Any leftover tokens
 in either account will keep the order valid for further swap requests in
 the future.
@@ -310,14 +309,14 @@ whole for clarity.
 | 5 | 1 T AB 2 10 | 2 F AB 1 5 |
 
 As part of a successful swap request, the exchange will credit tokens to the
-Swapper's account equal to the difference in the price ratios or the two orders.
-These tokens are considered the Swapper's profit for initiating the trade.
+Matcher's account equal to the difference in the price ratios or the two orders.
+These tokens are considered the Matcher's profit for initiating the trade.
 
-The Swapper would initiate the following swap on the order table above:
+The Matcher would initiate the following swap on the order table above:
 
   - Row 1, To:   Investor 1 trades 2 A tokens to 8 B tokens
   - Row 1, From: Investor 2 trades 2 A tokens from 8 B tokens
-  - Swapper takes 8 B tokens as profit
+  - Matcher takes 8 B tokens as profit
 
 Both row 1 trades are fully realized, table becomes:
 
@@ -328,11 +327,11 @@ Both row 1 trades are fully realized, table becomes:
 | 3 | 1 T AB 2 8  | 2 F AB 3 6 |
 | 4 | 1 T AB 2 10 | 2 F AB 1 5 |
 
-The Swapper would initiate the following swap:
+The Matcher would initiate the following swap:
 
   - Row 1, To:   Investor 1 trades 1 A token to 4 B tokens
   - Row 1, From: Investor 2 trades 1 A token from 4 B tokens
-  - Swapper takes 4 B tokens as profit
+  - Matcher takes 4 B tokens as profit
 
 Row 1 From is not fully realized, table becomes:
 
@@ -343,11 +342,11 @@ Row 1 From is not fully realized, table becomes:
 | 3 | 1 T AB 2 10 | 2 F AB 3 6 |
 | 4 |             | 2 F AB 1 5 |
 
-The Swapper would initiate the following swap:
+The Matcher would initiate the following swap:
 
   - Row 1, To:   Investor 1 trades 1 A token to 6 B tokens
   - Row 1, From: Investor 2 trades 1 A token from 6 B tokens
-  - Swapper takes 2 B tokens as profit
+  - Matcher takes 2 B tokens as profit
 
 Row 1 To is now fully realized, table becomes:
 
@@ -357,11 +356,11 @@ Row 1 To is now fully realized, table becomes:
 | 2 | 1 T AB 2 8  | 2 F AB 3 5 |
 | 3 | 1 T AB 2 10 | 2 F AB 1 5 |
 
-The Swapper would initiate the following last swap:
+The Matcher would initiate the following last swap:
 
   - Row 1, To:   Investor 1 trades 2 A token to 12 B tokens
   - Row 1, From: Investor 2 trades 2 A token from 12 B tokens
-  - Swapper takes 4 B tokens as profit
+  - Matcher takes 2 B tokens as profit
 
 Table becomes:
 
@@ -383,7 +382,7 @@ pub enum ExchangeInstruction {
     /// key 3 - `From` order
     /// key 4 - Token account associated with the To Trade
     /// key 5 - Token account associated with From trade
-    /// key 6 - Token account in which to deposit the Swappers profit from the swap.
+    /// key 6 - Token account in which to deposit the Matcher profit from the swap.
     SwapRequest,
 }
 
@@ -442,14 +441,14 @@ pub enum ExchangeInstruction {
     /// key 3 - `From` order
     /// key 4 - Token account associated with the To Trade
     /// key 5 - Token account associated with From trade
-    /// key 6 - Token account in which to deposit the Swappers profit from the swap.
+    /// key 6 - Token account in which to deposit the Matcher profit from the swap.
     SwapRequest,
 }
 ```
 
 ## Quotes and OHLCV
 
-The Swapper will provide current bid/ask price quotes based on trade actively and
+The Matcher will provide current bid/ask price quotes based on trade actively and
 also provide OHLCV based on some time window.  The details of how the bid/ask
 price quotes are calculated are yet to be decided.
 

bench-exchange/src/bench.rs

@@ -5,33 +5,38 @@ use itertools::izip;
 use log::*;
 use rand::{thread_rng, Rng};
 use rayon::prelude::*;
-use solana::gen_keys::GenKeys;
 use solana_client::perf_utils::{sample_txs, SampleStats};
-use solana_drone::drone::request_airdrop_transaction;
-use solana_exchange_api::exchange_instruction;
-use solana_exchange_api::exchange_state::*;
-use solana_exchange_api::id;
+use solana_core::gen_keys::GenKeys;
+use solana_exchange_program::{exchange_instruction, exchange_state::*, id};
+use solana_faucet::faucet::request_airdrop_transaction;
+use solana_genesis::Base64Account;
 use solana_metrics::datapoint_info;
-use solana_sdk::client::Client;
-use solana_sdk::client::SyncClient;
-use solana_sdk::pubkey::Pubkey;
-use solana_sdk::signature::{Keypair, KeypairUtil};
-use solana_sdk::system_instruction;
-use solana_sdk::timing::{duration_as_ms, duration_as_s};
-use solana_sdk::transaction::Transaction;
-use std::cmp;
-use std::collections::{HashMap, VecDeque};
-use std::fs::File;
-use std::io::prelude::*;
-use std::mem;
-use std::net::SocketAddr;
-use std::path::Path;
-use std::process::exit;
-use std::sync::atomic::{AtomicBool, AtomicUsize, Ordering};
-use std::sync::mpsc::{channel, Receiver, Sender};
-use std::sync::{Arc, RwLock};
-use std::thread::{sleep, Builder};
-use std::time::{Duration, Instant};
+use solana_sdk::{
+    client::{Client, SyncClient},
+    commitment_config::CommitmentConfig,
+    pubkey::Pubkey,
+    signature::{Keypair, Signer},
+    timing::{duration_as_ms, duration_as_s},
+    transaction::Transaction,
+    {system_instruction, system_program},
+};
+use std::{
+    cmp,
+    collections::{HashMap, VecDeque},
+    fs::File,
+    io::prelude::*,
+    mem,
+    net::SocketAddr,
+    path::Path,
+    process::exit,
+    sync::{
+        atomic::{AtomicBool, AtomicUsize, Ordering},
+        mpsc::{channel, Receiver, Sender},
+        Arc, RwLock,
+    },
+    thread::{sleep, Builder},
+    time::{Duration, Instant},
+};
 
 // TODO Chunk length as specified results in a bunch of failures, divide by 10 helps...
 // Assume 4MB network buffers, and 512 byte packets
@@ -88,7 +93,12 @@ pub fn create_client_accounts_file(
     keypairs.iter().for_each(|keypair| {
         accounts.insert(
             serde_json::to_string(&keypair.to_bytes().to_vec()).unwrap(),
-            fund_amount,
+            Base64Account {
+                balance: fund_amount,
+                executable: false,
+                owner: system_program::id().to_string(),
+                data: String::new(),
+            },
         );
     });
 
@@ -134,7 +144,7 @@ where
         let path = Path::new(&client_ids_and_stake_file);
         let file = File::open(path).unwrap();
 
-        let accounts: HashMap<String, u64> = serde_yaml::from_reader(file).unwrap();
+        let accounts: HashMap<String, Base64Account> = serde_yaml::from_reader(file).unwrap();
         accounts
             .into_iter()
             .map(|(keypair, _)| {
@@ -168,19 +178,28 @@ where
 
     info!("Generating {:?} account keys", total_keys);
     let mut account_keypairs = generate_keypairs(total_keys);
-    let src_pubkeys: Vec<_> = account_keypairs
+    let src_keypairs: Vec<_> = account_keypairs
         .drain(0..accounts_in_groups)
+        .map(|keypair| keypair)
+        .collect();
+    let src_pubkeys: Vec<Pubkey> = src_keypairs
+        .iter()
         .map(|keypair| keypair.pubkey())
         .collect();
-    let profit_pubkeys: Vec<_> = account_keypairs
+
+    let profit_keypairs: Vec<_> = account_keypairs
         .drain(0..accounts_in_groups)
+        .map(|keypair| keypair)
+        .collect();
+    let profit_pubkeys: Vec<Pubkey> = profit_keypairs
+        .iter()
         .map(|keypair| keypair.pubkey())
         .collect();
 
     info!("Create {:?} source token accounts", src_pubkeys.len());
-    create_token_accounts(client, &trader_signers, &src_pubkeys);
+    create_token_accounts(client, &trader_signers, &src_keypairs);
     info!("Create {:?} profit token accounts", profit_pubkeys.len());
-    create_token_accounts(client, &swapper_signers, &profit_pubkeys);
+    create_token_accounts(client, &swapper_signers, &profit_keypairs);
 
     // Collect the max transaction rate and total tx count seen (single node only)
     let sample_stats = Arc::new(RwLock::new(Vec::new()));
@@ -237,7 +256,7 @@ where
     trace!("Start trader thread");
     let trader_thread = {
         let exit_signal = exit_signal.clone();
-        let shared_txs = shared_txs.clone();
+
         let client = clients[0].clone();
         Builder::new()
             .name("solana-exchange-trader".to_string())
@@ -374,7 +393,10 @@ fn swapper<T>(
             let mut tries = 0;
             let mut trade_index = 0;
             while client
-                .get_balance(&trade_infos[trade_index].trade_account)
+                .get_balance_with_commitment(
+                    &trade_infos[trade_index].trade_account,
+                    CommitmentConfig::recent(),
+                )
                 .unwrap_or(0)
                 == 0
             {
@@ -428,7 +450,7 @@ fn swapper<T>(
             account_group = (account_group + 1) % account_groups as usize;
 
             let (blockhash, _fee_calculator) = client
-                .get_recent_blockhash()
+                .get_recent_blockhash_with_commitment(CommitmentConfig::recent())
                 .expect("Failed to get blockhash");
             let to_swap_txs: Vec<_> = to_swap
                 .par_iter()
@@ -527,21 +549,21 @@ fn trader<T>(
         let mut trade_infos = vec![];
         let start = account_group * batch_size as usize;
         let end = account_group * batch_size as usize + batch_size as usize;
-        let mut direction = Direction::To;
+        let mut side = OrderSide::Ask;
         for (signer, trade, src) in izip!(
             signers[start..end].iter(),
             trade_keys,
             srcs[start..end].iter(),
         ) {
-            direction = if direction == Direction::To {
-                Direction::From
+            side = if side == OrderSide::Ask {
+                OrderSide::Bid
             } else {
-                Direction::To
+                OrderSide::Ask
             };
             let order_info = OrderInfo {
                 /// Owner of the trade order
                 owner: Pubkey::default(), // don't care
-                direction,
+                side,
                 pair,
                 tokens,
                 price,
@@ -551,27 +573,39 @@ fn trader<T>(
                 trade_account: trade.pubkey(),
                 order_info,
             });
-            trades.push((signer, trade.pubkey(), direction, src));
+            trades.push((signer, trade, side, src));
         }
         account_group = (account_group + 1) % account_groups as usize;
 
         let (blockhash, _fee_calculator) = client
-            .get_recent_blockhash()
+            .get_recent_blockhash_with_commitment(CommitmentConfig::recent())
             .expect("Failed to get blockhash");
 
         trades.chunks(chunk_size).for_each(|chunk| {
             let trades_txs: Vec<_> = chunk
                 .par_iter()
-                .map(|(signer, trade, direction, src)| {
-                    let s: &Keypair = &signer;
-                    let owner = &signer.pubkey();
+                .map(|(owner, trade, side, src)| {
+                    let owner_pubkey = &owner.pubkey();
+                    let trade_pubkey = &trade.pubkey();
                     let space = mem::size_of::<ExchangeState>() as u64;
                     Transaction::new_signed_instructions(
-                        &[s],
+                        &[owner.as_ref(), trade],
                         vec![
-                            system_instruction::create_account(owner, trade, 1, space, &id()),
+                            system_instruction::create_account(
+                                owner_pubkey,
+                                trade_pubkey,
+                                1,
+                                space,
+                                &id(),
+                            ),
                             exchange_instruction::trade_request(
-                                owner, trade, *direction, pair, tokens, price, src,
+                                owner_pubkey,
+                                trade_pubkey,
+                                *side,
+                                pair,
+                                tokens,
+                                price,
+                                src,
                             ),
                         ],
                         blockhash,
@@ -627,12 +661,14 @@ fn trader<T>(
     }
 }
 
-fn verify_transfer<T>(sync_client: &T, tx: &Transaction) -> bool
+fn verify_transaction<T>(sync_client: &T, tx: &Transaction) -> bool
 where
     T: SyncClient + ?Sized,
 {
     for s in &tx.signatures {
-        if let Ok(Some(r)) = sync_client.get_signature_status(s) {
+        if let Ok(Some(r)) =
+            sync_client.get_signature_status_with_commitment(s, CommitmentConfig::recent())
+        {
             match r {
                 Ok(_) => {
                     return true;
@@ -651,16 +687,21 @@ fn verify_funding_transfer<T: SyncClient + ?Sized>(
     tx: &Transaction,
     amount: u64,
 ) -> bool {
-    for a in &tx.message().account_keys[1..] {
-        if client.get_balance(a).unwrap_or(0) >= amount {
-            return true;
+    if verify_transaction(client, tx) {
+        for a in &tx.message().account_keys[1..] {
+            if client
+                .get_balance_with_commitment(a, CommitmentConfig::recent())
+                .unwrap_or(0)
+                >= amount
+            {
+                return true;
+            }
         }
     }
-
     false
 }
 
-pub fn fund_keys(client: &Client, source: &Keypair, dests: &[Arc<Keypair>], lamports: u64) {
+pub fn fund_keys<T: Client>(client: &T, source: &Keypair, dests: &[Arc<Keypair>], lamports: u64) {
     let total = lamports * (dests.len() as u64 + 1);
     let mut funded: Vec<(&Keypair, u64)> = vec![(source, total)];
     let mut notfunded: Vec<&Arc<Keypair>> = dests.iter().collect();
@@ -734,8 +775,9 @@ pub fn fund_keys(client: &Client, source: &Keypair, dests: &[Arc<Keypair>], lamp
                     to_fund_txs.len(),
                 );
 
-                let (blockhash, _fee_calculator) =
-                    client.get_recent_blockhash().expect("blockhash");
+                let (blockhash, _fee_calculator) = client
+                    .get_recent_blockhash_with_commitment(CommitmentConfig::recent())
+                    .expect("blockhash");
                 to_fund_txs.par_iter_mut().for_each(|(k, tx)| {
                     tx.sign(&[*k], blockhash);
                 });
@@ -764,7 +806,7 @@ pub fn fund_keys(client: &Client, source: &Keypair, dests: &[Arc<Keypair>], lamp
                     retries += 1;
                     debug!("  Retry {:?}", retries);
                     if retries >= 10 {
-                        error!("  Too many retries, give up");
+                        error!("fund_keys: Too many retries ({}), give up", retries);
                         exit(1);
                     }
                 }
@@ -772,27 +814,41 @@ pub fn fund_keys(client: &Client, source: &Keypair, dests: &[Arc<Keypair>], lamp
         });
         funded.append(&mut new_funded);
         funded.retain(|(k, b)| {
-            client.get_balance(&k.pubkey()).unwrap_or(0) > lamports && *b > lamports
+            client
+                .get_balance_with_commitment(&k.pubkey(), CommitmentConfig::recent())
+                .unwrap_or(0)
+                > lamports
+                && *b > lamports
         });
         debug!("  Funded: {} left: {}", funded.len(), notfunded.len());
     }
 }
 
-pub fn create_token_accounts(client: &Client, signers: &[Arc<Keypair>], accounts: &[Pubkey]) {
-    let mut notfunded: Vec<(&Arc<Keypair>, &Pubkey)> = signers.iter().zip(accounts).collect();
+pub fn create_token_accounts<T: Client>(
+    client: &T,
+    signers: &[Arc<Keypair>],
+    accounts: &[Keypair],
+) {
+    let mut notfunded: Vec<(&Arc<Keypair>, &Keypair)> = signers.iter().zip(accounts).collect();
 
     while !notfunded.is_empty() {
         notfunded.chunks(FUND_CHUNK_LEN).for_each(|chunk| {
             let mut to_create_txs: Vec<_> = chunk
                 .par_iter()
-                .map(|(signer, new)| {
-                    let owner_pubkey = &signer.pubkey();
+                .map(|(from_keypair, new_keypair)| {
+                    let owner_pubkey = &from_keypair.pubkey();
                     let space = mem::size_of::<ExchangeState>() as u64;
-                    let create_ix =
-                        system_instruction::create_account(owner_pubkey, new, 1, space, &id());
-                    let request_ix = exchange_instruction::account_request(owner_pubkey, new);
+                    let create_ix = system_instruction::create_account(
+                        owner_pubkey,
+                        &new_keypair.pubkey(),
+                        1,
+                        space,
+                        &id(),
+                    );
+                    let request_ix =
+                        exchange_instruction::account_request(owner_pubkey, &new_keypair.pubkey());
                     (
-                        signer,
+                        (from_keypair, new_keypair),
                         Transaction::new_unsigned_instructions(vec![create_ix, request_ix]),
                     )
                 })
@@ -811,12 +867,13 @@ pub fn create_token_accounts(client: &Client, signers: &[Arc<Keypair>], accounts
             let mut retries = 0;
             while !to_create_txs.is_empty() {
                 let (blockhash, _fee_calculator) = client
-                    .get_recent_blockhash()
+                    .get_recent_blockhash_with_commitment(CommitmentConfig::recent())
                     .expect("Failed to get blockhash");
-                to_create_txs.par_iter_mut().for_each(|(k, tx)| {
-                    let kp: &Keypair = k;
-                    tx.sign(&[kp], blockhash);
-                });
+                to_create_txs
+                    .par_iter_mut()
+                    .for_each(|((from_keypair, to_keypair), tx)| {
+                        tx.sign(&[from_keypair.as_ref(), to_keypair], blockhash);
+                    });
                 to_create_txs.iter().for_each(|(_, tx)| {
                     client.async_send_transaction(tx.clone()).expect("transfer");
                 });
@@ -824,11 +881,11 @@ pub fn create_token_accounts(client: &Client, signers: &[Arc<Keypair>], accounts
                 let mut waits = 0;
                 while !to_create_txs.is_empty() {
                     sleep(Duration::from_millis(200));
-                    to_create_txs.retain(|(_, tx)| !verify_transfer(client, &tx));
+                    to_create_txs.retain(|(_, tx)| !verify_transaction(client, &tx));
                     if to_create_txs.is_empty() {
                         break;
                     }
-                    debug!(
+                    info!(
                         "    {} transactions outstanding, waits {:?}",
                         to_create_txs.len(),
                         waits
@@ -841,18 +898,25 @@ pub fn create_token_accounts(client: &Client, signers: &[Arc<Keypair>], accounts
 
                 if !to_create_txs.is_empty() {
                     retries += 1;
-                    debug!("  Retry {:?}", retries);
+                    info!("  Retry {:?} {} txes left", retries, to_create_txs.len());
                     if retries >= 20 {
-                        error!("  Too many retries, give up");
+                        error!(
+                            "create_token_accounts: Too many retries ({}), give up",
+                            retries
+                        );
                         exit(1);
                     }
                 }
             }
         });
 
-        let mut new_notfunded: Vec<(&Arc<Keypair>, &Pubkey)> = vec![];
+        let mut new_notfunded: Vec<(&Arc<Keypair>, &Keypair)> = vec![];
         for f in &notfunded {
-            if client.get_balance(&f.1).unwrap_or(0) == 0 {
+            if client
+                .get_balance_with_commitment(&f.1.pubkey(), CommitmentConfig::recent())
+                .unwrap_or(0)
+                == 0
+            {
                 new_notfunded.push(*f)
             }
         }
@@ -908,8 +972,13 @@ fn generate_keypairs(num: u64) -> Vec<Keypair> {
     rnd.gen_n_keypairs(num)
 }
 
-pub fn airdrop_lamports(client: &Client, drone_addr: &SocketAddr, id: &Keypair, amount: u64) {
-    let balance = client.get_balance(&id.pubkey());
+pub fn airdrop_lamports<T: Client>(
+    client: &T,
+    faucet_addr: &SocketAddr,
+    id: &Keypair,
+    amount: u64,
+) {
+    let balance = client.get_balance_with_commitment(&id.pubkey(), CommitmentConfig::recent());
     let balance = balance.unwrap_or(0);
     if balance >= amount {
         return;
@@ -920,142 +989,49 @@ pub fn airdrop_lamports(client: &Client, drone_addr: &SocketAddr, id: &Keypair,
     info!(
         "Airdropping {:?} lamports from {} for {}",
         amount_to_drop,
-        drone_addr,
+        faucet_addr,
         id.pubkey(),
     );
 
     let mut tries = 0;
     loop {
         let (blockhash, _fee_calculator) = client
-            .get_recent_blockhash()
+            .get_recent_blockhash_with_commitment(CommitmentConfig::recent())
             .expect("Failed to get blockhash");
-        match request_airdrop_transaction(&drone_addr, &id.pubkey(), amount_to_drop, blockhash) {
+        match request_airdrop_transaction(&faucet_addr, &id.pubkey(), amount_to_drop, blockhash) {
             Ok(transaction) => {
                 let signature = client.async_send_transaction(transaction).unwrap();
 
                 for _ in 0..30 {
-                    if let Ok(Some(_)) = client.get_signature_status(&signature) {
+                    if let Ok(Some(_)) = client.get_signature_status_with_commitment(
+                        &signature,
+                        CommitmentConfig::recent(),
+                    ) {
                         break;
                     }
                     sleep(Duration::from_millis(100));
                 }
-                if client.get_balance(&id.pubkey()).unwrap_or(0) >= amount {
+                if client
+                    .get_balance_with_commitment(&id.pubkey(), CommitmentConfig::recent())
+                    .unwrap_or(0)
+                    >= amount
+                {
                     break;
                 }
             }
             Err(err) => {
                 panic!(
                     "Error requesting airdrop: {:?} to addr: {:?} amount: {}",
-                    err, drone_addr, amount
+                    err, faucet_addr, amount
                 );
             }
         };
         debug!("  Retry...");
         tries += 1;
         if tries > 50 {
-            error!("Too many retries, give up");
+            error!("airdrop_lamports: Too many retries ({}), give up", tries);
             exit(1);
         }
         sleep(Duration::from_secs(2));
     }
 }
-
-#[cfg(test)]
-mod tests {
-    use super::*;
-    use solana::gossip_service::{discover_cluster, get_multi_client};
-    use solana::local_cluster::{ClusterConfig, LocalCluster};
-    use solana::validator::ValidatorConfig;
-    use solana_drone::drone::run_local_drone;
-    use solana_exchange_api::exchange_processor::process_instruction;
-    use solana_runtime::bank::Bank;
-    use solana_runtime::bank_client::BankClient;
-    use solana_sdk::genesis_block::create_genesis_block;
-    use std::sync::mpsc::channel;
-
-    #[test]
-    fn test_exchange_local_cluster() {
-        solana_logger::setup();
-
-        const NUM_NODES: usize = 1;
-
-        let mut config = Config::default();
-        config.identity = Keypair::new();
-        config.duration = Duration::from_secs(1);
-        config.fund_amount = 100_000;
-        config.threads = 1;
-        config.transfer_delay = 20; // 15
-        config.batch_size = 100; // 1000;
-        config.chunk_size = 10; // 200;
-        config.account_groups = 1; // 10;
-        let Config {
-            fund_amount,
-            batch_size,
-            account_groups,
-            ..
-        } = config;
-        let accounts_in_groups = batch_size * account_groups;
-
-        let cluster = LocalCluster::new(&ClusterConfig {
-            node_stakes: vec![100_000; NUM_NODES],
-            cluster_lamports: 100_000_000_000_000,
-            validator_configs: vec![ValidatorConfig::default(); NUM_NODES],
-            native_instruction_processors: [solana_exchange_program!()].to_vec(),
-            ..ClusterConfig::default()
-        });
-
-        let drone_keypair = Keypair::new();
-        cluster.transfer(
-            &cluster.funding_keypair,
-            &drone_keypair.pubkey(),
-            2_000_000_000_000,
-        );
-
-        let (addr_sender, addr_receiver) = channel();
-        run_local_drone(drone_keypair, addr_sender, Some(1_000_000_000_000));
-        let drone_addr = addr_receiver.recv_timeout(Duration::from_secs(2)).unwrap();
-
-        info!("Connecting to the cluster");
-        let (nodes, _) = discover_cluster(&cluster.entry_point_info.gossip, NUM_NODES)
-            .unwrap_or_else(|err| {
-                error!("Failed to discover {} nodes: {:?}", NUM_NODES, err);
-                exit(1);
-            });
-
-        let (client, num_clients) = get_multi_client(&nodes);
-
-        info!("clients: {}", num_clients);
-        assert!(num_clients >= NUM_NODES);
-
-        const NUM_SIGNERS: u64 = 2;
-        airdrop_lamports(
-            &client,
-            &drone_addr,
-            &config.identity,
-            fund_amount * (accounts_in_groups + 1) as u64 * NUM_SIGNERS,
-        );
-
-        do_bench_exchange(vec![client], config);
-    }
-
-    #[test]
-    fn test_exchange_bank_client() {
-        solana_logger::setup();
-        let (genesis_block, identity) = create_genesis_block(100_000_000_000_000);
-        let mut bank = Bank::new(&genesis_block);
-        bank.add_instruction_processor(id(), process_instruction);
-        let clients = vec![BankClient::new(bank)];
-
-        let mut config = Config::default();
-        config.identity = identity;
-        config.duration = Duration::from_secs(1);
-        config.fund_amount = 100_000;
-        config.threads = 1;
-        config.transfer_delay = 20; // 0;
-        config.batch_size = 100; // 1500;
-        config.chunk_size = 10; // 1500;
-        config.account_groups = 1; // 50;
-
-        do_bench_exchange(clients, config);
-    }
-}

bench-exchange/src/cli.rs

@@ -1,14 +1,14 @@
-use clap::{crate_description, crate_name, crate_version, value_t, App, Arg, ArgMatches};
-use solana::gen_keys::GenKeys;
-use solana_drone::drone::DRONE_PORT;
-use solana_sdk::signature::{read_keypair, Keypair, KeypairUtil};
+use clap::{crate_description, crate_name, value_t, App, Arg, ArgMatches};
+use solana_core::gen_keys::GenKeys;
+use solana_faucet::faucet::FAUCET_PORT;
+use solana_sdk::signature::{read_keypair_file, Keypair};
 use std::net::SocketAddr;
 use std::process::exit;
 use std::time::Duration;
 
 pub struct Config {
     pub entrypoint_addr: SocketAddr,
-    pub drone_addr: SocketAddr,
+    pub faucet_addr: SocketAddr,
     pub identity: Keypair,
     pub threads: usize,
     pub num_nodes: usize,
@@ -27,7 +27,7 @@ impl Default for Config {
     fn default() -> Self {
         Self {
             entrypoint_addr: SocketAddr::from(([127, 0, 0, 1], 8001)),
-            drone_addr: SocketAddr::from(([127, 0, 0, 1], DRONE_PORT)),
+            faucet_addr: SocketAddr::from(([127, 0, 0, 1], FAUCET_PORT)),
             identity: Keypair::new(),
             num_nodes: 1,
             threads: 4,
@@ -44,10 +44,10 @@ impl Default for Config {
     }
 }
 
-pub fn build_args<'a, 'b>() -> App<'a, 'b> {
+pub fn build_args<'a, 'b>(version: &'b str) -> App<'a, 'b> {
     App::new(crate_name!())
         .about(crate_description!())
-        .version(crate_version!())
+        .version(version)
         .arg(
             Arg::with_name("entrypoint")
                 .short("n")
@@ -59,14 +59,14 @@ pub fn build_args<'a, 'b>() -> App<'a, 'b> {
                 .help("Cluster entry point; defaults to 127.0.0.1:8001"),
         )
         .arg(
-            Arg::with_name("drone")
+            Arg::with_name("faucet")
                 .short("d")
-                .long("drone")
+                .long("faucet")
                 .value_name("HOST:PORT")
                 .takes_value(true)
                 .required(false)
                 .default_value("127.0.0.1:9900")
-                .help("Location of the drone; defaults to 127.0.0.1:9900"),
+                .help("Location of the faucet; defaults to 127.0.0.1:9900"),
         )
         .arg(
             Arg::with_name("identity")
@@ -166,20 +166,22 @@ pub fn build_args<'a, 'b>() -> App<'a, 'b> {
 pub fn extract_args<'a>(matches: &ArgMatches<'a>) -> Config {
     let mut args = Config::default();
 
-    args.entrypoint_addr = solana_netutil::parse_host_port(matches.value_of("entrypoint").unwrap())
-        .unwrap_or_else(|e| {
-            eprintln!("failed to parse entrypoint address: {}", e);
-            exit(1)
-        });
+    args.entrypoint_addr = solana_net_utils::parse_host_port(
+        matches.value_of("entrypoint").unwrap(),
+    )
+    .unwrap_or_else(|e| {
+        eprintln!("failed to parse entrypoint address: {}", e);
+        exit(1)
+    });
 
-    args.drone_addr = solana_netutil::parse_host_port(matches.value_of("drone").unwrap())
+    args.faucet_addr = solana_net_utils::parse_host_port(matches.value_of("faucet").unwrap())
         .unwrap_or_else(|e| {
-            eprintln!("failed to parse drone address: {}", e);
+            eprintln!("failed to parse faucet address: {}", e);
             exit(1)
         });
 
     if matches.is_present("identity") {
-        args.identity = read_keypair(matches.value_of("identity").unwrap())
+        args.identity = read_keypair_file(matches.value_of("identity").unwrap())
             .expect("can't read client identity");
     } else {
         args.identity = {

bench-exchange/src/lib.rs

@@ -0,0 +1,3 @@
+pub mod bench;
+pub mod cli;
+mod order_book;

bench-exchange/src/main.rs

@@ -2,25 +2,21 @@ pub mod bench;
 mod cli;
 pub mod order_book;
 
-#[cfg(test)]
-#[macro_use]
-extern crate solana_exchange_program;
-
 use crate::bench::{airdrop_lamports, create_client_accounts_file, do_bench_exchange, Config};
 use log::*;
-use solana::gossip_service::{discover_cluster, get_multi_client};
-use solana_sdk::signature::KeypairUtil;
+use solana_core::gossip_service::{discover_cluster, get_multi_client};
+use solana_sdk::signature::Signer;
 
 fn main() {
     solana_logger::setup();
     solana_metrics::set_panic_hook("bench-exchange");
 
-    let matches = cli::build_args().get_matches();
+    let matches = cli::build_args(solana_clap_utils::version!()).get_matches();
     let cli_config = cli::extract_args(&matches);
 
     let cli::Config {
         entrypoint_addr,
-        drone_addr,
+        faucet_addr,
         identity,
         threads,
         num_nodes,
@@ -58,7 +54,7 @@ fn main() {
         );
     } else {
         info!("Connecting to the cluster");
-        let (nodes, _replicators) =
+        let (nodes, _archivers) =
             discover_cluster(&entrypoint_addr, num_nodes).unwrap_or_else(|_| {
                 panic!("Failed to discover nodes");
             });
@@ -77,7 +73,7 @@ fn main() {
             const NUM_SIGNERS: u64 = 2;
             airdrop_lamports(
                 &client,
-                &drone_addr,
+                &faucet_addr,
                 &config.identity,
                 fund_amount * (accounts_in_groups + 1) as u64 * NUM_SIGNERS,
             );

bench-exchange/src/order_book.rs

@@ -1,7 +1,7 @@
 use itertools::EitherOrBoth::{Both, Left, Right};
 use itertools::Itertools;
 use log::*;
-use solana_exchange_api::exchange_state::*;
+use solana_exchange_program::exchange_state::*;
 use solana_sdk::pubkey::Pubkey;
 use std::cmp::Ordering;
 use std::collections::BinaryHeap;
@@ -96,12 +96,12 @@ impl OrderBook {
     //     Ok(())
     // }
     pub fn push(&mut self, pubkey: Pubkey, info: OrderInfo) -> Result<(), Box<dyn error::Error>> {
-        check_trade(info.direction, info.tokens, info.price)?;
-        match info.direction {
-            Direction::To => {
+        check_trade(info.side, info.tokens, info.price)?;
+        match info.side {
+            OrderSide::Ask => {
                 self.to_ab.push(ToOrder { pubkey, info });
             }
-            Direction::From => {
+            OrderSide::Bid => {
                 self.from_ab.push(FromOrder { pubkey, info });
             }
         }

bench-exchange/tests/bench_exchange.rs

@@ -0,0 +1,103 @@
+use log::*;
+use solana_bench_exchange::bench::{airdrop_lamports, do_bench_exchange, Config};
+use solana_core::gossip_service::{discover_cluster, get_multi_client};
+use solana_core::validator::ValidatorConfig;
+use solana_exchange_program::exchange_processor::process_instruction;
+use solana_exchange_program::id;
+use solana_exchange_program::solana_exchange_program;
+use solana_faucet::faucet::run_local_faucet;
+use solana_local_cluster::local_cluster::{ClusterConfig, LocalCluster};
+use solana_runtime::bank::Bank;
+use solana_runtime::bank_client::BankClient;
+use solana_sdk::genesis_config::create_genesis_config;
+use solana_sdk::signature::{Keypair, Signer};
+use std::process::exit;
+use std::sync::mpsc::channel;
+use std::time::Duration;
+
+#[test]
+#[ignore]
+fn test_exchange_local_cluster() {
+    solana_logger::setup();
+
+    const NUM_NODES: usize = 1;
+
+    let mut config = Config::default();
+    config.identity = Keypair::new();
+    config.duration = Duration::from_secs(1);
+    config.fund_amount = 100_000;
+    config.threads = 1;
+    config.transfer_delay = 20; // 15
+    config.batch_size = 100; // 1000;
+    config.chunk_size = 10; // 200;
+    config.account_groups = 1; // 10;
+    let Config {
+        fund_amount,
+        batch_size,
+        account_groups,
+        ..
+    } = config;
+    let accounts_in_groups = batch_size * account_groups;
+
+    let cluster = LocalCluster::new(&ClusterConfig {
+        node_stakes: vec![100_000; NUM_NODES],
+        cluster_lamports: 100_000_000_000_000,
+        validator_configs: vec![ValidatorConfig::default(); NUM_NODES],
+        native_instruction_processors: [solana_exchange_program!()].to_vec(),
+        ..ClusterConfig::default()
+    });
+
+    let faucet_keypair = Keypair::new();
+    cluster.transfer(
+        &cluster.funding_keypair,
+        &faucet_keypair.pubkey(),
+        2_000_000_000_000,
+    );
+
+    let (addr_sender, addr_receiver) = channel();
+    run_local_faucet(faucet_keypair, addr_sender, Some(1_000_000_000_000));
+    let faucet_addr = addr_receiver.recv_timeout(Duration::from_secs(2)).unwrap();
+
+    info!("Connecting to the cluster");
+    let (nodes, _) =
+        discover_cluster(&cluster.entry_point_info.gossip, NUM_NODES).unwrap_or_else(|err| {
+            error!("Failed to discover {} nodes: {:?}", NUM_NODES, err);
+            exit(1);
+        });
+
+    let (client, num_clients) = get_multi_client(&nodes);
+
+    info!("clients: {}", num_clients);
+    assert!(num_clients >= NUM_NODES);
+
+    const NUM_SIGNERS: u64 = 2;
+    airdrop_lamports(
+        &client,
+        &faucet_addr,
+        &config.identity,
+        fund_amount * (accounts_in_groups + 1) as u64 * NUM_SIGNERS,
+    );
+
+    do_bench_exchange(vec![client], config);
+}
+
+#[test]
+fn test_exchange_bank_client() {
+    solana_logger::setup();
+    let (genesis_config, identity) = create_genesis_config(100_000_000_000_000);
+    let mut bank = Bank::new(&genesis_config);
+    bank.add_instruction_processor(id(), process_instruction);
+    let clients = vec![BankClient::new(bank)];
+
+    let mut config = Config::default();
+    config.identity = identity;
+    config.duration = Duration::from_secs(1);
+    config.fund_amount = 100_000;
+    config.threads = 1;
+    config.transfer_delay = 20; // 0;
+    config.batch_size = 100; // 1500;
+    config.chunk_size = 10; // 1500;
+    config.account_groups = 1; // 50;
+
+    do_bench_exchange(clients, config);
+}

bench-streamer/Cargo.toml

@@ -2,17 +2,14 @@
 authors = ["Solana Maintainers <maintainers@solana.com>"]
 edition = "2018"
 name = "solana-bench-streamer"
-version = "0.17.0"
+version = "1.0.3"
 repository = "https://github.com/solana-labs/solana"
 license = "Apache-2.0"
 homepage = "https://solana.com/"
 
 [dependencies]
 clap = "2.33.0"
-solana = { path = "../core", version = "0.17.0" }
-solana-logger = { path = "../logger", version = "0.17.0" }
-solana-netutil = { path = "../netutil", version = "0.17.0" }
-
-[features]
-cuda = ["solana/cuda"]
-
+solana-clap-utils = { path = "../clap-utils", version = "1.0.3" }
+solana-core = { path = "../core", version = "1.0.3" }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-net-utils = { path = "../net-utils", version = "1.0.3" }

bench-streamer/src/main.rs

@@ -1,15 +1,13 @@
-use clap::{crate_description, crate_name, crate_version, App, Arg};
-use solana::packet::PacketsRecycler;
-use solana::packet::{Packet, Packets, BLOB_SIZE, PACKET_DATA_SIZE};
-use solana::result::Result;
-use solana::streamer::{receiver, PacketReceiver};
+use clap::{crate_description, crate_name, App, Arg};
+use solana_core::packet::{Packet, Packets, PacketsRecycler, PACKET_DATA_SIZE};
+use solana_core::streamer::{receiver, PacketReceiver};
 use std::cmp::max;
 use std::net::{IpAddr, Ipv4Addr, SocketAddr, UdpSocket};
 use std::sync::atomic::{AtomicBool, AtomicUsize, Ordering};
 use std::sync::mpsc::channel;
 use std::sync::Arc;
 use std::thread::sleep;
-use std::thread::{spawn, JoinHandle};
+use std::thread::{spawn, JoinHandle, Result};
 use std::time::Duration;
 use std::time::SystemTime;
 
@@ -29,7 +27,7 @@ fn producer(addr: &SocketAddr, exit: Arc<AtomicBool>) -> JoinHandle<()> {
         let mut num = 0;
         for p in &msgs.packets {
             let a = p.meta.addr();
-            assert!(p.meta.size < BLOB_SIZE);
+            assert!(p.meta.size < PACKET_DATA_SIZE);
             send.send_to(&p.data[..p.meta.size], &a).unwrap();
             num += 1;
         }
@@ -54,7 +52,7 @@ fn main() -> Result<()> {
 
     let matches = App::new(crate_name!())
         .about(crate_description!())
-        .version(crate_version!())
+        .version(solana_clap_utils::version!())
         .arg(
             Arg::with_name("num-recv-sockets")
                 .long("num-recv-sockets")
@@ -69,7 +67,8 @@ fn main() -> Result<()> {
     }
 
     let mut port = 0;
-    let mut addr = SocketAddr::new(IpAddr::V4(Ipv4Addr::new(0, 0, 0, 0)), 0);
+    let ip_addr = IpAddr::V4(Ipv4Addr::new(0, 0, 0, 0));
+    let mut addr = SocketAddr::new(ip_addr, 0);
 
     let exit = Arc::new(AtomicBool::new(false));
 
@@ -77,7 +76,7 @@ fn main() -> Result<()> {
     let mut read_threads = Vec::new();
     let recycler = PacketsRecycler::default();
     for _ in 0..num_sockets {
-        let read = solana_netutil::bind_to(port, false).unwrap();
+        let read = solana_net_utils::bind_to(ip_addr, port, false).unwrap();
         read.set_read_timeout(Some(Duration::new(1, 0))).unwrap();
 
         addr = read.local_addr().unwrap();

bench-tps/Cargo.toml

@@ -2,28 +2,36 @@
 authors = ["Solana Maintainers <maintainers@solana.com>"]
 edition = "2018"
 name = "solana-bench-tps"
-version = "0.17.0"
+version = "1.0.3"
 repository = "https://github.com/solana-labs/solana"
 license = "Apache-2.0"
 homepage = "https://solana.com/"
 
 [dependencies]
+bincode = "1.2.1"
 clap = "2.33.0"
-log = "0.4.7"
-rayon = "1.1.0"
-serde = "1.0.97"
-serde_derive = "1.0.97"
-serde_json = "1.0.40"
-serde_yaml = "0.8.9"
-solana = { path = "../core", version = "0.17.0" }
-solana-client = { path = "../client", version = "0.17.0" }
-solana-drone = { path = "../drone", version = "0.17.0" }
-solana-logger = { path = "../logger", version = "0.17.0" }
-solana-metrics = { path = "../metrics", version = "0.17.0" }
-solana-netutil = { path = "../netutil", version = "0.17.0" }
-solana-runtime = { path = "../runtime", version = "0.17.0" }
-solana-sdk = { path = "../sdk", version = "0.17.0" }
+log = "0.4.8"
+rayon = "1.2.0"
+serde_json = "1.0.46"
+serde_yaml = "0.8.11"
+solana-clap-utils = { path = "../clap-utils", version = "1.0.3" }
+solana-core = { path = "../core", version = "1.0.3" }
+solana-genesis = { path = "../genesis", version = "1.0.3" }
+solana-client = { path = "../client", version = "1.0.3" }
+solana-faucet = { path = "../faucet", version = "1.0.3" }
+solana-librapay = { path = "../programs/librapay", version = "1.0.3", optional = true }
+solana-logger = { path = "../logger", version = "1.0.3" }
+solana-metrics = { path = "../metrics", version = "1.0.3" }
+solana-measure = { path = "../measure", version = "1.0.3" }
+solana-net-utils = { path = "../net-utils", version = "1.0.3" }
+solana-runtime = { path = "../runtime", version = "1.0.3" }
+solana-sdk = { path = "../sdk", version = "1.0.3" }
+solana-move-loader-program = { path = "../programs/move_loader", version = "1.0.3", optional = true }
+
+[dev-dependencies]
+serial_test = "0.3.2"
+serial_test_derive = "0.4.0"
+solana-local-cluster = { path = "../local-cluster", version = "1.0.3" }
 
 [features]
-cuda = ["solana/cuda"]
-
+move = ["solana-librapay", "solana-move-loader-program"]

bench-tps/src/cli.rs

@@ -1,53 +1,60 @@
-use std::net::SocketAddr;
-use std::process::exit;
-use std::time::Duration;
+use clap::{crate_description, crate_name, App, Arg, ArgMatches};
+use solana_faucet::faucet::FAUCET_PORT;
+use solana_sdk::fee_calculator::FeeRateGovernor;
+use solana_sdk::signature::{read_keypair_file, Keypair};
+use std::{net::SocketAddr, process::exit, time::Duration};
 
-use clap::{crate_description, crate_name, crate_version, App, Arg, ArgMatches};
-use solana_drone::drone::DRONE_PORT;
-use solana_sdk::fee_calculator::FeeCalculator;
-use solana_sdk::signature::{read_keypair, Keypair, KeypairUtil};
+const NUM_LAMPORTS_PER_ACCOUNT_DEFAULT: u64 = solana_sdk::native_token::LAMPORTS_PER_SOL;
 
 /// Holds the configuration for a single run of the benchmark
 pub struct Config {
     pub entrypoint_addr: SocketAddr,
-    pub drone_addr: SocketAddr,
+    pub faucet_addr: SocketAddr,
     pub id: Keypair,
     pub threads: usize,
     pub num_nodes: usize,
     pub duration: Duration,
     pub tx_count: usize,
+    pub keypair_multiplier: usize,
     pub thread_batch_sleep_ms: usize,
     pub sustained: bool,
     pub client_ids_and_stake_file: String,
     pub write_to_client_file: bool,
     pub read_from_client_file: bool,
     pub target_lamports_per_signature: u64,
+    pub multi_client: bool,
+    pub use_move: bool,
+    pub num_lamports_per_account: u64,
 }
 
 impl Default for Config {
     fn default() -> Config {
         Config {
             entrypoint_addr: SocketAddr::from(([127, 0, 0, 1], 8001)),
-            drone_addr: SocketAddr::from(([127, 0, 0, 1], DRONE_PORT)),
+            faucet_addr: SocketAddr::from(([127, 0, 0, 1], FAUCET_PORT)),
             id: Keypair::new(),
             threads: 4,
             num_nodes: 1,
             duration: Duration::new(std::u64::MAX, 0),
-            tx_count: 500_000,
-            thread_batch_sleep_ms: 0,
+            tx_count: 50_000,
+            keypair_multiplier: 8,
+            thread_batch_sleep_ms: 1000,
             sustained: false,
             client_ids_and_stake_file: String::new(),
             write_to_client_file: false,
             read_from_client_file: false,
-            target_lamports_per_signature: FeeCalculator::default().target_lamports_per_signature,
+            target_lamports_per_signature: FeeRateGovernor::default().target_lamports_per_signature,
+            multi_client: true,
+            use_move: false,
+            num_lamports_per_account: NUM_LAMPORTS_PER_ACCOUNT_DEFAULT,
         }
     }
 }
 
 /// Defines and builds the CLI args for a run of the benchmark
-pub fn build_args<'a, 'b>() -> App<'a, 'b> {
+pub fn build_args<'a, 'b>(version: &'b str) -> App<'a, 'b> {
     App::new(crate_name!()).about(crate_description!())
-        .version(crate_version!())
+        .version(version)
         .arg(
             Arg::with_name("entrypoint")
                 .short("n")
@@ -57,12 +64,12 @@ pub fn build_args<'a, 'b>() -> App<'a, 'b> {
                 .help("Rendezvous with the cluster at this entry point; defaults to 127.0.0.1:8001"),
         )
         .arg(
-            Arg::with_name("drone")
+            Arg::with_name("faucet")
                 .short("d")
-                .long("drone")
+                .long("faucet")
                 .value_name("HOST:PORT")
                 .takes_value(true)
-                .help("Location of the drone; defaults to entrypoint:DRONE_PORT"),
+                .help("Location of the faucet; defaults to entrypoint:FAUCET_PORT"),
         )
         .arg(
             Arg::with_name("identity")
@@ -100,6 +107,16 @@ pub fn build_args<'a, 'b>() -> App<'a, 'b> {
                 .long("sustained")
                 .help("Use sustained performance mode vs. peak mode. This overlaps the tx generation with transfers."),
         )
+        .arg(
+            Arg::with_name("use-move")
+                .long("use-move")
+                .help("Use Move language transactions to perform transfers."),
+        )
+        .arg(
+            Arg::with_name("no-multi-client")
+                .long("no-multi-client")
+                .help("Disable multi-client support, only transact with the entrypoint."),
+        )
         .arg(
             Arg::with_name("tx_count")
                 .long("tx_count")
@@ -107,6 +124,13 @@ pub fn build_args<'a, 'b>() -> App<'a, 'b> {
                 .takes_value(true)
                 .help("Number of transactions to send per batch")
         )
+        .arg(
+            Arg::with_name("keypair_multiplier")
+                .long("keypair-multiplier")
+                .value_name("NUM")
+                .takes_value(true)
+                .help("Multiply by transaction count to determine number of keypairs to create")
+        )
         .arg(
             Arg::with_name("thread-batch-sleep-ms")
                 .short("z")
@@ -139,6 +163,15 @@ pub fn build_args<'a, 'b>() -> App<'a, 'b> {
                      verification when the cluster is operating at target-signatures-per-slot",
                 ),
         )
+        .arg(
+            Arg::with_name("num_lamports_per_account")
+                .long("num-lamports-per-account")
+                .value_name("LAMPORTS")
+                .takes_value(true)
+                .help(
+                    "Number of lamports per account.",
+                ),
+        )
 }
 
 /// Parses a clap `ArgMatches` structure into a `Config`
@@ -150,21 +183,21 @@ pub fn extract_args<'a>(matches: &ArgMatches<'a>) -> Config {
     let mut args = Config::default();
 
     if let Some(addr) = matches.value_of("entrypoint") {
-        args.entrypoint_addr = solana_netutil::parse_host_port(addr).unwrap_or_else(|e| {
+        args.entrypoint_addr = solana_net_utils::parse_host_port(addr).unwrap_or_else(|e| {
             eprintln!("failed to parse entrypoint address: {}", e);
             exit(1)
         });
     }
 
-    if let Some(addr) = matches.value_of("drone") {
-        args.drone_addr = solana_netutil::parse_host_port(addr).unwrap_or_else(|e| {
-            eprintln!("failed to parse drone address: {}", e);
+    if let Some(addr) = matches.value_of("faucet") {
+        args.faucet_addr = solana_net_utils::parse_host_port(addr).unwrap_or_else(|e| {
+            eprintln!("failed to parse faucet address: {}", e);
             exit(1)
         });
     }
 
     if matches.is_present("identity") {
-        args.id = read_keypair(matches.value_of("identity").unwrap())
+        args.id = read_keypair_file(matches.value_of("identity").unwrap())
             .expect("can't read client identity");
     }
 
@@ -184,7 +217,15 @@ pub fn extract_args<'a>(matches: &ArgMatches<'a>) -> Config {
     }
 
     if let Some(s) = matches.value_of("tx_count") {
-        args.tx_count = s.to_string().parse().expect("can't parse tx_account");
+        args.tx_count = s.to_string().parse().expect("can't parse tx_count");
+    }
+
+    if let Some(s) = matches.value_of("keypair_multiplier") {
+        args.keypair_multiplier = s
+            .to_string()
+            .parse()
+            .expect("can't parse keypair-multiplier");
+        assert!(args.keypair_multiplier >= 2);
     }
 
     if let Some(t) = matches.value_of("thread-batch-sleep-ms") {
@@ -211,5 +252,12 @@ pub fn extract_args<'a>(matches: &ArgMatches<'a>) -> Config {
         args.target_lamports_per_signature = v.to_string().parse().expect("can't parse lamports");
     }
 
+    args.use_move = matches.is_present("use-move");
+    args.multi_client = !matches.is_present("no-multi-client");
+
+    if let Some(v) = matches.value_of("num_lamports_per_account") {
+        args.num_lamports_per_account = v.to_string().parse().expect("can't parse lamports");
+    }
+
     args
 }

bench-tps/src/lib.rs

@@ -0,0 +1,2 @@
+pub mod bench;
+pub mod cli;

bench-tps/src/main.rs

@@ -1,59 +1,64 @@
-mod bench;
-mod cli;
-
-use crate::bench::{
-    do_bench_tps, generate_and_fund_keypairs, generate_keypairs, Config, NUM_LAMPORTS_PER_ACCOUNT,
-};
-use solana::gossip_service::{discover_cluster, get_multi_client};
-use solana_sdk::fee_calculator::FeeCalculator;
-use solana_sdk::signature::{Keypair, KeypairUtil};
-use std::collections::HashMap;
-use std::fs::File;
-use std::io::prelude::*;
-use std::path::Path;
-use std::process::exit;
+use log::*;
+use solana_bench_tps::bench::{do_bench_tps, generate_and_fund_keypairs, generate_keypairs};
+use solana_bench_tps::cli;
+use solana_core::gossip_service::{discover_cluster, get_client, get_multi_client};
+use solana_genesis::Base64Account;
+use solana_sdk::fee_calculator::FeeRateGovernor;
+use solana_sdk::signature::{Keypair, Signer};
+use solana_sdk::system_program;
+use std::{collections::HashMap, fs::File, io::prelude::*, path::Path, process::exit, sync::Arc};
 
 /// Number of signatures for all transactions in ~1 week at ~100K TPS
 pub const NUM_SIGNATURES_FOR_TXS: u64 = 100_000 * 60 * 60 * 24 * 7;
 
 fn main() {
-    solana_logger::setup();
+    solana_logger::setup_with_default("solana=info");
     solana_metrics::set_panic_hook("bench-tps");
 
-    let matches = cli::build_args().get_matches();
+    let matches = cli::build_args(solana_clap_utils::version!()).get_matches();
     let cli_config = cli::extract_args(&matches);
 
     let cli::Config {
         entrypoint_addr,
-        drone_addr,
+        faucet_addr,
         id,
-        threads,
         num_nodes,
-        duration,
         tx_count,
-        thread_batch_sleep_ms,
-        sustained,
+        keypair_multiplier,
         client_ids_and_stake_file,
         write_to_client_file,
         read_from_client_file,
         target_lamports_per_signature,
-    } = cli_config;
+        use_move,
+        multi_client,
+        num_lamports_per_account,
+        ..
+    } = &cli_config;
 
-    if write_to_client_file {
-        let (keypairs, _) = generate_keypairs(&id, tx_count as u64 * 2);
+    let keypair_count = *tx_count * keypair_multiplier;
+    if *write_to_client_file {
+        info!("Generating {} keypairs", keypair_count);
+        let (keypairs, _) = generate_keypairs(&id, keypair_count as u64);
         let num_accounts = keypairs.len() as u64;
-        let max_fee = FeeCalculator::new(target_lamports_per_signature).max_lamports_per_signature;
+        let max_fee =
+            FeeRateGovernor::new(*target_lamports_per_signature, 0).max_lamports_per_signature;
         let num_lamports_per_account = (num_accounts - 1 + NUM_SIGNATURES_FOR_TXS * max_fee)
             / num_accounts
-            + NUM_LAMPORTS_PER_ACCOUNT;
+            + num_lamports_per_account;
         let mut accounts = HashMap::new();
         keypairs.iter().for_each(|keypair| {
             accounts.insert(
                 serde_json::to_string(&keypair.to_bytes().to_vec()).unwrap(),
-                num_lamports_per_account,
+                Base64Account {
+                    balance: num_lamports_per_account,
+                    executable: false,
+                    owner: system_program::id().to_string(),
+                    data: String::new(),
+                },
             );
         });
 
+        info!("Writing {}", client_ids_and_stake_file);
         let serialized = serde_yaml::to_string(&accounts).unwrap();
         let path = Path::new(&client_ids_and_stake_file);
         let mut file = File::create(path).unwrap();
@@ -61,48 +66,66 @@ fn main() {
         return;
     }
 
-    println!("Connecting to the cluster");
-    let (nodes, _replicators) =
-        discover_cluster(&entrypoint_addr, num_nodes).unwrap_or_else(|err| {
+    info!("Connecting to the cluster");
+    let (nodes, _archivers) =
+        discover_cluster(&entrypoint_addr, *num_nodes).unwrap_or_else(|err| {
             eprintln!("Failed to discover {} nodes: {:?}", num_nodes, err);
             exit(1);
         });
 
-    let (client, num_clients) = get_multi_client(&nodes);
+    let client = if *multi_client {
+        let (client, num_clients) = get_multi_client(&nodes);
+        if nodes.len() < num_clients {
+            eprintln!(
+                "Error: Insufficient nodes discovered.  Expecting {} or more",
+                num_nodes
+            );
+            exit(1);
+        }
+        Arc::new(client)
+    } else {
+        Arc::new(get_client(&nodes))
+    };
 
-    if nodes.len() < num_clients {
-        eprintln!(
-            "Error: Insufficient nodes discovered.  Expecting {} or more",
-            num_nodes
-        );
-        exit(1);
-    }
-
-    let (keypairs, keypair_balance) = if read_from_client_file {
+    let (keypairs, move_keypairs) = if *read_from_client_file && !use_move {
         let path = Path::new(&client_ids_and_stake_file);
         let file = File::open(path).unwrap();
 
-        let accounts: HashMap<String, u64> = serde_yaml::from_reader(file).unwrap();
+        info!("Reading {}", client_ids_and_stake_file);
+        let accounts: HashMap<String, Base64Account> = serde_yaml::from_reader(file).unwrap();
         let mut keypairs = vec![];
         let mut last_balance = 0;
 
-        accounts.into_iter().for_each(|(keypair, balance)| {
-            let bytes: Vec<u8> = serde_json::from_str(keypair.as_str()).unwrap();
-            keypairs.push(Keypair::from_bytes(&bytes).unwrap());
-            last_balance = balance;
-        });
+        accounts
+            .into_iter()
+            .for_each(|(keypair, primordial_account)| {
+                let bytes: Vec<u8> = serde_json::from_str(keypair.as_str()).unwrap();
+                keypairs.push(Keypair::from_bytes(&bytes).unwrap());
+                last_balance = primordial_account.balance;
+            });
+
+        if keypairs.len() < keypair_count {
+            eprintln!(
+                "Expected {} accounts in {}, only received {} (--tx_count mismatch?)",
+                keypair_count,
+                client_ids_and_stake_file,
+                keypairs.len(),
+            );
+            exit(1);
+        }
         // Sort keypairs so that do_bench_tps() uses the same subset of accounts for each run.
         // This prevents the amount of storage needed for bench-tps accounts from creeping up
         // across multiple runs.
         keypairs.sort_by(|x, y| x.pubkey().to_string().cmp(&y.pubkey().to_string()));
-        (keypairs, last_balance)
+        (keypairs, None)
     } else {
         generate_and_fund_keypairs(
-            &client,
-            Some(drone_addr),
+            client.clone(),
+            Some(*faucet_addr),
             &id,
-            tx_count,
-            NUM_LAMPORTS_PER_ACCOUNT,
+            keypair_count,
+            *num_lamports_per_account,
+            *use_move,
         )
         .unwrap_or_else(|e| {
             eprintln!("Error could not fund keys: {:?}", e);
@@ -110,14 +133,5 @@ fn main() {
         })
     };
 
-    let config = Config {
-        id,
-        threads,
-        thread_batch_sleep_ms,
-        duration,
-        tx_count,
-        sustained,
-    };
-
-    do_bench_tps(vec![client], config, keypairs, keypair_balance);
+    do_bench_tps(client, cli_config, keypairs, move_keypairs);
 }

bench-tps/tests/bench_tps.rs

@@ -0,0 +1,86 @@
+use serial_test_derive::serial;
+use solana_bench_tps::bench::{do_bench_tps, generate_and_fund_keypairs};
+use solana_bench_tps::cli::Config;
+use solana_client::thin_client::create_client;
+use solana_core::cluster_info::VALIDATOR_PORT_RANGE;
+use solana_core::validator::ValidatorConfig;
+use solana_faucet::faucet::run_local_faucet;
+use solana_local_cluster::local_cluster::{ClusterConfig, LocalCluster};
+#[cfg(feature = "move")]
+use solana_sdk::move_loader::solana_move_loader_program;
+use solana_sdk::signature::{Keypair, Signer};
+use std::sync::{mpsc::channel, Arc};
+use std::time::Duration;
+
+fn test_bench_tps_local_cluster(config: Config) {
+    #[cfg(feature = "move")]
+    let native_instruction_processors = vec![solana_move_loader_program()];
+
+    #[cfg(not(feature = "move"))]
+    let native_instruction_processors = vec![];
+
+    solana_logger::setup();
+    const NUM_NODES: usize = 1;
+    let cluster = LocalCluster::new(&ClusterConfig {
+        node_stakes: vec![999_990; NUM_NODES],
+        cluster_lamports: 200_000_000,
+        validator_configs: vec![ValidatorConfig::default(); NUM_NODES],
+        native_instruction_processors,
+        ..ClusterConfig::default()
+    });
+
+    let faucet_keypair = Keypair::new();
+    cluster.transfer(
+        &cluster.funding_keypair,
+        &faucet_keypair.pubkey(),
+        100_000_000,
+    );
+
+    let client = Arc::new(create_client(
+        (cluster.entry_point_info.rpc, cluster.entry_point_info.tpu),
+        VALIDATOR_PORT_RANGE,
+    ));
+
+    let (addr_sender, addr_receiver) = channel();
+    run_local_faucet(faucet_keypair, addr_sender, None);
+    let faucet_addr = addr_receiver.recv_timeout(Duration::from_secs(2)).unwrap();
+
+    let lamports_per_account = 100;
+
+    let keypair_count = config.tx_count * config.keypair_multiplier;
+    let (keypairs, move_keypairs) = generate_and_fund_keypairs(
+        client.clone(),
+        Some(faucet_addr),
+        &config.id,
+        keypair_count,
+        lamports_per_account,
+        config.use_move,
+    )
+    .unwrap();
+
+    let _total = do_bench_tps(client, config, keypairs, move_keypairs);
+
+    #[cfg(not(debug_assertions))]
+    assert!(_total > 100);
+}
+
+#[test]
+#[serial]
+fn test_bench_tps_local_cluster_solana() {
+    let mut config = Config::default();
+    config.tx_count = 100;
+    config.duration = Duration::from_secs(10);
+
+    test_bench_tps_local_cluster(config);
+}
+
+#[test]
+#[serial]
+fn test_bench_tps_local_cluster_move() {
+    let mut config = Config::default();
+    config.tx_count = 100;
+    config.duration = Duration::from_secs(10);
+    config.use_move = true;
+
+    test_bench_tps_local_cluster(config);
+}

book/art/consensus.msc

@@ -1,15 +0,0 @@
-msc {
-  client,leader,verifier_a,verifier_b,verifier_c;
-
-  client=>leader [ label = "SUBMIT" ] ;
-  leader=>client [ label = "CONFIRMED" ] ;
-  leader=>verifier_a [ label = "CONFIRMED" ] ;
-  leader=>verifier_b [ label = "CONFIRMED" ] ;
-  leader=>verifier_c [ label = "CONFIRMED" ] ;
-  verifier_a=>leader [ label = "VERIFIED" ] ;
-  verifier_b=>leader [ label = "VERIFIED" ] ;
-  leader=>client [ label = "FINALIZED" ] ;
-  leader=>verifier_a [ label = "FINALIZED" ] ;
-  leader=>verifier_b [ label = "FINALIZED" ] ;
-  leader=>verifier_c [ label = "FINALIZED" ] ;
-}

book/art/spv-bank-merkle.bob

@@ -1,18 +0,0 @@
-                             +------------+
-                             | Bank-Merkle|
-                             +------------+
-                                ^      ^
-                               /        \
-               +-----------------+    +-------------+
-               | Bank-Diff-Merkle|    | Block-Merkle|
-               +-----------------+    +-------------+
-                     ^     ^
-                    /       \
-               +------+   +--------------------------+
-               | Hash |   | Previous Bank-Diff-Merkle|
-               +------+   +--------------------------+
-               ^      ^
-              /        \
- +---------------+   +---------------+
- | Hash(Account1)|   | Hash(Account2)|
- +---------------+   +---------------+

book/art/validator.bob

@@ -1,30 +0,0 @@
-             .--------------------------------------.
-             |  Validator                           |
-             |                                      |
- .--------.  |  .-------------------.               |
- |        |---->|                   |               |
- | Client |  |  | JSON RPC Service  |               |
- |        |<----|                   |               |
- `----+---`  |  `-------------------`               |
-      |      |     ^                                |
-      |      |     |     .----------------.         | .------------------.
-      |      |     |     | Gossip Service |<----------| Validators       |
-      |      |     |     `----------------`         | |                  |
-      |      |     |           ^                    | |                  |
-      |      |     |           |                    | |  .------------.  |
-      |      | .---+---.  .----+---. .-----------.  | |  |            |  |
-      |      | | Bank  |<-+ Replay | | BlobFetch |<------+ Upstream   |  |
-      |      | | Forks |  | Stage  | |  Stage    |  | |  | Validators |  |
-      |      | `-------`  `--------` `--+--------`  | |  |            |  |
-      |      |     ^              ^     |           | |  `------------`  |
-      |      |     |              |     v           | |                  |
-      |      |     |           .--+--------.        | |                  |
-      |      |     |           | Blocktree |        | |                  |
-      |      |     |           `-----------`        | |  .------------.  |
-      |      |     |                ^               | |  |            |  |
-      |      |     |                |               | |  | Downstream |  |
-      |      |  .--+--.     .-------+---.           | |  | Validators |  |
-      `-------->| TPU +---->| Broadcast +--------------->|            |  |
-             |  `-----`     | Stage     |           | |  `------------`  |
-             |              `-----------`           | `------------------`
-             `--------------------------------------`

book/build.sh

@@ -1,6 +0,0 @@
-#!/usr/bin/env bash
-set -e
-
-cd "$(dirname "$0")"
-
-make -j"$(nproc)" test

book/src/SUMMARY.md

@@ -1,79 +0,0 @@
-# Solana Architecture
-
-- [Introduction](introduction.md)
-
-- [Terminology](terminology.md)
-
-- [Getting Started](getting-started.md)
-  - [Testnet Participation](testnet-participation.md)
-  - [Testnet Replicator](testnet-replicator.md)
-  - [Example: Web Wallet](webwallet.md)
-
-- [Programming Model](programs.md)
-  - [Example: Tic-Tac-Toe](tictactoe.md)
-  - [Drones](drones.md)
-
-- [A Solana Cluster](cluster.md)
-  - [Synchronization](synchronization.md)
-  - [Leader Rotation](leader-rotation.md)
-  - [Fork Generation](fork-generation.md)
-  - [Managing Forks](managing-forks.md)
-  - [Turbine Block Propagation](turbine-block-propagation.md)
-  - [Ledger Replication](ledger-replication.md)
-  - [Secure Vote Signing](vote-signing.md)
-  - [Stake Delegation and Rewards](stake-delegation-and-rewards.md)
-  - [Performance Metrics](performance-metrics.md)
-
-- [Anatomy of a Validator](validator.md)
-  - [TPU](tpu.md)
-  - [TVU](tvu.md)
-    - [Blocktree](blocktree.md)
-  - [Gossip Service](gossip.md)
-  - [The Runtime](runtime.md)
-  
-- [Anatomy of a Transaction](transaction.md)
-
-- [API Reference](api-reference.md)
-  - [Transaction](transaction-api.md)
-  - [Instruction](instruction-api.md)
-  - [Blockstreamer](blockstreamer.md)
-  - [JSON RPC API](jsonrpc-api.md)
-  - [JavaScript API](javascript-api.md)
-  - [solana-wallet CLI](wallet.md)
-
-- [Accepted Design Proposals](proposals.md)
-  - [Ledger Replication](ledger-replication-to-implement.md)
-  - [Secure Vote Signing](vote-signing-to-implement.md)
-  - [Staking Rewards](staking-rewards.md)
-  - [Cluster Economics](ed_overview.md)
-    - [Validation-client Economics](ed_validation_client_economics.md)
-      - [State-validation Protocol-based Rewards](ed_vce_state_validation_protocol_based_rewards.md)
-      - [State-validation Transaction Fees](ed_vce_state_validation_transaction_fees.md)
-      - [Replication-validation Transaction Fees](ed_vce_replication_validation_transaction_fees.md)
-      - [Validation Stake Delegation](ed_vce_validation_stake_delegation.md)
-    - [Replication-client Economics](ed_replication_client_economics.md)
-      - [Storage-replication Rewards](ed_rce_storage_replication_rewards.md)
-      - [Replication-client Reward Auto-delegation](ed_rce_replication_client_reward_auto_delegation.md)
-    - [Economic Sustainability](ed_economic_sustainability.md)
-    - [Attack Vectors](ed_attack_vectors.md)
-	- [Economic Design MVP](ed_mvp.md)
-    - [References](ed_references.md)
-  - [Cluster Test Framework](cluster-test-framework.md)
-  - [Credit-only Accounts](credit-only-credit-debit-accounts.md)
-  - [Validator](validator-proposal.md)
-  - [Simple Payment and State Verification](simple-payment-and-state-verification.md)
-  - [Embedding the Move Langauge](embedding-move.md)
-  - [Cross-Program Invocation](cross-program-invocation.md)
-
-- [Implemented Design Proposals](implemented-proposals.md)
-  - [Blocktree](blocktree.md)
-  - [Cluster Software Installation and Updates](installer.md)
-  - [Deterministic Transaction Fees](transaction-fees.md)
-  - [Tower BFT](tower-bft.md)
-  - [Leader-to-Leader Transition](leader-leader-transition.md)
-  - [Leader-to-Validator Transition](leader-validator-transition.md)
-  - [Passive Stake Delegation and Rewards](passive-stake-delegation-and-rewards.md)
-  - [Persistent Account Storage](persistent-account-storage.md)
-  - [Reliable Vote Transmission](reliable-vote-transmission.md)
-  - [Repair Service](repair-service.md) 
-  - [Testing Programs](testing-programs.md)

book/src/api-reference.md

@@ -1,4 +0,0 @@
-# API Reference
-
-The following sections contain API references material you may find useful
-when developing applications utilizing a Solana cluster.

book/src/blockstreamer.md

@@ -1,37 +0,0 @@
-# Blockstreamer
-
-Solana supports a node type called an *blockstreamer*. This fullnode variation
-is intended for applications that need to observe the data plane without
-participating in transaction validation or ledger replication.
-
-A blockstreamer runs without a vote signer, and can optionally stream ledger
-entries out to a Unix domain socket as they are processed. The JSON-RPC service
-still functions as on any other node.
-
-To run a blockstreamer, include the argument `no-signer` and (optional)
-`blockstream` socket location:
-
-```bash
-$ ./multinode-demo/validator-x.sh --no-signer --blockstream <SOCKET>
-```
-
-The stream will output a series of JSON objects:
-- An Entry event JSON object is sent when each ledger entry is processed, with
-the following fields:
-
-   * `dt`, the system datetime, as RFC3339-formatted string
-   * `t`, the event type, always "entry"
-   * `s`, the slot height, as unsigned 64-bit integer
-   * `h`, the tick height, as unsigned 64-bit integer
-   * `entry`, the entry, as JSON object
-
-
-- A Block event JSON object is sent when a block is complete, with the
-following fields:
-
-   * `dt`, the system datetime, as RFC3339-formatted string
-   * `t`, the event type, always "block"
-   * `s`, the slot height, as unsigned 64-bit integer
-   * `h`, the tick height, as unsigned 64-bit integer
-   * `l`, the slot leader id, as base-58 encoded string
-   * `id`, the block id, as base-58 encoded string

book/src/blocktree.md

@@ -1,102 +0,0 @@
-# Blocktree
-
-After a block reaches finality, all blocks from that one on down
-to the genesis block form a linear chain with the familiar name
-blockchain. Until that point, however, the validator must maintain all
-potentially valid chains, called *forks*. The process by which forks
-naturally form as a result of leader rotation is described in
-[fork generation](fork-generation.md). The *blocktree* data structure
-described here is how a validator copes with those forks until blocks
-are finalized.
-
-The blocktree allows a validator to record every blob it observes
-on the network, in any order, as long as the blob is signed by the expected
-leader for a given slot.
-
-Blobs are moved to a fork-able key space the tuple of `leader slot` + `blob
-index` (within the slot).  This permits the skip-list structure of the Solana
-protocol to be stored in its entirety, without a-priori choosing which fork to
-follow, which Entries to persist or when to persist them.
-
-Repair requests for recent blobs are served out of RAM or recent files and out
-of deeper storage for less recent blobs, as implemented by the store backing
-Blocktree.
-
-### Functionalities of Blocktree
-
-1. Persistence: the Blocktree lives in the front of the nodes verification
-   pipeline, right behind network receive and signature verification.  If the
-blob received is consistent with the leader schedule (i.e. was signed by the
-leader for the indicated slot), it is immediately stored.
-2. Repair: repair is the same as window repair above, but able to serve any
-   blob that's been received. Blocktree stores blobs with signatures,
-preserving the chain of origination.
-3. Forks: Blocktree supports random access of blobs, so can support a
-   validator's need to rollback and replay from a Bank checkpoint.
-4. Restart: with proper pruning/culling, the Blocktree can be replayed by
-   ordered enumeration of entries from slot 0.  The logic of the replay stage
-(i.e. dealing with forks) will have to be used for the most recent entries in
-the Blocktree.
-
-### Blocktree Design
-
-1. Entries in the Blocktree are stored as key-value pairs, where the key is the concatenated
-slot index and blob index for an entry, and the value is the entry data. Note blob indexes are zero-based for each slot (i.e. they're slot-relative).
-
-2. The Blocktree maintains metadata for each slot, in the `SlotMeta` struct containing:
-      * `slot_index` - The index of this slot
-      * `num_blocks` - The number of blocks in the slot (used for chaining to a previous slot)
-      * `consumed` - The highest blob index `n`, such that for all `m < n`, there exists a blob in this slot with blob index equal to `n` (i.e. the highest consecutive blob index).
-      * `received` - The highest received blob index for the slot
-      * `next_slots` - A list of future slots this slot could chain to. Used when rebuilding
-      the ledger to find possible fork points.
-      * `last_index` - The index of the blob that is flagged as the last blob for this slot. This flag on a blob will be set by the leader for a slot when they are transmitting the last blob for a slot.
-      * `is_rooted` - True iff every block from 0...slot forms a full sequence without any holes. We can derive is_rooted for each slot with the following rules. Let slot(n) be the slot with index `n`, and slot(n).is_full() is true if the slot with index `n` has all the ticks expected for that slot. Let is_rooted(n) be the statement that "the slot(n).is_rooted is true". Then:
-
-      is_rooted(0)
-      is_rooted(n+1) iff (is_rooted(n) and slot(n).is_full()
-
-3. Chaining - When a blob for a new slot `x` arrives, we check the number of blocks (`num_blocks`) for that new slot (this information is encoded in the blob). We then know that this new slot chains to slot `x - num_blocks`.
-
-4. Subscriptions - The Blocktree records a set of slots that have been "subscribed" to. This means entries that chain to these slots will be sent on the Blocktree channel for consumption by the ReplayStage. See the `Blocktree APIs` for details.
-
-5. Update notifications - The Blocktree notifies listeners when slot(n).is_rooted is flipped from false to true for any `n`.
-
-### Blocktree APIs
-
-The Blocktree offers a subscription based API that ReplayStage uses to ask for entries it's interested in. The entries will be sent on a channel exposed by the Blocktree. These subscription API's are as follows:
-   1. `fn get_slots_since(slot_indexes: &[u64]) -> Vec<SlotMeta>`: Returns new slots connecting to any element of the list `slot_indexes`.
-
-   2. `fn get_slot_entries(slot_index: u64, entry_start_index: usize, max_entries: Option<u64>) -> Vec<Entry>`: Returns the entry vector for the slot starting with `entry_start_index`, capping the result at `max` if `max_entries == Some(max)`, otherwise, no upper limit on the length of the return vector is imposed.
-
-Note: Cumulatively, this means that the replay stage will now have to know when a slot is finished, and subscribe to the next slot it's interested in to get the next set of entries. Previously, the burden of chaining slots fell on the Blocktree.
-
-### Interfacing with Bank
-
-The bank exposes to replay stage:
-
- 1. `prev_hash`: which PoH chain it's working on as indicated by the hash of the last
-    entry it processed
- 2. `tick_height`: the ticks in the PoH chain currently being verified by this
-    bank
- 3. `votes`: a stack of records that contain:
-
-    1. `prev_hashes`: what anything after this vote must chain to in PoH
-    2. `tick_height`: the tick height at which this vote was cast
-    3. `lockout period`: how long a chain must be observed to be in the ledger to
-       be able to be chained below this vote
-
-Replay stage uses Blocktree APIs to find the longest chain of entries it can
-hang off a previous vote.  If that chain of entries does not hang off the
-latest vote, the replay stage rolls back the bank to that vote and replays the
-chain from there.
-
-### Pruning Blocktree
-
-Once Blocktree entries are old enough, representing all the possible forks
-becomes less useful, perhaps even problematic for replay upon restart.  Once a
-validator's votes have reached max lockout, however, any Blocktree contents
-that are not on the PoH chain for that vote for can be pruned, expunged.
-
-Replicator nodes will be responsible for storing really old ledger contents,
-and validators need only persist their bank periodically.

book/src/cluster.md

@@ -1,100 +0,0 @@
-# A Solana Cluster
-
-A Solana cluster is a set of fullnodes working together to serve client
-transactions and maintain the integrity of the ledger. Many clusters may
-coexist. When two clusters share a common genesis block, they attempt to
-converge. Otherwise, they simply ignore the existence of the other.
-Transactions sent to the wrong one are quietly rejected. In this chapter, we'll
-discuss how a cluster is created, how nodes join the cluster, how they share
-the ledger, how they ensure the ledger is replicated, and how they cope with
-buggy and malicious nodes.
-
-## Creating a Cluster
-
-Before starting any fullnodes, one first needs to create a *genesis block*.
-The block contains entries referencing two public keys, a *mint* and a
-*bootstrap leader*. The fullnode holding the bootstrap leader's secret key is
-responsible for appending the first entries to the ledger. It initializes its
-internal state with the mint's account. That account will hold the number of
-native tokens defined by the genesis block. The second fullnode then contacts
-the bootstrap leader to register as a *validator* or *replicator*. Additional
-fullnodes then register with any registered member of the cluster.
-
-A validator receives all entries from the leader and submits votes confirming
-those entries are valid. After voting, the validator is expected to store those
-entries until replicator nodes submit proofs that they have stored copies of
-it. Once the validator observes a sufficient number of copies exist, it deletes
-its copy.
-
-## Joining a Cluster
-
-Validators and replicators enter the cluster via registration messages sent to
-its *control plane*. The control plane is implemented using a *gossip*
-protocol, meaning that a node may register with any existing node, and expect
-its registration to propagate to all nodes in the cluster. The time it takes
-for all nodes to synchronize is proportional to the square of the number of
-nodes participating in the cluster. Algorithmically, that's considered very
-slow, but in exchange for that time, a node is assured that it eventually has
-all the same information as every other node, and that that information cannot
-be censored by any one node.
-
-## Sending Transactions to a Cluster
-
-Clients send transactions to any fullnode's Transaction Processing Unit (TPU)
-port. If the node is in the validator role, it forwards the transaction to the
-designated leader. If in the leader role, the node bundles incoming
-transactions, timestamps them creating an *entry*, and pushes them onto the
-cluster's *data plane*. Once on the data plane, the transactions are validated
-by validator nodes and replicated by replicator nodes, effectively appending
-them to the ledger.
-
-## Confirming Transactions
-
-A Solana cluster is capable of subsecond *confirmation* for up to 150 nodes
-with plans to scale up to hundreds of thousands of nodes. Once fully
-implemented, confirmation times are expected to increase only with the
-logarithm of the number of validators, where the logarithm's base is very high.
-If the base is one thousand, for example, it means that for the first thousand
-nodes, confirmation will be the duration of three network hops plus the time it
-takes the slowest validator of a supermajority to vote. For the next million
-nodes, confirmation increases by only one network hop.
-
-Solana defines confirmation as the duration of time from when the leader
-timestamps a new entry to the moment when it recognizes a supermajority of
-ledger votes.
-
-A gossip network is much too slow to achieve subsecond confirmation once the
-network grows beyond a certain size. The time it takes to send messages to all
-nodes is proportional to the square of the number of nodes. If a blockchain
-wants to achieve low confirmation and attempts to do it using a gossip network,
-it will be forced to centralize to just a handful of nodes.
-
-Scalable confirmation can be achieved using the follow combination of
-techniques:
-
-1. Timestamp transactions with a VDF sample and sign the timestamp.
-2. Split the transactions into batches, send each to separate nodes and have
-   each node share its batch with its peers.
-3. Repeat the previous step recursively until all nodes have all batches.
-
-Solana rotates leaders at fixed intervals, called *slots*. Each leader may only
-produce entries during its allotted slot. The leader therefore timestamps
-transactions so that validators may lookup the public key of the designated
-leader. The leader then signs the timestamp so that a validator may verify the
-signature, proving the signer is owner of the designated leader's public key.
-
-Next, transactions are broken into batches so that a node can send transactions
-to multiple parties without making multiple copies. If, for example, the leader
-needed to send 60 transactions to 6 nodes, it would break that collection of 60
-into batches of 10 transactions and send one to each node. This allows the
-leader to put 60 transactions on the wire, not 60 transactions for each node.
-Each node then shares its batch with its peers. Once the node has collected all
-6 batches, it reconstructs the original set of 60 transactions.
-
-A batch of transactions can only be split so many times before it is so small
-that header information becomes the primary consumer of network bandwidth. At
-the time of this writing, the approach is scaling well up to about 150
-validators. To scale up to hundreds of thousands of validators, each node can
-apply the same technique as the leader node to another set of nodes of equal
-size. We call the technique *data plane fanout*; learn more in the [data plan
-fanout](data-plane-fanout.md) section.

book/src/credit-only-credit-debit-accounts.md

@@ -1,140 +0,0 @@
-# Credit-Only Accounts
-
-This design covers the handling of credit-only and credit-debit accounts in the
-[runtime](runtime.md).  Accounts already distinguish themselves as credit-only or
-credit-debit based on the program ID specified by the transaction's instruction.
-Programs must treat accounts that are not owned by them as credit-only.
-
-To identify credit-only accounts by program id would require the account to be
-fetched and loaded from disk.  This operation is expensive, and while it is
-occurring, the runtime would have to reject any transactions referencing the same
-account.
-
-The proposal introduces a `num_readonly_accounts` field to the transaction
-structure, and removes the `program_ids` dedicated vector for program accounts.
-
-This design doesn't change the runtime transaction processing rules.
-Programs still can't write or spend accounts that they do not own, but it
-allows the runtime to optimistically take the correct lock for each account
-specified in the transaction before loading the accounts from storage.
-
-Accounts selected as credit-debit by the transaction can still be treated as
-credit-only by the instructions.
-
-## Runtime handling
-
-credit-only accounts have the following properties:
-
-* Can be deposited into:  Deposits can be implemented as a simple `atomic_add`.
-* read-only access to account data.
-
-Instructions that debit or modify the credit-only account data will fail.
-
-## Account Lock Optimizations
-
-The Accounts module keeps track of current locked accounts in the runtime,
-which separates credit-only accounts from the credit-debit accounts.  The credit-only
-accounts can be cached in memory and shared between all the threads executing
-transactions.
-
-The current runtime can't predict whether an account is credit-only or credit-debit when
-the transaction account keys are locked at the start of the transaction
-processing pipeline.  Accounts referenced by the transaction have not been
-loaded from the disk yet.
-
-An ideal design would cache the credit-only accounts while they are referenced by
-any transaction moving through the runtime, and release the cache when the last
-transaction exits the runtime.
-
-## Credit-only accounts and read-only account data
-
-Credit-only account data can be treated as read-only. Credit-debit
-account data is treated as read-write.
-
-## Transaction changes
-
-To enable the possibility of caching accounts only while they are in the
-runtime, the Transaction structure should be changed in the following way:
-
-* `program_ids: Vec<Pubkey>` - This vector is removed.  Program keys can be
-placed at the end of the `account_keys` vector within the `num_readonly_accounts`
-number set to the number of programs.
-
-* `num_readonly_accounts: u8` - The number of keys from the **end** of the
-transaction's `account_keys` array that is credit-only.
-
-The following possible accounts are present in an transaction:
-
-* paying account
-* RW accounts
-* R accounts
-* Program IDs
-
-The paying account must be credit-debit, and program IDs must be credit-only.  The
-first account in the `account_keys` array is always the account that pays for
-the transaction fee, therefore it cannot be credit-only.  For these reasons the
-credit-only accounts are all grouped together at the end of the `account_keys`
-vector.  Counting credit-only accounts from the end allow for the default `0`
-value to still be functionally correct, since a transaction will succeed with
-all credit-debit accounts.
-
-Since accounts can only appear once in the transaction's `account_keys` array,
-an account can only be credit-only or credit-debit in a single transaction, not
-both.  The runtime treats a transaction as one atomic unit of execution. If any
-instruction needs credit-debit access to an account, a copy needs to be made. The
-write lock is held for the entire time the transaction is being processed by
-the runtime.
-
-## Starvation
-
-Read locks for credit-only accounts can keep the runtime from executing
-transactions requesting a write lock to a credit-debit account.
-
-When a request for a write lock is made while a read lock is open, the
-transaction requesting the write lock should be cached.  Upon closing the read
-lock, the pending transactions can be pushed through the runtime.
-
-While a pending write transaction exists, any additional read lock requests for
-that account should fail.  It follows that any other write lock requests will also 
-fail.  Currently, clients must retransmit when a transaction fails because of 
-a pending transaction.  This approach would mimic that behavior as closely as
-possible while preventing write starvation.
-
-## Program execution with credit-only accounts
-
-Before handing off the accounts to program execution, the runtime can mark each
-account in each instruction as a credit-only account.  The credit-only accounts can
-be passed as references without an extra copy.  The transaction will abort on a
-write to credit-only.
-
-An alternative is to detect writes to credit-only accounts and fail the
-transactions before commit.
-
-## Alternative design
-
-This design attempts to cache a credit-only account after loading without the use
-of a transaction-specified credit-only accounts list.  Instead, the credit-only
-accounts are held in a reference-counted table inside the runtime as the
-transactions are processed.
-
-1. Transaction accounts are locked.
-    a. If the account is present in the ‘credit-only' table, the TX does not fail.
-       The pending state for this TX is marked NeedReadLock.
-2. Transaction accounts are loaded.
-    a. Transaction accounts that are credit-only increase their reference
-       count in the `credit-only` table.
-    b. Transaction accounts that need a write lock and are present in the
-       `credit-only` table fail.
-3. Transaction accounts are unlocked.
-    a. Decrement the `credit-only` lock table reference count; remove if its 0
-    b. Remove from the `lock` set if the account is not in the `credit-only`
-       table.
-
-The downside with this approach is that if the `lock` set mutex is released
-between lock and load to allow better pipelining of transactions, a request for
-a credit-only account may fail. Therefore, this approach is not suitable for
-treating programs as credit-only accounts.
-
-Holding the accounts lock mutex while fetching the account from disk would
-potentially have a significant performance hit on the runtime. Fetching from
-disk is expected to be slow, but can be parallelized between multiple disks.

book/src/cross-program-invocation.md

@@ -1,111 +0,0 @@
-# Cross-Program Invocation
-
-## Problem
-
-In today's implementation a client can create a transaction that modifies two
-accounts, each owned by a separate on-chain program:
-
-```rust,ignore
-let message = Message::new(vec![
-    token_instruction::pay(&alice_pubkey),
-    acme_instruction::launch_missiles(&bob_pubkey),
-]);
-client.send_message(&[&alice_keypair, &bob_keypair], &message);
-```
-
-The current implementation does not, however, allow the `acme` program to
-conveniently invoke `token` instructions on the client's behalf:
-
-```rust,ignore
-let message = Message::new(vec![
-    acme_instruction::pay_and_launch_missiles(&alice_pubkey, &bob_pubkey),
-]);
-client.send_message(&[&alice_keypair, &bob_keypair], &message);
-```
-
-Currently, there is no way to create instruction `pay_and_launch_missiles` that executes
-`token_instruction::pay` from the `acme` program. The workaround is to extend the
-`acme` program with the implementation of the `token` program, and create `token`
-accounts with `ACME_PROGRAM_ID`, which the `acme` program is permitted to modify.
-With that workaround, `acme` can modify token-like accounts created by the `acme`
-program, but not token accounts created by the `token` program.
-
-
-## Proposed Solution
-
-The goal of this design is to modify Solana's runtime such that an on-chain
-program can invoke an instruction from another program.
-
-Given two on-chain programs `token` and `acme`, each implementing instructions
-`pay()` and `launch_missiles()` respectively, we would ideally like to implement
-the `acme` module with a call to a function defined in the `token` module:
-
-```rust,ignore
-use token;
-
-fn launch_missiles(keyed_accounts: &[KeyedAccount]) -> Result<()> {
-    ...
-}
-
-fn pay_and_launch_missiles(keyed_accounts: &[KeyedAccount]) -> Result<()> {
-    token::pay(&keyed_accounts[1..])?;
-
-    launch_missiles(keyed_accounts)?;
-}
-```
-
-The above code would require that the `token` crate be dynamically linked,
-so that a custom linker could intercept calls and validate accesses to
-`keyed_accounts`. That is, even though the client intends to modify both
-`token` and `acme` accounts, only `token` program is permitted to modify
-the `token` account, and only the `acme` program is permitted to modify
-the `acme` account.
-
-Backing off from that ideal cross-program call, a slightly more
-verbose solution is to expose token's existing `process_instruction()`
-entrypoint to the acme program:
-
-```rust,ignore
-use token_instruction;
-
-fn launch_missiles(keyed_accounts: &[KeyedAccount]) -> Result<()> {
-    ...
-}
-
-fn pay_and_launch_missiles(keyed_accounts: &[KeyedAccount]) -> Result<()> {
-    let alice_pubkey = keyed_accounts[1].key;
-    let instruction = token_instruction::pay(&alice_pubkey);
-    process_instruction(&instruction)?;
-
-    launch_missiles(keyed_accounts)?;
-}
-```
-
-where `process_instruction()` is built into Solana's runtime and responsible
-for routing the given instruction to the `token` program via the instruction's
-`program_id` field. Before invoking `pay()`, the runtime must also ensure that
-`acme` didn't modify any accounts owned by `token`. It does this by calling
-`runtime::verify_instruction()` and then afterward updating all the `pre_*`
-variables to tentatively commit `acme`'s account modifications. After `pay()`
-completes, the runtime must again ensure that `token` didn't modify any
-accounts owned by `acme`. It should call `verify_instruction()` again, but this
-time with the `token` program ID. Lastly, after `pay_and_launch_missiles()`
-completes, the runtime must call `verify_instruction()` one more time, where it
-normally would, but using all updated `pre_*` variables.  If executing
-`pay_and_launch_missiles()` up to `pay()` made no invalid account changes,
-`pay()` made no invalid changes, and executing from `pay()` until
-`pay_and_launch_missiles()` returns made no invalid changes, then the runtime
-can transitively assume `pay_and_launch_missiles()` as whole made no invalid
-account changes, and therefore commit all account modifications.
-
-### Setting `KeyedAccount.is_signer`
-
-When `process_instruction()` is invoked, the runtime must create a new
-`KeyedAccounts` parameter using the signatures from the *original* transaction
-data. Since the `token` program is immutable and existed on-chain prior to the
-`acme` program, the runtime can safely treat the transaction signature as a
-signature of a transaction with a `token` instruction. When the runtime sees
-the given instruction references `alice_pubkey`, it looks up the key in the
-transaction to see if that key corresponds to a transaction signature. In this
-case it does and so sets `KeyedAccount.is_signer`, thereby authorizing the
-`token` program to modify Alice's account.

book/src/drones.md

@@ -1,86 +0,0 @@
-# Creating Signing Services with Drones
-
-This chapter defines an off-chain service called a *drone*, which acts as
-custodian of a user's private key. In its simplest form, it can be used to
-create *airdrop* transactions, a token transfer from the drone's account to a
-client's account.
-
-## Signing Service
-
-A drone is a simple signing service. It listens for requests to sign
-*transaction data*.  Once received, the drone validates the request however it
-sees fit. It may, for example, only accept transaction data with a
-`SystemInstruction::Transfer` instruction transferring only up to a certain amount
-of tokens. If the drone accepts the transaction, it returns an `Ok(Signature)`
-where `Signature` is a signature of the transaction data using the drone's
-private key. If it rejects the transaction data, it returns a `DroneError`
-describing why.
-
-
-## Examples
-
-### Granting access to an on-chain game
-
-Creator of on-chain game tic-tac-toe hosts a drone that responds to airdrop
-requests containing an `InitGame` instruction. The drone signs the transaction
-data in the request and returns it, thereby authorizing its account to pay the
-transaction fee and as well as seeding the game's account with enough tokens to
-play it. The user then creates a transaction for its transaction data and the
-drones signature and submits it to the Solana cluster. Each time the user
-interacts with the game, the game pays the user enough tokens to pay the next
-transaction fee to advance the game. At that point, the user may choose to keep
-the tokens instead of advancing the game. If the creator wants to defend
-against that case, they could require the user to return to the drone to sign
-each instruction.
-
-### Worldwide airdrop of a new token
-
-Creator of a new on-chain token (ERC-20 interface), may wish to do a worldwide
-airdrop to distribute its tokens to millions of users over just a few seconds.
-That drone cannot spend resources interacting with the Solana cluster. Instead,
-the drone should only verify the client is unique and human, and then return
-the signature. It may also want to listen to the Solana cluster for recent
-entry IDs to support client retries and to ensure the airdrop is targeting the
-desired cluster.
-
-
-## Attack vectors
-
-### Invalid recent_blockhash
-
-The drone may prefer its airdrops only target a particular Solana cluster.  To
-do that, it listens to the cluster for new entry IDs and ensure any requests
-reference a recent one.
-
-Note: to listen for new entry IDs assumes the drone is either a fullnode or a
-*light* client. At the time of this writing, light clients have not been
-implemented and no proposal describes them. This document assumes one of the
-following approaches be taken:
-
-1. Define and implement a light client
-2. Embed a fullnode
-3. Query the jsonrpc API for the latest last id at a rate slightly faster than
-   ticks are produced.
-
-### Double spends
-
-A client may request multiple airdrops before the first has been submitted to
-the ledger. The client may do this maliciously or simply because it thinks the
-first request was dropped. The drone should not simply query the cluster to
-ensure the client has not already received an airdrop. Instead, it should use
-`recent_blockhash` to ensure the previous request is expired before signing another.
-Note that the Solana cluster will reject any transaction with a `recent_blockhash`
-beyond a certain *age*.
-
-### Denial of Service
-
-If the transaction data size is smaller than the size of the returned signature
-(or descriptive error), a single client can flood the network.  Considering
-that a simple `Transfer` operation requires two public keys (each 32 bytes) and a
-`fee` field, and that the returned signature is 64 bytes (and a byte to
-indicate `Ok`), consideration for this attack may not be required.
-
-In the current design, the drone accepts TCP connections. This allows clients
-to DoS the service by simply opening lots of idle connections. Switching to UDP
-may be preferred. The transaction data will be smaller than a UDP packet since
-the transaction sent to the Solana cluster is already pinned to using UDP.

book/src/ed_attack_vectors.md

@@ -1,11 +0,0 @@
-## Attack Vectors
-
-### Colluding validation and replication clients
-
-A colluding validation-client, may take the strategy to mark PoReps from non-colluding replicator nodes as invalid as an attempt to maximize the rewards for the colluding replicator nodes. In this case, it isn’t feasible for the offended-against replicator nodes to petition the network for resolution as this would result in a network-wide vote on each offending PoRep and create too much overhead for the network to progress adequately. Also, this mitigation attempt would still be vulnerable to a >= 51% staked colluder.
-
-Alternatively, transaction fees from submitted PoReps are pooled and distributed across validation-clients in proportion to the number of valid PoReps discounted by the number of invalid PoReps as voted by each validator-client. Thus invalid votes are directly dis-incentivized through this reward channel. Invalid votes that are revealed by replicator nodes as fishing PoReps, will not be discounted from the payout PoRep count.
-
-Another collusion attack involves a validator-client who may take the strategy to ignore invalid PoReps from colluding replicator and vote them as valid. In this case, colluding replicator-clients would not have to store the data while still receiving rewards for validated PoReps. Additionally, colluding validator nodes would also receive rewards for validating these PoReps. To mitigate this attack, validators must randomly sample PoReps corresponding to the ledger block they are validating and because of this, there will be multiple validators that will receive the colluding replicator’s invalid submissions. These non-colluding validators will be incentivized to mark these PoReps as invalid as they have no way to determine whether the proposed invalid PoRep is actually a fishing PoRep, for which a confirmation vote would result in the validator’s stake being slashed.
-
-In this case, the proportion of time a colluding pair will be successful has an upper limit determined by the % of stake of the network claimed by the colluding validator. This also sets bounds to the value of such an attack. For example, if a colluding validator controls 10% of the total validator stake, transaction fees will be lost (likely sent to mining pool) by the colluding replicator 90% of the time and so the attack vector is only profitable if the per-PoRep reward at least 90% higher than the average PoRep transaction fee. While, probabilistically, some colluding replicator-client PoReps will find their way to colluding validation-clients, the network can also monitor rates of paired (validator + replicator) discrepancies in voting patterns and censor identified colluders in these cases.

book/src/ed_economic_sustainability.md

@@ -1,18 +0,0 @@
-## Economic Sustainability
-
-Long term economic sustainability is one of the guiding principles of Solana’s economic design. While it is impossible to predict how decentralized economies will develop over time, especially economies with flexible decentralized governances, we can arrange economic components such that, under certain conditions, a sustainable economy may take shape in the long term. In the case of Solana’s network, these components take the form of the remittances and deposits into and out of the reserve ‘mining pool’.
-
-The dominant remittances from the Solana mining pool are validator and replicator rewards. The deposit mechanism is a flat, protocol-specified and adjusted, % of each transaction fee.
-
-The Replicator rewards are to be delivered to replicators from the mining pool after successful PoRep validation. The per-PoRep reward amount is determined as a function of the total network storage redundancy at the time of the PoRep validation and the network goal redundancy. This function is likely to take the form of a discount from a base reward to be delivered when the network has achieved and maintained its goal redundancy. An example of such a reward function is shown in **Figure 3**
-
-<!-- ![image alt text](porep_reward.png) -->
-<p style="text-align:center;"><img src="img/porep_reward.png" alt="==PoRep Reward Curve ==" width="800"/></p>
-
-**Figure 3**: Example PoRep reward design as a function of global network storage redundancy.
-
-In the example shown in Figure 1, multiple per PoRep base rewards are explored (as a % of Tx Fee) to be delivered when the global ledger replication redundancy meets 10X. When the global ledger replication redundancy is less than 10X, the base reward is discounted as a function of the square of the ratio of the actual ledger replication redundancy to the goal redundancy (i.e. 10X).
-
-The other protocol-based remittance goes to validation-clients as a reward distributed in proportion to stake-weight for voting to validate the ledger state. The functional issuance of this reward is described in [State-validation Protocol-based Rewards](ed_vce_state_validation_protocol_based_rewards.md) and is designed to reduce over time until validators are incentivized solely through collection of transaction fees. Therefore, in the long-run, protocol-based rewards to replication-nodes will be the only remittances from the mining pool, and will have to be countered by the portion of each non-PoRep transaction fee that is directed back into the mining pool. I.e. for a long-term self-sustaining economy, replicator-client rewards must be subsidized through a minimum fee on each non-PoRep transaction pre-allocated to the mining pool.  Through this constraint, we can write the following inequality:
-
-**== WIP [here](https://docs.google.com/document/d/1HBDasdkjS4Ja9wC_tIUsZPVcxGAWTuYOq9zf6xoQNps/edit?usp=sharing) ==**

book/src/ed_mvp.md

@@ -1,12 +0,0 @@
-## Proposed MVP of Economic Design
-
-The preceeding sections, outlined in the [Economic Design Overview](ed_overview.md), describe a long-term vision of a sustainable Solana economy. Of course, we don't expect the final implementation to perfectly match what has been described above. We intend to fully engage with network stakeholders throughout the implementation phases (i.e. pre-testnet, testnet, mainnet) to ensure the system supports, and is representative of, the various network participants' interests. The first step toward this goal, however, is outlining a some desired MVP economic features to be available for early pre-testnet and testnet participants. Below is a rough sketch outlining basic economic functionality from which a more complete and functional system can be developed.
-
-### MVP Economic Features
-
-* Faucet to deliver testnet SOLs to validators for staking and dapp development.
-* Mechanism by which validators are rewarded in proportion to their stake. Interest rate mechansism (i.e. to be determined by total % staked) to come later.
-* Ability to delegate tokens to validator nodes.
-* Replicators to receive fixed, arbitrary reward for submitting validated PoReps. Reward size mechanism (i.e. PoRep reward as a function of total ledger redundancy) to come later.
-* Pooling of replicator PoRep transaction fees and weighted distribution to validators based on PoRep verification (see [Replication-validation Transaction Fees](ed_vce_replication_validation_transaction_fees.md). It will be useful to test this protection against attacks on testnet.
-* Nice-to-have: auto-delegation of replicator rewards to validator.

book/src/ed_overview.md

@@ -1,16 +0,0 @@
-## Economic Design Overview
-
-Solana’s crypto-economic system is designed to promote a healthy, long term self-sustaining economy with participant incentives aligned to the security and decentralization of the network. The main participants in this economy are validation-clients and replication-clients. Their contributions to the network, state validation and data storage respectively, and their requisite remittance mechanisms are discussed below.
-
-The main channels of participant remittances are referred to as protocol-based rewards and transaction fees. Protocol-based rewards are protocol-derived issuances from a network-controlled reserve of tokens (sometimes referred to as the ‘mining pool’). These rewards will constitute the total reward delivered to replication clients and a portion of the total rewards for validation clients, the remaining sourced from transaction fees. In the early days of the network, it is likely that protocol-based rewards, deployed based on predefined issuance schedule, will drive the majority of participant incentives to join the network.
-
-These protocol-based rewards, to be distributed to participating validation and replication clients, are to be specified as annual interest rates calculated per, real-time, Solana epoch [DEFINITION]. As discussed further below, the issuance rates are determined as a function of total network validator staked percentage and total replication provided by replicators in each previous epoch. The choice for validator and replicator client rewards to be based on participation rates, rather than a global fixed inflation or interest rate, emphasizes a protocol priority of overall economic security, rather than monetary supply predictability. Due to Solana’s hard total supply cap of 1B tokens and the bounds of client participant rates in the protocol, we believe that global interest, and supply issuance, scenarios should be able to be modeled with reasonable uncertainties.
-
-Transaction fees are market-based participant-to-participant transfers, attached to network interactions as a necessary motivation and compensation for the inclusion and execution of a proposed transaction (be it a state execution or proof-of-replication verification). A mechanism for continuous and long-term funding of the mining pool through a pre-dedicated portion of transaction fees is also discussed below.
-
-A high-level schematic of Solana’s crypto-economic design is shown below in **Figure 1**. The specifics of validation-client economics are described in sections: [Validation-client Economics](ed_validation_client_economics.md), [State-validation Protocol-based Rewards](ed_vce_state_validation_protocol_based_rewards.md), [State-validation Transaction Fees](ed_vce_state_validation_transaction_fees.md) and [Replication-validation Transaction Fees](ed_vce_replication_validation_transaction_fees.md). Also, the chapter titled [Validation Stake Delegation](ed_vce_validation_stake_delegation.md) closes with a discussion of validator delegation opportunties and marketplace. The [Replication-client Economics](ed_replication_client_economics.md) chapter will review the Solana network design for global ledger storage/redundancy and replicator-client economics ([Storage-replication rewards](ed_rce_storage_replication_rewards.md)) along with a replicator-to-validator delegation mechanism designed to aide participant on-boarding into the Solana economy discussed in [Replication-client Reward Auto-delegation](ed_rce_replication_client_reward_auto_delegation.md). The [Economic Sustainability](ed_economic_sustainability.md) section dives deeper into Solana’s design for long-term economic sustainability and outlines the constraints and conditions for a self-sustaining economy. An outline of features for an MVP economic design is discussed in the [Economic Design MVP](ed_mvp.md) section. Finally, in chapter [Attack Vectors](ed_attack_vectors.md), various attack vectors will be described and potential vulnerabilities explored and parameterized.
-
-<!-- ![img alt text](solana_economic_design.png) -->
-<p style="text-align:center;"><img src="img/solana_economic_design.png" alt="== Solana Economic Design Diagram ==" width="800"/></p>
-
-**Figure 1**: Schematic overview of Solana economic incentive design.

book/src/ed_rce_replication_client_reward_auto_delegation.md

@@ -1,5 +0,0 @@
-### Replication-client Reward Auto-delegation
-
-The ability for Solana network participant’s to earn rewards by providing storage service is a unique on-boarding path that requires little hardware overhead and minimal upfront capital. It offers an avenue for individuals with extra-storage space on their home laptops or PCs to contribute to the security of the network and become integrated into the Solana economy.
-
-To enhance this on-boarding ramp and facilitate further participation and investment in the Solana economy, replication-clients have the opportunity to auto-delegate their rewards to validation-clients of their choice. Much like the automatic reinvestment of stock dividends, in this scenario, a replicator-client can earn Solana tokens by providing some storage capacity to the network (i.e. via submitting valid PoReps), have the protocol-based rewards automatically assigned as delegation to a staked validator node and therefore earning interest in the validation-client reward pool.

book/src/ed_rce_storage_replication_rewards.md

@@ -1,5 +0,0 @@
-### Storage-replication Rewards
-
-Replicator-clients download, encrypt and submit PoReps for ledger block sections.3  PoReps submitted to the PoH stream, and subsequently validated, function as evidence that the submitting replicator client is indeed storing the assigned ledger block sections on local hard drive space as a service to the network. Therefore, replicator clients should earn protocol rewards proportional to the amount of storage, and the number of successfully validated PoReps, that they are verifiably providing to the network.
-
-Additionally, replicator clients have the opportunity to capture a portion of slashed bounties [TBD] of dishonest validator clients. This can be accomplished by a replicator client submitting a verifiably false PoRep for which a dishonest validator client receives and signs as a valid PoRep. This reward incentive is to prevent lazy validators and minimize validator-replicator collusion attacks, more on this below.

book/src/ed_replication_client_economics.md

@@ -1,3 +0,0 @@
-## Replication-client economics
-
-Replication-clients should be rewarded for providing the network with storage space. Incentivization of the set of replicators provides data security through redundancy of the historical ledger. Replication nodes are rewarded in proportion to the amount of ledger data storage provided. These rewards are captured by generating and entering Proofs of Replication (PoReps) into the PoH stream which can be validated by Validation nodes as described above in the [Replication-validation Transaction Fees](ed_vce_replication_validation_transaction_fees.md) chapter.

book/src/ed_validation_client_economics.md

@@ -1,3 +0,0 @@
-## Validation-client Economics
-
-Validator-clients are eligible to receive protocol-based (i.e. via mining pool) rewards issued via stake-based annual interest rates by providing compute (CPU+GPU) resources to validate and vote on a given PoH state. These protocol-based rewards are determined through an algorithmic schedule as a function of total amount of Solana tokens staked in the system and duration since network launch (genesis block). Additionally, these clients may earn revenue through two types of transaction fees: state-validation transaction fees and pooled Proof-of-Replication (PoRep) transaction fees. The distribution of these two types of transaction fees to the participating validation set are designed independently as economic goals and attack vectors are unique between the state- generation/validation mechanism and the ledger replication/validation mechanism. For clarity, we separately describe the design and motivation of the three types of potential revenue streams for validation-clients below: state-validation protocol-based rewards, state-validation transaction fees and PoRep-validation transaction fees.

book/src/ed_vce_replication_validation_transaction_fees.md

@@ -1,9 +0,0 @@
-### Replication-validation Transaction Fees
-
-As previously mentioned, validator-clients will also be responsible for validating PoReps submitted into the PoH stream by replicator-clients. In this case, validators are providing compute (CPU/GPU) and light storage resources to confirm that these replication proofs could only be generated by a client that is storing the referenced PoH leger block.2
-
-While replication-clients are incentivized and rewarded through protocol-based rewards schedule (see [Replication-client Economics](ed_replication_client_economics.md)), validator-clients will be incentivized to include and validate PoReps in PoH through the distribution of the transaction fees associated with the submitted PoRep. As will be described in detail in the Section 3.1, replication-client rewards are protocol-based and designed to reward based on a global data redundancy factor. I.e. the protocol will incentivize replication-client participation through rewards based on a target ledger redundancy (e.g. 10x data redundancy). It was chosen not to include a distribution of these rewards to PoRep validators, and to rely only on the collection of PoRep attached transaction fees, due to the fact that the confluence of two participation incentive modes (state-validation inflation rate via global staked % and replication-validation rewards based on global redundancy factor) on the incentives of a single network participant (a validator-client) potentially opened up a significant incentive-driven attack surface area.
-
-The validation of PoReps by validation-clients is computationally more expensive than state-validation (detail in the [Economic Sustainability](ed_economic_sustainability.md) chapter), thus the transaction fees are expected to be proportionally higher. However, because replication-client rewards are distributed in proportion to and only after submitted PoReps are validated, they are uniquely motivated for the inclusion and validation of their proofs. This pressure is expected to generate an adequate market economy between replication-clients and validation-clients. Additionally, transaction fees submitted with PoReps have no minimum amount pre-allocated to the mining pool, as do state-validation transaction fees.
-
-There are various attack vectors available for colluding validation and replication clients, as described in detail below in [Economic Sustainability](ed_economic_sustainability). To protect against various collusion attack vectors, for a given epoch, PoRep transaction fees are pooled, and redistributed across participating validation-clients in proportion to the number of validated PoReps in the epoch less the number of invalidated PoReps [DIAGRAM]. This design rewards validators proportional to the number of PoReps they process and validate, while providing negative pressure for validation-clients to submit lazy or malicious invalid votes on submitted PoReps (note that it is computationally prohibitive to determine whether a validator-client has marked a valid PoRep as invalid).

book/src/ed_vce_state_validation_protocol_based_rewards.md

@@ -1,46 +0,0 @@
-### State-validation protocol-based rewards
-
-Validator-clients have two functional roles in the Solana network
-
-* Validate (vote) the current global state of that PoH along with any Proofs-of-Replication (see [Replication Client Economics](ed_replication_client_economics.md)) that they are eligible to validate
-
-* Be elected as ‘leader’ on a stake-weighted round-robin schedule during which time they are responsible for collecting outstanding transactions and Proofs-of-Replication and incorporating them into the PoH, thus updating the global state of the network and providing chain continuity.
-
-Validator-client rewards for these services are to be distributed at the end of each Solana epoch. Compensation for validator-clients is provided via a protocol-based annual interest rate dispersed in proportion to the stake-weight of each validator (see below) along with leader-claimed transaction fees available during each leader rotation. I.e. during the time a given validator-client is elected as leader, it has the opportunity to keep a portion of each non-PoRep transaction fee, less a protocol-specified amount that is returned to the mining pool (see [Validation-client State Transaction Fees](ed_vce_state_validation_transaction_fees.md)). PoRep transaction fees are not collected directly by the leader client but pooled and returned to the validator set in proportion to the number of successfully validated PoReps. (see [Replication-client Transaction Fees](ed_vce_replication_validation_transaction_fees.md))
-
-
-The protocol-based annual interest-rate (%) per epoch to be distributed to validation-clients is to be a function of:
-
-* the current fraction of staked SOLs out of the current total circulating supply,
-
-* the global time since the genesis block instantiation
-
-* the up-time/participation [% of available slots/blocks that validator had opportunity to vote on?] of a given validator over the previous epoch.
-
-The first two factors are protocol parameters only (i.e. independent of validator behavior in a given epoch) and describe a global validation reward schedule designed to both incentivize early participation and optimal security in the network. This schedule sets a maximum annual validator-client interest rate per epoch.
-
-At any given point in time, this interest rate is pegged to a defined value given a specific % staked SOL out of the circulating supply (e.g. 10% interest rate when 66% of circulating SOL is staked). The interest rate adjusts as the square-root [TBD] of the % staked, leading to higher validation-client interest rates as the % staked drops below the targeted goal, thus incentivizing more participation leading to more security in the network. An example of such a schedule, for a specified point in time (e.g. network launch) is shown in **Table 1**.
-
-| Percentage circulating supply staked [%] | Annual validator-client interest rate [%] |
-| ---:    | ---:      |
-| 5       | 13.87     |
-| 15      | 13.31     |
-| 25      | 12.73     |
-| 35      | 12.12     |
-| 45      | 11.48     |
-| 55      | 10.80     |
-| **66**  | **10.00** |
-| 75      | 9.29      |
-| 85      | 8.44      |    
-
-**Table 1:** Example interest rate schedule based on % SOL staked out of circulating supply. In this case, interest rates are fixed at 10% for 66% of staked circulating supply
-
-Over time, the interest rate, at any network staked percentage, will drop as described by an algorithmic schedule. Validation-client interest rates are designed to be higher in the early days of the network to incentivize participation and jumpstart the network economy. This mining-pool provided interest rate will reduce over time until a network-chosen baseline value is reached. This is a fixed, long-term, interest rate to be provided to validator-clients. This value does not represent the total interest available to validator-clients as transaction fees for both state-validation and ledger storage replication (PoReps) are not accounted for here. A validation-client interest rate schedule as a function of % network staked and time is shown in** Figure 2**.
-
-<!-- ![== Validation Client Interest Rates Figure ==](validation_client_interest_rates.png =250x) -->
-
-<p style="text-align:center;"><img src="img/validation_client_interest_rates.png" alt="drawing" width="800"/></p>
-
-**Figure 2:** In this example schedule, the annual interest rate [%] reduces at around 16.7% per year, until it reaches the long-term, fixed, 4% rate.
-
-This epoch-specific protocol-defined interest rate sets an upper limit of *protocol-generated* annual interest rate (not absolute total interest rate) possible to be delivered to any validator-client per epoch. The distributed interest rate per epoch is then discounted from this value based on the participation of the validator-client during the previous epoch. Each epoch is comprised of XXX slots. The protocol-defined interest rate is then discounted by the log [TBD] of the % of slots a given validator submitted a vote on a PoH branch during that epoch, see **Figure XX**

book/src/ed_vce_state_validation_transaction_fees.md

@@ -1,20 +0,0 @@
-### State-validation Transaction Fees
-
-Each message sent through the network, to be processed by the current leader validation-client and confirmed as a global state transaction, must contain a transaction fee. Transaction fees offer many benefits in the Solana economic design, for example they:
-
-* provide unit compensation to the validator network for the CPU/GPU resources necessary to process the state transaction,
-
-* reduce network spam by introducing real cost to transactions,
-
-* open avenues for a transaction market to incentivize validation-client to collect and process submitted transactions in their function as leader,
-
-* and provide potential long-term economic stability of the network through a protocol-captured minimum fee amount per transaction, as described below.
-
-Many current blockchain economies (e.g. Bitcoin, Ethereum), rely on protocol-based rewards to support the economy in the short term, with the assumption that the revenue generated through transaction fees will support the economy in the long term, when the protocol derived rewards expire. In an attempt to create a sustainable economy through protocol-based rewards and transaction fees, a fixed portion of each transaction fee is sent to the mining pool, with the resulting fee going to the current leader processing the transaction. These pooled fees, then re-enter the system through rewards distributed to validation-clients, through the process described above, and replication-clients, as discussed below.
-
-The intent of this design is to retain leader incentive to include as many transactions as possible within the leader-slot time, while providing a redistribution avenue that protects against "tax evasion" attacks (i.e. side-channel fee payments)<sup>[1](ed_referenced.md)</sup>. Constraints on the fixed portion of transaction fees going to the mining pool, to establish long-term economic sustainability, are established and discussed in detail in the [Economic Sustainability](ed_economic_sustainability.md) section.
-
-This minimum, protocol-earmarked, portion of each transaction fee can be dynamically adjusted depending on historical gas usage. In this way, the protocol can use the minimum fee to target a desired hardware utilisation. By monitoring a protocol specified gas usage with respect to a desired, target usage amount (e.g. 50% of a block's capacity), the minimum fee can be raised/lowered which should, in turn, lower/raise the actual gas usage per block until it reaches the target amount. This adjustment process can be thought of as similar to the difficulty adjustment algorithm in the Bitcoin protocol, however in this case it is adjusting the minimum transaction fee to guide the transaction processing hardware usage to a desired level.
-
-Additionally, the minimum protocol captured fee can be a consideration in fork selection. In the case of a PoH fork with a  malicious, censoring leader, we would expect the total procotol captured fee to be less than a comparable honest fork, due to the fees lost from censoring. If the censoring leader is to compensate for these lost protocol fees, they would have to replace the fees on their fork themselves, thus potentially reducing the incentive to censor in the first place. 
-

book/src/embedding-move.md

@@ -1,66 +0,0 @@
-# Embedding the Move Language
-
-## Problem
-
-Solana enables developers to write on-chain programs in general purpose
-programming languages such as C or Rust, but those programs contain
-Solana-specific mechanisms. For example, there isn't another chain that asks
-developers to create a Rust module with a `process_instruction(KeyedAccounts)`
-function. Whenever practical, Solana should offer dApp developers more portable
-options.
-
-Until just recently, no popular blockchain offered a language that could expose
-the value of Solana's massively parallel [runtime](runtime.md). Solidity
-contracts, for example, do not separate references to shared data from contract
-code, and therefore need to be executed serially to ensure deterministic
-behavior.  In practice we see that the most aggressively optimized EVM-based
-blockchains all seem to peak out around 1,200 TPS - a small fraction of what
-Solana can do. The Libra project, on the other hand, designed an on-chain
-programming language called Move that is more suitable for parallel execution.
-Like Solana's runtime, Move programs depend on accounts for all shared state.
-
-The biggest design difference between Solana's runtime and Libra's Move VM is
-how they manage safe invocations between modules.  Solana took an operating
-systems approach and Libra took the domain-specific language approach.  In the
-runtime, a module must trap back into the runtime to ensure the caller's module
-did not write to data owned by the callee. Likewise, when the callee completes,
-it must again trap back to the runtime to ensure the callee did not write to
-data owned by the caller. Move, on the other hand, includes an advanced type
-system that allows these checks to be run by its bytecode verifier. Because
-Move bytecode can be verified, the cost of verification is paid just once, at
-the time the module is loaded on-chain. In the runtime, the cost is paid each
-time a transaction crosses between modules. The difference is similar in spirit
-to the difference between a dynamically-typed language like Python versus a
-statically-typed language like Java. Solana's runtime allows dApps to be
-written in general purpose programming languages, but that comes with the cost
-of runtime checks when jumping between programs.
-
-This proposal attempts to define a way to embed the Move VM such that:
-
-* cross-module invocations within Move do not require the runtime's
-  cross-program runtime checks
-* Move programs can leverage functionality in other Solana programs and vice
-  versa
-* Solana's runtime parallelism is exposed to batches of Move and non-Move
-  transactions
-
-## Proposed Solution
-
-### Move VM as a Solana loader
-
-The Move VM shall be embedded as a Solana loader under the identifier
-`MOVE_PROGRAM_ID`, so that Move modules can be marked as `executable` with the
-VM as its `owner`. This will allow modules to load module dependencies, as well
-as allow for parallel execution of Move scripts.
-
-All data accounts owned by Move modules must set their owners to the loader,
-`MOVE_PROGRAM_ID`. Since Move modules encapsulate their account data in the
-same way Solana programs encapsulate theirs, the Move module owner should be
-embedded in the account data. The runtime will grant write access to the Move
-VM, and Move grants access to the module accounts.
-
-### Interacting with Solana programs
-
-To invoke instructions in non-Move programs, Solana would need to extend the
-Move VM with a `process_instruction()` system call. It would work the same as
-`process_instruction()` Rust BPF programs.

book/src/fork-generation.md

@@ -1,104 +0,0 @@
-# Fork Generation
-
-The chapter describes how forks naturally occur as a consequence of [leader
-rotation](leader-rotation.md).
-
-
-## Overview
-
-Nodes take turns being leader and generating the PoH that encodes state
-changes.  The cluster can tolerate loss of connection to any leader by
-synthesizing what the leader ***would*** have generated had it been connected
-but not ingesting any state changes.  The possible number of forks is thereby
-limited to a "there/not-there" skip list of forks that may arise on leader
-rotation slot boundaries.  At any given slot, only a single leader's
-transactions will be accepted.
-
-## Message Flow
-
-1. Transactions are ingested by the current leader.
-2. Leader filters valid transactions.
-3. Leader executes valid transactions updating its state.
-4. Leader packages transactions into entries based off its current PoH slot.
-5. Leader transmits the entries to validator nodes (in signed blobs)
-   1. The PoH stream includes ticks; empty entries that indicate liveness of
-      the leader and the passage of time on the cluster.
-   2. A leader's stream begins with the tick entries necessary complete the PoH
-      back to the leaders most recently observed prior leader slot.
-6. Validators retransmit entries to peers in their set and to further
-   downstream nodes.
-7. Validators validate the transactions and execute them on their state.
-8. Validators compute the hash of the state.
-9. At specific times, i.e. specific PoH tick counts, validators transmit votes
-   to the leader.
-   1. Votes are signatures of the hash of the computed state at that PoH tick
-      count
-   2. Votes are also propagated via gossip
-10. Leader executes the votes as any other transaction and broadcasts them to
-    the cluster.
-11. Validators observe their votes and all the votes from the cluster.
-
-## Partitions, Forks
-
-Forks can arise at PoH tick counts that correspond to a vote.  The next leader
-may not have observed the last vote slot and may start their slot with
-generated virtual PoH entries.  These empty ticks are generated by all nodes in
-the cluster at a cluster-configured rate for hashes/per/tick `Z`.
-
-There are only two possible versions of the PoH during a voting slot: PoH with
-`T` ticks and entries generated by the current leader, or PoH with just ticks.
-The "just ticks" version of the PoH can be thought of as a virtual ledger, one
-that all nodes in the cluster can derive from the last tick in the previous
-slot.
-
-Validators can ignore forks at other points (e.g. from the wrong leader), or
-slash the leader responsible for the fork.
-
-Validators vote based on a greedy choice to maximize their reward described in
-[Tower BFT](tower-bft.md).
-
-### Validator's View
-
-#### Time Progression
-
-The diagram below represents a validator's view of the
-PoH stream with possible forks over time.  L1, L2, etc. are leader slots, and
-`E`s represent entries from that leader during that leader's slot.  The `x`s
-represent ticks only, and time flows downwards in the diagram.
-
-
-<img alt="Fork generation" src="img/fork-generation.svg" class="center"/>
-
-Note that an `E` appearing on 2 forks at the same slot is a slashable
-condition, so a validator observing `E3` and `E3'` can slash L3 and safely
-choose `x` for that slot.  Once a validator commits to a forks, other forks can
-be discarded below that tick count.  For any slot, validators need only
-consider a single "has entries" chain or a "ticks only" chain to be proposed by
-a leader.  But multiple virtual entries may overlap as they link back to the a
-previous slot.
-
-#### Time Division
-
-It's useful to consider leader rotation over PoH tick count as time division of
-the job of encoding state for the cluster.  The following table presents the
-above tree of forks as a time-divided ledger.
-
-leader slot |  L1 | L2 | L3 | L4 | L5
--------|----|----|----|----|----
-data      |  E1| E2 | E3 | E4  | E5
-ticks since prev  | | | | x | xx
-
-Note that only data from leader L3 will be accepted during leader slot L3.
-Data from L3 may include "catchup" ticks back to a slot other than L2 if L3 did
-not observe L2's data.  L4 and L5's transmissions include the "ticks to prev"
-PoH entries.
-
-This arrangement of the network data streams permits nodes to save exactly this
-to the ledger for replay, restart, and checkpoints.
-
-### Leader's View
-
-When a new leader begins a slot, it must first transmit any PoH (ticks)
-required to link the new slot with the most recently observed and voted slot.
-The fork the leader proposes would link the current slot to a previous fork
-that the leader has voted on with virtual ticks.

book/src/getting-started.md

@@ -1,168 +0,0 @@
-# Getting Started
-
-The Solana git repository contains all the scripts you might need to spin up your
-own local testnet. Depending on what you're looking to achieve, you may want to
-run a different variation, as the full-fledged, performance-enhanced
-multinode testnet is considerably more complex to set up than a Rust-only,
-singlenode testnode.  If you are looking to develop high-level features, such
-as experimenting with smart contracts, save yourself some setup headaches and
-stick to the Rust-only singlenode demo.  If you're doing performance optimization
-of the transaction pipeline, consider the enhanced singlenode demo. If you're
-doing consensus work, you'll need at least a Rust-only multinode demo. If you want
-to reproduce our TPS metrics, run the enhanced multinode demo.
-
-For all four variations, you'd need the latest Rust toolchain and the Solana
-source code:
-
-First, install Rust's package manager Cargo.
-
-```bash
-$ curl https://sh.rustup.rs -sSf | sh
-$ source $HOME/.cargo/env
-```
-
-Now checkout the code from github:
-
-```bash
-$ git clone https://github.com/solana-labs/solana.git
-$ cd solana
-```
-
-The demo code is sometimes broken between releases as we add new low-level
-features, so if this is your first time running the demo, you'll improve
-your odds of success if you check out the
-[latest release](https://github.com/solana-labs/solana/releases)
-before proceeding:
-
-```bash
-$ TAG=$(git describe --tags $(git rev-list --tags --max-count=1))
-$ git checkout $TAG
-```
-
-### Configuration Setup
-
-Ensure important programs such as the vote program are built before any
-nodes are started
-```bash
-$ cargo build --all
-```
-
-The network is initialized with a genesis ledger generated by running the
-following script.
-
-```bash
-$ ./multinode-demo/setup.sh
-```
-
-### Drone
-
-In order for the fullnodes and clients to work, we'll need to
-spin up a drone to give out some test tokens.  The drone delivers Milton
-Friedman-style "air drops" (free tokens to requesting clients) to be used in
-test transactions.
-
-Start the drone with:
-
-```bash
-$ ./multinode-demo/drone.sh
-```
-
-### Singlenode Testnet
-
-Before you start a validator, make sure you know the IP address of the machine you
-want to be the bootstrap leader for the demo, and make sure that udp ports 8000-10000 are
-open on all the machines you want to test with.
-
-Now start the bootstrap leader in a separate shell:
-
-```bash
-$ ./multinode-demo/bootstrap-leader.sh
-```
-
-Wait a few seconds for the server to initialize. It will print "leader ready..." when it's ready to
-receive transactions. The leader will request some tokens from the drone if it doesn't have any.
-The drone does not need to be running for subsequent leader starts.
-
-### Multinode Testnet
-
-To run a multinode testnet, after starting a leader node, spin up some
-additional validators in separate shells:
-
-```bash
-$ ./multinode-demo/validator-x.sh
-```
-
-To run a performance-enhanced full node on Linux,
-[CUDA 10.0](https://developer.nvidia.com/cuda-downloads) must be installed on
-your system:
-
-```bash
-$ ./fetch-perf-libs.sh
-$ SOLANA_CUDA=1 ./multinode-demo/bootstrap-leader.sh
-$ SOLANA_CUDA=1 ./multinode-demo/validator.sh
-```
-
-### Testnet Client Demo
-
-Now that your singlenode or multinode testnet is up and running let's send it
-some transactions!
-
-In a separate shell start the client:
-
-```bash
-$ ./multinode-demo/client.sh # runs against localhost by default
-```
-
-What just happened? The client demo spins up several threads to send 500,000 transactions
-to the testnet as quickly as it can. The client then pings the testnet periodically to see
-how many transactions it processed in that time. Take note that the demo intentionally
-floods the network with UDP packets, such that the network will almost certainly drop a
-bunch of them. This ensures the testnet has an opportunity to reach 710k TPS. The client
-demo completes after it has convinced itself the testnet won't process any additional
-transactions. You should see several TPS measurements printed to the screen. In the
-multinode variation, you'll see TPS measurements for each validator node as well.
-
-### Testnet Debugging
-
-There are some useful debug messages in the code, you can enable them on a per-module and per-level
-basis.  Before running a leader or validator set the normal RUST\_LOG environment variable.
-
-For example
-
-* To enable `info` everywhere and `debug` only in the solana::banking_stage module:
-
-  ```bash
-  $ export RUST_LOG=solana=info,solana::banking_stage=debug
-  ```
-
-* To enable BPF program logging:
-
-  ```bash
-  $ export RUST_LOG=solana_bpf_loader=trace
-  ```
-
-Generally we are using `debug` for infrequent debug messages, `trace` for potentially frequent
-messages and `info` for performance-related logging.
-
-You can also attach to a running process with GDB.  The leader's process is named
-_solana-validator_:
-
-```bash
-$ sudo gdb
-attach <PID>
-set logging on
-thread apply all bt
-```
-
-This will dump all the threads stack traces into gdb.txt
-
-## Public Testnet
-
-In this example the client connects to our public testnet. To run validators on the testnet you would need to open udp ports `8000-10000`.
-
-```bash
-$ ./multinode-demo/client.sh --entrypoint testnet.solana.com:8001 --drone testnet.solana.com:9900 --duration 60 --tx_count 50
-```
-
-You can observe the effects of your client's transactions on our [dashboard](https://metrics.solana.com:3000/d/testnet/testnet-hud?orgId=2&from=now-30m&to=now&refresh=5s&var-testnet=testnet)
-

book/src/gossip.md

@@ -1,128 +0,0 @@
-# Gossip Service
-
-The Gossip Service acts as a gateway to nodes in the control plane. Validators
-use the service to ensure information is available to all other nodes in a cluster.
-The service broadcasts information using a gossip protocol.
-
-## Gossip Overview
-
-Nodes continuously share signed data objects among themselves in order to
-manage a cluster. For example, they share their contact information, ledger
-height, and votes.
-
-Every tenth of a second, each node sends a "push" message and/or a "pull"
-message.  Push and pull messages may elicit responses, and push messages may be
-forwarded on to others in the cluster.
-
-Gossip runs on a well-known UDP/IP port or a port in a well-known range.  Once
-a cluster is bootstrapped, nodes advertise to each other where to find their
-gossip endpoint (a socket address).
-
-## Gossip Records
-
-Records shared over gossip are arbitrary, but signed and versioned (with a
-timestamp) as needed to make sense to the node receiving them. If a node
-receives two records from the same source, it updates its own copy with the
-record with the most recent timestamp.
-
-## Gossip Service Interface
-
-### Push Message
-
-A node sends a push message to tells the cluster it has information to share.
-Nodes send push messages to `PUSH_FANOUT` push peers.
-
-Upon receiving a push message, a node examines the message for:
-
-1. Duplication: if the message has been seen before, the node drops the message
-   and may respond with `PushMessagePrune` if forwarded from a low staked node
-
-2. New data: if the message is new to the node
-   * Stores the new information with an updated version in its cluster info and
-     purges any previous older value
-   * Stores the message in `pushed_once` (used for detecting duplicates,
-     purged after `PUSH_MSG_TIMEOUT * 5` ms)
-   * Retransmits the messages to its own push peers
-
-3. Expiration: nodes drop push messages that are older than `PUSH_MSG_TIMEOUT`
-
-### Push Peers, Prune Message
-
-A nodes selects its push peers at random from the active set of known peers.
-The node keeps this selection for a relatively long time.  When a prune message
-is received, the node drops the push peer that sent the prune.  Prune is an
-indication that there is another, higher stake weighted path to that node than direct push.
-
-The set of push peers is kept fresh by rotating a new node into the set every
-`PUSH_MSG_TIMEOUT/2` milliseconds.
-
-### Pull Message
-
-A node sends a pull message to ask the cluster if there is any new information.
-A pull message is sent to a single peer at random and comprises a Bloom filter
-that represents things it already has.  A node receiving a pull message
-iterates over its values and constructs a pull response of things that miss the
-filter and would fit in a message.
-
-A node constructs the pull Bloom filter by iterating over current values and
-recently purged values.
-
-A node handles items in a pull response the same way it handles new data in a
-push message.
-
-
-## Purging
-
-Nodes retain prior versions of values (those updated by a pull or push) and
-expired values (those older than `GOSSIP_PULL_CRDS_TIMEOUT_MS`) in
-`purged_values` (things I recently had).  Nodes purge `purged_values` that are
-older than `5 * GOSSIP_PULL_CRDS_TIMEOUT_MS`.
-
-## Eclipse Attacks
-
-An eclipse attack is an attempt to take over the set of node connections with
-adversarial endpoints.
-
-This is relevant to our implementation in the following ways.
-
-* Pull messages select a random node from the network.  An eclipse attack on
-*pull* would require an attacker to influence the random selection in such a way
-that only adversarial nodes are selected for pull.
-
-* Push messages maintain an active set of nodes and select a random fanout for
-every push message.  An eclipse attack on *push* would influence the active set
-selection, or the random fanout selection.
-
-### Time and Stake based weights
-
-Weights are calculated based on `time since last picked` and the `natural log` of the `stake weight`.
-
-Taking the `ln` of the stake weight allows giving all nodes a fairer chance of network
-coverage in a reasonable amount of time. It helps normalize the large possible `stake weight` differences between nodes.
-This way a node with low `stake weight`, compared to a node with large `stake weight` will only have to wait a
-few multiples of ln(`stake`) seconds before it gets picked.
-
-There is no way for an adversary to influence these parameters.
-
-### Pull Message
-
-A node is selected as a pull target based on the weights described above.
-
-### Push Message
-
-A prune message can only remove an adversary from a potential connection.
-
-Just like *pull message*, nodes are selected into the active set based on weights.
-
-## Notable differences from PlumTree
-
-The active push protocol described here is based on [Plum
-Tree](https://haslab.uminho.pt/jop/files/lpr07a.pdf).  The main differences are:
-
-* Push messages have a wallclock that is signed by the originator.  Once the
-wallclock expires the message is dropped.  A hop limit is difficult to implement
-in an adversarial setting.
-
-* Lazy Push is not implemented because its not obvious how to prevent an
-adversary from forging the message fingerprint.  A naive approach would allow an
-adversary to be prioritized for pull based on their input.

book/src/instruction-api.md

@@ -1,25 +0,0 @@
-# Instructions
-
-For the purposes of building a [Transaction](transaction.md), a more
-verbose instruction format is used:
-
-* **Instruction:**
-  * **program_id:** The pubkey of the on-chain program that executes the
-    instruction
-  * **accounts:** An ordered list of accounts that should be passed to
-    the program processing the instruction, including metadata detailing
-    if an account is a signer of the transaction and if it is a credit
-    only account.
-  * **data:** A byte array that is passed to the program executing the
-    instruction
-  
-A more compact form is actually included in a `Transaction`:
-
-* **CompiledInstruction:**
-  * **program_id_index:** The index of the `program_id` in the
-    `account_keys` list
-  * **accounts:** An ordered list of indices into `account_keys`
-    specifying the accounds that should be passed to the program
-    processing the instruction.
-  * **data:** A byte array that is passed to the program executing the
-    instruction

book/src/introduction.md

@@ -1,117 +0,0 @@
-# What is Solana?
-
-Solana is an open source project implementing a new,
-high-performance, permissionless blockchain. Solana is also the name of a
-company headquartered in San Francisco that maintains the open source project.
-
-# About this Book
-
-This book describes the Solana open source project, a blockchain built from the
-ground up for scale. The book covers why Solana is useful, how to use it, how it
-works, and why it will continue to work long after the company Solana closes
-its doors. The goal of the Solana architecture is to demonstrate there exists a
-set of software algorithms that when used in combination to implement a
-blockchain, removes software as a performance bottleneck, allowing transaction
-throughput to scale proportionally with network bandwidth. The architecture
-goes on to satisfy all three desirable properties of a proper blockchain: 
-it is scalable, secure and decentralized.
-
-The architecture describes a theoretical upper bound of 710 thousand
-transactions per second (tps) on a standard gigabit network and 28.4 million
-tps on 40 gigabit. Furthermore, the architecture supports safe, concurrent
-execution of programs authored in general purpose programming languages such as
-C or Rust.
-
-# Disclaimer
-
-All claims, content, designs, algorithms, estimates, roadmaps, specifications,
-and performance measurements described in this project are done with the
-author's best effort. It is up to the reader to check and validate their
-accuracy and truthfulness. Furthermore, nothing in this project constitutes a
-solicitation for investment.
-
-# History of the Solana Codebase
-
-In November of 2017, Anatoly Yakovenko published a whitepaper describing Proof
-of History, a technique for keeping time between computers that do not trust
-one another. From Anatoly's previous experience designing distributed systems
-at Qualcomm, Mesosphere and Dropbox, he knew that a reliable clock makes
-network synchronization very simple. When synchronization is simple the
-resulting network can be blazing fast, bound only by network bandwidth.
-
-Anatoly watched as blockchain systems without clocks, such as Bitcoin and
-Ethereum, struggled to scale beyond 15 transactions per second worldwide when
-centralized payment systems such as Visa required peaks of 65,000 tps. Without a
-clock, it was clear they'd never graduate to being the global payment system or
-global supercomputer most had dreamed them to be. When Anatoly solved the problem of
-getting computers that don’t trust each other to agree on time, he knew he had
-the key to bring 40 years of distributed systems research to the world of
-blockchain. The resulting cluster wouldn't be just 10 times faster, or a 100
-times, or a 1,000 times, but 10,000 times faster, right out of the gate!
-
-Anatoly's implementation began in a private codebase and was implemented in the
-C programming language. Greg Fitzgerald, who had previously worked with Anatoly
-at semiconductor giant Qualcomm Incorporated, encouraged him to reimplement the
-project in the Rust programming language. Greg had worked on the LLVM compiler
-infrastructure, which underlies both the Clang C/C++ compiler as well as the
-Rust compiler. Greg claimed that the language's safety guarantees would improve
-software productivity and that its lack of a garbage collector would allow
-programs to perform as well as those written in C.  Anatoly gave it a shot and
-just two weeks later, had migrated his entire codebase to Rust. Sold.  With
-plans to weave all the world's transactions together on a single, scalable
-blockchain, Anatoly called the project Loom.
-
-On February 13th of 2018, Greg began prototyping the first open source
-implementation of Anatoly's whitepaper. The project was published to GitHub
-under the name Silk in the loomprotocol organization. On February 28th, Greg
-made his first release, demonstrating 10 thousand signed transactions could be
-verified and processed in just over half a second. Shortly after, another
-former Qualcomm cohort, Stephen Akridge, demonstrated throughput could be
-massively improved by offloading signature verification to graphics processors.
-Anatoly recruited Greg, Stephen and three others to co-found a company, then
-called Loom.
-
-Around the same time, Ethereum-based project Loom Network sprung up and many
-people were confused about whether they were the same project. The Loom team decided it
-would rebrand. They chose the name Solana, a nod to a small beach town North of
-San Diego called Solana Beach, where Anatoly, Greg and Stephen lived and surfed
-for three years when they worked for Qualcomm. On March 28th, the team created
-the Solana Labs GitHub organization and renamed Greg's prototype Silk to
-Solana.
-
-In June of 2018, the team scaled up the technology to run on cloud-based
-networks and on July 19th, published a 50-node, permissioned, public testnet
-consistently supporting bursts of 250,000 transactions per second. In a later release in 
-December, called v0.10 Pillbox, the team published a permissioned testnet
-running 150 nodes on a gigabit network and demonstrated soak tests processing
-an *average* of 200 thousand transactions per second with bursts over 500
-thousand. The project was also extended to support on-chain programs written in
-the C programming language and run concurrently in a safe execution environment
-called BPF. 
-
-# What is a Solana Cluster?
-
-A cluster is a set of computers that work together and can be viewed from the
-outside as a single system. A Solana cluster is a set of independently owned
-computers working together (and sometimes against each other) to verify the
-output of untrusted, user-submitted programs. A Solana cluster can be utilized
-any time a user wants to preserve an immutable record of events in time or
-programmatic interpretations of those events. One use is to track which of the
-computers did meaningful work to keep the cluster running. Another use might be
-to track the possession of real-world assets. In each case, the cluster
-produces a record of events called the ledger. It will be preserved for the
-lifetime of the cluster. As long as someone somewhere in the world maintains a
-copy of the ledger, the output of its programs (which may contain a record of
-who possesses what) will forever be reproducible, independent of the
-organization that launched it.
-
-# What are Sols?
-
-A sol is the name of Solana's native token, which can be passed to nodes in a
-Solana cluster in exchange for running an on-chain program or validating its
-output. The Solana protocol defines that only 1 billion sols will ever exist,
-but that the system may perform micropayments of fractional sols, and that a sol
-may be split as many as 34 times. The fractional sol is called a *lamport*. It
-is named in honor of Solana's biggest technical influence, [Leslie
-Lamport](https://en.wikipedia.org/wiki/Leslie_Lamport). A lamport has a value
-of approximately 0.0000000000582 sol (2^-34).

book/src/jsonrpc-api.md

@@ -1,665 +0,0 @@
-JSON RPC API
-===
-
-Solana nodes accept HTTP requests using the [JSON-RPC 2.0](https://www.jsonrpc.org/specification) specification.
-
-To interact with a Solana node inside a JavaScript application, use the [solana-web3.js](https://github.com/solana-labs/solana-web3.js) library, which gives a convenient interface for the RPC methods.
-
-RPC HTTP Endpoint
----
-
-**Default port:** 8899
-eg. http://localhost:8899, http://192.168.1.88:8899
-
-RPC PubSub WebSocket Endpoint
----
-
-**Default port:** 8900
-eg. ws://localhost:8900, http://192.168.1.88:8900
-
-
-Methods
----
-
-* [confirmTransaction](#confirmtransaction)
-* [getAccountInfo](#getaccountinfo)
-* [getBalance](#getbalance)
-* [getClusterNodes](#getclusternodes)
-* [getEpochInfo](#getepochinfo)
-* [getLeaderSchedule](#getleaderschedule)
-* [getProgramAccounts](#getprogramaccounts)
-* [getRecentBlockhash](#getrecentblockhash)
-* [getSignatureStatus](#getsignaturestatus)
-* [getSlotLeader](#getslotleader)
-* [getSlotsPerSegment](#getslotspersegment)
-* [getStorageTurn](#getstorageturn)
-* [getStorageTurnRate](#getstorageturnrate)
-* [getNumBlocksSinceSignatureConfirmation](#getnumblockssincesignatureconfirmation)
-* [getTransactionCount](#gettransactioncount)
-* [getTotalSupply](#gettotalsupply)
-* [getEpochVoteAccounts](#getepochvoteaccounts)
-* [requestAirdrop](#requestairdrop)
-* [sendTransaction](#sendtransaction)
-* [startSubscriptionChannel](#startsubscriptionchannel)
-
-* [Subscription Websocket](#subscription-websocket)
-  * [accountSubscribe](#accountsubscribe)
-  * [accountUnsubscribe](#accountunsubscribe)
-  * [programSubscribe](#programsubscribe)
-  * [programUnsubscribe](#programunsubscribe)
-  * [signatureSubscribe](#signaturesubscribe)
-  * [signatureUnsubscribe](#signatureunsubscribe)
-
-Request Formatting
----
-
-To make a JSON-RPC request, send an HTTP POST request with a `Content-Type: application/json` header. The JSON request data should contain 4 fields:
-
-* `jsonrpc`, set to `"2.0"`
-* `id`, a unique client-generated identifying integer
-* `method`, a string containing the method to be invoked
-* `params`, a JSON array of ordered parameter values
-
-Example using curl:
-```bash
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getBalance", "params":["83astBRguLMdt2h5U1Tpdq5tjFoJ6noeGwaY3mDLVcri"]}' 192.168.1.88:8899
-```
-
-The response output will be a JSON object with the following fields:
-
-* `jsonrpc`, matching the request specification
-* `id`, matching the request identifier
-* `result`, requested data or success confirmation
-
-Requests can be sent in batches by sending an array of JSON-RPC request objects as the data for a single POST.
-
-Definitions
----
-
-* Hash: A SHA-256 hash of a chunk of data.
-* Pubkey: The public key of a Ed25519 key-pair.
-* Signature: An Ed25519 signature of a chunk of data.
-* Transaction: A Solana instruction signed by a client key-pair.
-
-JSON RPC API Reference
----
-
-### confirmTransaction
-Returns a transaction receipt
-
-##### Parameters:
-* `string` - Signature of Transaction to confirm, as base-58 encoded string
-
-##### Results:
-* `boolean` - Transaction status, true if Transaction is confirmed
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"confirmTransaction", "params":["5VERv8NMvzbJMEkV8xnrLkEaWRtSz9CosKDYjCJjBRnbJLgp8uirBgmQpjKhoR4tjF3ZpRzrFmBV6UjKdiSZkQUW"]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":true,"id":1}
-```
-
----
-
-### getAccountInfo
-Returns all information associated with the account of provided Pubkey
-
-##### Parameters:
-* `string` - Pubkey of account to query, as base-58 encoded string
-
-##### Results:
-The result field will be a JSON object with the following sub fields:
-
-* `lamports`, number of lamports assigned to this account, as a signed 64-bit integer
-* `owner`, array of 32 bytes representing the program this account has been assigned to
-* `data`, array of bytes representing any data associated with the account
-* `executable`, boolean indicating if the account contains a program (and is strictly read-only)
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getAccountInfo", "params":["2gVkYWexTHR5Hb2aLeQN3tnngvWzisFKXDUPrgMHpdST"]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":{"executable":false,"owner":[1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lamports":1,"data":[3,0,0,0,0,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,20,0,0,0,0,0,0,0,50,48,53,48,45,48,49,45,48,49,84,48,48,58,48,48,58,48,48,90,252,10,7,28,246,140,88,177,98,82,10,227,89,81,18,30,194,101,199,16,11,73,133,20,246,62,114,39,20,113,189,32,50,0,0,0,0,0,0,0,247,15,36,102,167,83,225,42,133,127,82,34,36,224,207,130,109,230,224,188,163,33,213,13,5,117,211,251,65,159,197,51,0,0,0,0,0,0]},"id":1}
-```
-
-
----
-
-### getBalance
-Returns the balance of the account of provided Pubkey
-
-##### Parameters:
-* `string` - Pubkey of account to query, as base-58 encoded string
-
-##### Results:
-* `integer` - quantity, as a signed 64-bit integer
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getBalance", "params":["83astBRguLMdt2h5U1Tpdq5tjFoJ6noeGwaY3mDLVcri"]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":0,"id":1}
-```
-
----
-
-### getClusterNodes
-Returns information about all the nodes participating in the cluster
-
-##### Parameters:
-None
-
-##### Results:
-The result field will be an array of JSON objects, each with the following sub fields:
-* `pubkey` - Node public key, as base-58 encoded string
-* `gossip` - Gossip network address for the node
-* `tpu` - TPU network address for the node
-* `rpc` - JSON RPC network address for the node, or `null` if the JSON RPC service is not enabled
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getClusterNodes"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":[{"gossip":"10.239.6.48:8001","pubkey":"9QzsJf7LPLj8GkXbYT3LFDKqsj2hHG7TA3xinJHu8epQ","rpc":"10.239.6.48:8899","tpu":"10.239.6.48:8856"}],"id":1}
-```
-
----
-
-### getEpochInfo
-Returns information about the current epoch
-
-##### Parameters:
-None
-
-##### Results:
-The result field will be an object with the following fields:
-* `epoch`, the current epoch
-* `slotIndex`, the current slot relative to the start of the current epoch
-* `slotsInEpoch`, the number of slots in this epoch
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getEpochInfo"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":{"epoch":3,"slotIndex":126,"slotsInEpoch":256},"id":1}
-```
-
----
-
-### getLeaderSchedule
-Returns the leader schedule for the current epoch
-
-##### Parameters:
-None
-
-##### Results:
-The result field will be an array of leader public keys (as base-58 encoded
-strings) for each slot in the current epoch
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getLeaderSchedule"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":[...],"id":1}
-```
-
----
-
-### getProgramAccounts
-Returns all accounts owned by the provided program Pubkey
-
-##### Parameters:
-* `string` - Pubkey of program, as base-58 encoded string
-
-##### Results:
-The result field will be an array of arrays. Each sub array will contain:
-* `string` - a the account Pubkey as base-58 encoded string
-and a JSON object, with the following sub fields:
-
-* `lamports`, number of lamports assigned to this account, as a signed 64-bit integer
-* `owner`, array of 32 bytes representing the program this account has been assigned to
-* `data`, array of bytes representing any data associated with the account
-* `executable`, boolean indicating if the account contains a program (and is strictly read-only)
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getProgramAccounts", "params":["8nQwAgzN2yyUzrukXsCa3JELBYqDQrqJ3UyHiWazWxHR"]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":[["BqGKYtAKu69ZdWEBtZHh4xgJY1BYa2YBiBReQE3pe383", {"executable":false,"owner":[50,28,250,90,221,24,94,136,147,165,253,136,1,62,196,215,225,34,222,212,99,84,202,223,245,13,149,99,149,231,91,96],"lamports":1,"data":[]], ["4Nd1mBQtrMJVYVfKf2PJy9NZUZdTAsp7D4xWLs4gDB4T", {"executable":false,"owner":[50,28,250,90,221,24,94,136,147,165,253,136,1,62,196,215,225,34,222,212,99,84,202,223,245,13,149,99,149,231,91,96],"lamports":10,"data":[]]]},"id":1}
-```
-
----
-
-### getRecentBlockhash
-Returns a recent block hash from the ledger, and a fee schedule that can be used
-to compute the cost of submitting a transaction using it.
-
-##### Parameters:
-None
-
-##### Results:
-An array consisting of
-* `string` - a Hash as base-58 encoded string
-* `FeeCalculator object` - the fee schedule for this block hash
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getRecentBlockhash"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":["GH7ome3EiwEr7tu9JuTh2dpYWBJK3z69Xm1ZE3MEE6JC",{"lamportsPerSignature": 0}],"id":1}
-```
-
----
-
-### getSignatureStatus
-Returns the status of a given signature.  This method is similar to
-[confirmTransaction](#confirmtransaction) but provides more resolution for error
-events.
-
-##### Parameters:
-* `string` - Signature of Transaction to confirm, as base-58 encoded string
-
-##### Results:
-* `null` - Unknown transaction
-* `object` - Transaction status:
-    * `"Ok": null` - Transaction was successful
-    * `"Err": <ERR>` - Transaction failed with TransactionError <ERR> [TransactionError definitions](https://github.com/solana-labs/solana/blob/master/sdk/src/transaction.rs#L14)
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getSignatureStatus", "params":["5VERv8NMvzbJMEkV8xnrLkEaWRtSz9CosKDYjCJjBRnbJLgp8uirBgmQpjKhoR4tjF3ZpRzrFmBV6UjKdiSZkQUW"]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":"SignatureNotFound","id":1}
-```
-
------
-
-### getSlotLeader
-Returns the current slot leader
-
-##### Parameters:
-None
-
-##### Results:
-* `string` - Node Id as base-58 encoded string
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getSlotLeader"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":"ENvAW7JScgYq6o4zKZwewtkzzJgDzuJAFxYasvmEQdpS","id":1}
-```
-
-----
-
-### getSlotsPerSegment
-Returns the current storage segment size in terms of slots
-
-##### Parameters:
-None
-
-##### Results:
-* `u64` - Number of slots in a storage segment
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getSlotsPerSegment"}' http://localhost:8899
-// Result
-{"jsonrpc":"2.0","result":"1024","id":1}
-```
-
-----
-
-### getStorageTurn
-Returns the current storage turn's blockhash and slot
-
-##### Parameters:
-None
-
-##### Results:
-An array consisting of
-* `string` - a Hash as base-58 encoded string indicating the blockhash of the turn slot
-* `u64` - the current storage turn slot
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getStorageTurn"}' http://localhost:8899
- // Result
-{"jsonrpc":"2.0","result":["GH7ome3EiwEr7tu9JuTh2dpYWBJK3z69Xm1ZE3MEE6JC", "2048"],"id":1}
-```
-
-----
-
-### getStorageTurnRate
-Returns the current storage turn rate in terms of slots per turn
-
-##### Parameters:
-None
-
-##### Results:
-* `u64` - Number of slots in storage turn
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getStorageTurnRate"}' http://localhost:8899
- // Result
-{"jsonrpc":"2.0","result":"1024","id":1}
-
-```
-
-----
-
-### getNumBlocksSinceSignatureConfirmation
-Returns the current number of blocks since signature has been confirmed.
-
-##### Parameters:
-* `string` - Signature of Transaction to confirm, as base-58 encoded string
-
-##### Results:
-* `integer` - count, as unsigned 64-bit integer
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0", "id":1, "method":"getNumBlocksSinceSignatureConfirmation", "params":["5VERv8NMvzbJMEkV8xnrLkEaWRtSz9CosKDYjCJjBRnbJLgp8uirBgmQpjKhoR4tjF3ZpRzrFmBV6UjKdiSZkQUW"]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":8,"id":1}
-```
-
----
-
-### getTransactionCount
-Returns the current Transaction count from the ledger
-
-##### Parameters:
-None
-
-##### Results:
-* `integer` - count, as unsigned 64-bit integer
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getTransactionCount"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":268,"id":1}
-```
-
----
-
-### getTotalSupply
-Returns the current total supply in Lamports
-
-##### Parameters:
-None
-
-##### Results:
-* `integer` - Total supply, as unsigned 64-bit integer
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getTotalSupply"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":10126,"id":1}
-```
-
----
-
-### getEpochVoteAccounts
-Returns the account info and associated stake for all the voting accounts in the current epoch.
-
-##### Parameters:
-None
-
-##### Results:
-The result field will be an array of JSON objects, each with the following sub fields:
-* `votePubkey` - Vote account public key, as base-58 encoded string
-* `nodePubkey` - Node public key, as base-58 encoded string
-* `stake` - the stake, in lamports, delegated to this vote account
-* `commission`, a 32-bit integer used as a fraction (commission/MAX_U32) for rewards payout
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"getEpochVoteAccounts"}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":[{"commission":0,"nodePubkey":"Et2RaZJdJRTzTkodUwiHr4H6sLkVmijBFv8tkd7oSSFY","stake":42,"votePubkey":"B4CdWq3NBSoH2wYsVE1CaZSWPo2ZtopE4SJipQhZ3srF"}],"id":1}
-```
-
----
-
-
-### requestAirdrop
-Requests an airdrop of lamports to a Pubkey
-
-##### Parameters:
-* `string` - Pubkey of account to receive lamports, as base-58 encoded string
-* `integer` - lamports, as a signed 64-bit integer
-
-##### Results:
-* `string` - Transaction Signature of airdrop, as base-58 encoded string
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"requestAirdrop", "params":["83astBRguLMdt2h5U1Tpdq5tjFoJ6noeGwaY3mDLVcri", 50]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":"5VERv8NMvzbJMEkV8xnrLkEaWRtSz9CosKDYjCJjBRnbJLgp8uirBgmQpjKhoR4tjF3ZpRzrFmBV6UjKdiSZkQUW","id":1}
-```
-
----
-
-### sendTransaction
-Creates new transaction
-
-##### Parameters:
-* `array` - array of octets containing a fully-signed Transaction
-
-##### Results:
-* `string` - Transaction Signature, as base-58 encoded string
-
-##### Example:
-```bash
-// Request
-curl -X POST -H "Content-Type: application/json" -d '{"jsonrpc":"2.0","id":1, "method":"sendTransaction", "params":[[61, 98, 55, 49, 15, 187, 41, 215, 176, 49, 234, 229, 228, 77, 129, 221, 239, 88, 145, 227, 81, 158, 223, 123, 14, 229, 235, 247, 191, 115, 199, 71, 121, 17, 32, 67, 63, 209, 239, 160, 161, 2, 94, 105, 48, 159, 235, 235, 93, 98, 172, 97, 63, 197, 160, 164, 192, 20, 92, 111, 57, 145, 251, 6, 40, 240, 124, 194, 149, 155, 16, 138, 31, 113, 119, 101, 212, 128, 103, 78, 191, 80, 182, 234, 216, 21, 121, 243, 35, 100, 122, 68, 47, 57, 13, 39, 0, 0, 0, 0, 50, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 50, 0, 0, 0, 0, 0, 0, 0, 40, 240, 124, 194, 149, 155, 16, 138, 31, 113, 119, 101, 212, 128, 103, 78, 191, 80, 182, 234, 216, 21, 121, 243, 35, 100, 122, 68, 47, 57, 11, 12, 106, 49, 74, 226, 201, 16, 161, 192, 28, 84, 124, 97, 190, 201, 171, 186, 6, 18, 70, 142, 89, 185, 176, 154, 115, 61, 26, 163, 77, 1, 88, 98, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0]]}' http://localhost:8899
-
-// Result
-{"jsonrpc":"2.0","result":"2EBVM6cB8vAAD93Ktr6Vd8p67XPbQzCJX47MpReuiCXJAtcjaxpvWpcg9Ege1Nr5Tk3a2GFrByT7WPBjdsTycY9b","id":1}
-```
-
----
-
-### Subscription Websocket
-After connect to the RPC PubSub websocket at `ws://<ADDRESS>/`:
-- Submit subscription requests to the websocket using the methods below
-- Multiple subscriptions may be active at once
-- All subscriptions take an optional `confirmations` parameter, which defines
-  how many confirmed blocks the node should wait before sending a notification.
-  The greater the number, the more likely the notification is to represent
-  consensus across the cluster, and the less likely it is to be affected by
-  forking or rollbacks. If unspecified, the default value is 0; the node will
-  send a notification as soon as it witnesses the event. The maximum
-  `confirmations` wait length is the cluster's `MAX_LOCKOUT_HISTORY`, which
-  represents the economic finality of the chain.
-
----
-
-### accountSubscribe
-Subscribe to an account to receive notifications when the lamports or data
-for a given account public key changes
-
-##### Parameters:
-* `string` - account Pubkey, as base-58 encoded string
-* `integer` - optional, number of confirmed blocks to wait before notification.
-  Default: 0, Max: `MAX_LOCKOUT_HISTORY` (greater integers rounded down)
-
-##### Results:
-* `integer` - Subscription id (needed to unsubscribe)
-
-##### Example:
-```bash
-// Request
-{"jsonrpc":"2.0", "id":1, "method":"accountSubscribe", "params":["CM78CPUeXjn8o3yroDHxUtKsZZgoy4GPkPPXfouKNH12"]}
-
-{"jsonrpc":"2.0", "id":1, "method":"accountSubscribe", "params":["CM78CPUeXjn8o3yroDHxUtKsZZgoy4GPkPPXfouKNH12", 15]}
-
-// Result
-{"jsonrpc": "2.0","result": 0,"id": 1}
-```
-
-##### Notification Format:
-```bash
-{"jsonrpc": "2.0","method": "accountNotification", "params": {"result": {"executable":false,"owner":[1,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lamports":1,"data":[3,0,0,0,0,0,0,0,1,0,0,0,0,0,1,0,0,0,0,0,0,0,20,0,0,0,0,0,0,0,50,48,53,48,45,48,49,45,48,49,84,48,48,58,48,48,58,48,48,90,252,10,7,28,246,140,88,177,98,82,10,227,89,81,18,30,194,101,199,16,11,73,133,20,246,62,114,39,20,113,189,32,50,0,0,0,0,0,0,0,247,15,36,102,167,83,225,42,133,127,82,34,36,224,207,130,109,230,224,188,163,33,213,13,5,117,211,251,65,159,197,51,0,0,0,0,0,0]},"subscription":0}}
-```
-
----
-
-### accountUnsubscribe
-Unsubscribe from account change notifications
-
-##### Parameters:
-* `integer` - id of account Subscription to cancel
-
-##### Results:
-* `bool` - unsubscribe success message
-
-##### Example:
-```bash
-// Request
-{"jsonrpc":"2.0", "id":1, "method":"accountUnsubscribe", "params":[0]}
-
-// Result
-{"jsonrpc": "2.0","result": true,"id": 1}
-```
-
----
-
-### programSubscribe
-Subscribe to a program to receive notifications when the lamports or data
-for a given account owned by the program changes
-
-##### Parameters:
-* `string` - program_id Pubkey, as base-58 encoded string
-* `integer` - optional, number of confirmed blocks to wait before notification.
-  Default: 0, Max: `MAX_LOCKOUT_HISTORY` (greater integers rounded down)
-
-##### Results:
-* `integer` - Subscription id (needed to unsubscribe)
-
-##### Example:
-```bash
-// Request
-{"jsonrpc":"2.0", "id":1, "method":"programSubscribe", "params":["9gZbPtbtHrs6hEWgd6MbVY9VPFtS5Z8xKtnYwA2NynHV"]}
-
-{"jsonrpc":"2.0", "id":1, "method":"programSubscribe", "params":["9gZbPtbtHrs6hEWgd6MbVY9VPFtS5Z8xKtnYwA2NynHV", 15]}
-
-// Result
-{"jsonrpc": "2.0","result": 0,"id": 1}
-```
-
-##### Notification Format:
-* `string` - account Pubkey, as base-58 encoded string
-* `object` - account info JSON object (see [getAccountInfo](#getaccountinfo) for field details)
-```bash
-{"jsonrpc":"2.0","method":"programNotification","params":{{"result":["8Rshv2oMkPu5E4opXTRyuyBeZBqQ4S477VG26wUTFxUM",{"executable":false,"lamports":1,"owner":[129,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"data":[1,1,1,0,0,0,0,0,0,0,20,0,0,0,0,0,0,0,50,48,49,56,45,49,50,45,50,52,84,50,51,58,53,57,58,48,48,90,235,233,39,152,15,44,117,176,41,89,100,86,45,61,2,44,251,46,212,37,35,118,163,189,247,84,27,235,178,62,55,89,0,0,0,0,50,0,0,0,0,0,0,0,235,233,39,152,15,44,117,176,41,89,100,86,45,61,2,44,251,46,212,37,35,118,163,189,247,84,27,235,178,62,45,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0]}],"subscription":0}}
-```
-
----
-
-### programUnsubscribe
-Unsubscribe from program-owned account change notifications
-
-##### Parameters:
-* `integer` - id of account Subscription to cancel
-
-##### Results:
-* `bool` - unsubscribe success message
-
-##### Example:
-```bash
-// Request
-{"jsonrpc":"2.0", "id":1, "method":"programUnsubscribe", "params":[0]}
-
-// Result
-{"jsonrpc": "2.0","result": true,"id": 1}
-```
-
----
-
-### signatureSubscribe
-Subscribe to a transaction signature to receive notification when the transaction is confirmed
-On `signatureNotification`, the subscription is automatically cancelled
-
-##### Parameters:
-* `string` - Transaction Signature, as base-58 encoded string
-* `integer` - optional, number of confirmed blocks to wait before notification.
-  Default: 0, Max: `MAX_LOCKOUT_HISTORY` (greater integers rounded down)
-
-##### Results:
-* `integer` - subscription id (needed to unsubscribe)
-
-##### Example:
-```bash
-// Request
-{"jsonrpc":"2.0", "id":1, "method":"signatureSubscribe", "params":["2EBVM6cB8vAAD93Ktr6Vd8p67XPbQzCJX47MpReuiCXJAtcjaxpvWpcg9Ege1Nr5Tk3a2GFrByT7WPBjdsTycY9b"]}
-
-{"jsonrpc":"2.0", "id":1, "method":"signatureSubscribe", "params":["2EBVM6cB8vAAD93Ktr6Vd8p67XPbQzCJX47MpReuiCXJAtcjaxpvWpcg9Ege1Nr5Tk3a2GFrByT7WPBjdsTycY9b", 15]}
-
-// Result
-{"jsonrpc": "2.0","result": 0,"id": 1}
-```
-
-##### Notification Format:
-```bash
-{"jsonrpc": "2.0","method": "signatureNotification", "params": {"result": "Confirmed","subscription":0}}
-```
-
----
-
-### signatureUnsubscribe
-Unsubscribe from signature confirmation notification
-
-##### Parameters:
-* `integer` - subscription id to cancel
-
-##### Results:
-* `bool` - unsubscribe success message
-
-##### Example:
-```bash
-// Request
-{"jsonrpc":"2.0", "id":1, "method":"signatureUnsubscribe", "params":[0]}
-
-// Result
-{"jsonrpc": "2.0","result": true,"id": 1}
-```

book/src/leader-leader-transition.md

@@ -1,101 +0,0 @@
-# Leader to Leader Transition
-
-This design describes how leaders transition production of the PoH ledger
-between each other as each leader generates its own slot.
-
-## Challenges
-
-Current leader and the next leader are both racing to generate the final tick
-for the current slot.  The next leader may arrive at that slot while still
-processing the current leader's entries.
-
-The ideal scenario would be that the next leader generated its own slot right
-after it was able to vote for the current leader.  It is very likely that the
-next leader will arrive at their PoH slot height before the current leader
-finishes broadcasting the entire block.
-
-The next leader has to make the decision of attaching its own block to the last
-completed block, or wait to finalize the pending block.  It is possible that the
-next leader will produce a block that proposes that the current leader failed,
-even though the rest of the network observes that block succeeding.
-
-The current leader has incentives to start its slot as early as possible to
-capture economic rewards.  Those incentives need to be balanced by the leader's
-need to attach its block to a block that has the most commitment from the rest
-of the network.
-
-## Leader timeout
-
-While a leader is actively receiving entries for the previous slot, the leader
-can delay broadcasting the start of its block in real time.  The delay is
-locally configurable by each leader, and can be dynamically based on the
-previous leader's behavior.  If the previous leader's block is confirmed by the
-leader's TVU before the timeout, the PoH is reset to the start of the slot and
-this leader produces its block immediately.
-
-The downsides:
-
-* Leader delays its own slot, potentially allowing the next leader more time to
-catch up.
-
-The upsides compared to guards:
-
-* All the space in a block is used for entries.
-
-* The timeout is not fixed.
-
-* The timeout is local to the leader, and therefore can be clever.  The leader's
-heuristic can take into account turbine performance.
-
-* This design doesn't require a ledger hard fork to update.
-
-* The previous leader can redundantly transmit the last entry in the block to
-the next leader, and the next leader can speculatively decide to trust it to
-generate its block without verification of the previous block.
-
-* The leader can speculatively generate the last tick from the last received
-entry.
-
-* The leader can speculatively process transactions and guess which ones are not
-going to be encoded by the previous leader.  This is also a censorship attack
-vector.  The current leader may withhold transactions that it receives from the
-clients so it can encode them into its own slot. Once processed, entries can be
-replayed into PoH quickly.
-
-## Alternative design options
-
-### Guard tick at the end of the slot
-
-A leader does not produce entries in its block after the *penultimate tick*,
-which is the last tick before the first tick of the next slot.  The network
-votes on the *last tick*, so the time difference between the *penultimate tick*
-and the *last tick* is the forced delay for the entire network, as well as the
-next leader before a new slot can be generated.  The network can produce the
-*last tick* from the *penultimate tick*.
-
-If the next leader receives the *penultimate tick* before it produces its own
-*first tick*, it will reset its PoH and produce the *first tick* from the
-previous leader's *penultimate tick*.  The rest of the network will also reset
-its PoH to produce the *last tick* as the id to vote on.
-
-The downsides:
-
-* Every vote, and therefore confirmation, is delayed by a fixed timeout. 1 tick,
-or around 100ms.
-
-* Average case confirmation time for a transaction would be at least 50ms worse.
-
-* It is part of the ledger definition, so to change this behavior would require
-a hard fork.
-
-* Not all the available space is used for entries.
-
-The upsides compared to leader timeout:
-
-* The next leader has received all the previous entries, so it can start
-processing transactions without recording them into PoH.
-
-* The previous leader can redundantly transmit the last entry containing the
-*penultimate tick* to the next leader.  The next leader can speculatively
-generate the *last tick* as soon as it receives the *penultimate tick*, even
-before verifying it.

book/src/leader-rotation.md

@@ -1,167 +0,0 @@
-# Leader Rotation
-
-At any given moment, a cluster expects only one fullnode to produce ledger
-entries. By having only one leader at a time, all validators are able to replay
-identical copies of the ledger. The drawback of only one leader at a time,
-however, is that a malicious leader is capable of censoring votes and
-transactions. Since censoring cannot be distinguished from the network dropping
-packets, the cluster cannot simply elect a single node to hold the leader role
-indefinitely. Instead, the cluster minimizes the influence of a malicious
-leader by rotating which node takes the lead.
-
-Each validator selects the expected leader using the same algorithm, described
-below. When the validator receives a new signed ledger entry, it can be certain
-that entry was produced by the expected leader.  The order of slots which each
-leader is assigned a slot is called a *leader schedule*.
-
-## Leader Schedule Rotation
-
-A validator rejects blocks that are not signed by the *slot leader*.  The list
-of identities of all slot leaders is called a *leader schedule*. The leader
-schedule is recomputed locally and periodically. It assigns slot leaders for a
-duration of time called an _epoch_. The schedule must be computed far in advance
-of the slots it assigns, such that the ledger state it uses to compute the
-schedule is finalized. That duration is called the *leader schedule offset*.
-Solana sets the offset to the duration of slots until the next epoch. That is,
-the leader schedule for an epoch is calculated from the ledger state at the
-start of the previous epoch. The offset of one epoch is fairly arbitrary and
-assumed to be sufficiently long such that all validators will have finalized
-their ledger state before the next schedule is generated. A cluster may choose
-to shorten the offset to reduce the time between stake changes and leader
-schedule updates.
-
-While operating without partitions lasting longer than an epoch, the schedule
-only needs to be generated when the root fork crosses the epoch boundary.  Since
-the schedule is for the next epoch, any new stakes committed to the root fork
-will not be active until the next epoch.  The block used for generating the
-leader schedule is the first block to cross the epoch boundary.
-
-Without a partition lasting longer than an epoch, the cluster will work as
-follows:
-
-1. A validator continuously updates its own root fork as it votes.
-
-2. The validator updates its leader schedule each time the slot height crosses
-an epoch boundary.
-
-For example:
-
-The epoch duration is 100 slots. The root fork is updated from fork computed at
-slot height 99 to a fork computed at slot height 102. Forks with slots at height
-100,101 were skipped because of failures.  The new leader schedule is computed
-using fork at slot height 102.  It is active from slot 200 until it is updated
-again.
-
-No inconsistency can exist because every validator that is voting with the
-cluster has skipped 100 and 101 when its root passes 102.  All validators,
-regardless of voting pattern, would be committing to a root that is either 102,
-or a descendant of 102.
-
-### Leader Schedule Rotation with Epoch Sized Partitions.
-
-The duration of the leader schedule offset has a direct relationship to the
-likelihood of a cluster having an inconsistent view of the correct leader
-schedule.
-
-Consider the following scenario:
-
-Two partitions that are generating half of the blocks each.  Neither is coming
-to a definitive supermajority fork.  Both will cross epoch 100 and 200 without
-actually committing to a root and therefore a cluster wide commitment to a new
-leader schedule.
-
-In this unstable scenario, multiple valid leader schedules exist.
-
-* A leader schedule is generated for every fork whose direct parent is in the
-previous epoch.
-
-* The leader schedule is valid after the start of the next epoch for descendant
-forks until it is updated.
-
-Each partition's schedule will diverge after the partition lasts more than an
-epoch.  For this reason, the epoch duration should be selected to be much much
-larger then slot time and the expected length for a fork to be committed to
-root.
-
-After observing the cluster for a sufficient amount of time, the leader schedule
-offset can be selected based on the median partition duration and its standard
-deviation.  For example, an offset longer then the median partition duration
-plus six standard deviations would reduce the likelihood of an inconsistent
-ledger schedule in the cluster to 1 in 1 million.
- 
-## Leader Schedule Generation at Genesis
-
-The genesis block declares the first leader for the first epoch.  This leader
-ends up scheduled for the first two epochs because the leader schedule is also
-generated at slot 0 for the next epoch.  The length of the first two epochs can
-be specified in the genesis block as well.  The minimum length of the first
-epochs must be greater than or equal to the maximum rollback depth as defined in
-[Tower BFT](tower-bft.md).
-
-## Leader Schedule Generation Algorithm
-
-Leader schedule is generated using a predefined seed.  The process is as follows:
-
-1. Periodically use the PoH tick height (a monotonically increasing counter) to
-   seed a stable pseudo-random algorithm.
-2. At that height, sample the bank for all the staked accounts with leader
-   identities that have voted within a cluster-configured number of ticks. The
-   sample is called the *active set*.
-3. Sort the active set by stake weight.
-4. Use the random seed to select nodes weighted by stake to create a
-   stake-weighted ordering.
-5. This ordering becomes valid after a cluster-configured number of ticks.
-
-## Schedule Attack Vectors
-
-### Seed
-
-The seed that is selected is predictable but unbiasable.  There is no grinding
-attack to influence its outcome. 
-
-### Active Set
-
-A leader can bias the active set by censoring validator votes.  Two possible
-ways exist for leaders to censor the active set:
-
-* Ignore votes from validators 
-* Refuse to vote for blocks with votes from validators
-
-To reduce the likelihood of censorship, the active set is calculated at the
-leader schedule offset boundary over an *active set sampling duration*. The
-active set sampling duration is long enough such that votes will have been
-collected by multiple leaders.
-
-### Staking
-
-Leaders can censor new staking transactions or refuse to validate blocks with
-new stakes.  This attack is similar to censorship of validator votes.
-
-### Validator operational key loss
-
-Leaders and validators are expected to use ephemeral keys for operation, and
-stake owners authorize the validators to do work with their stake via
-delegation.
-
-The cluster should be able to recover from the loss of all the ephemeral keys
-used by leaders and validators, which could occur through a common software
-vulnerability shared by all the nodes.  Stake owners should be able to vote
-directly co-sign a validator vote even though the stake is currently delegated
-to a validator.
-
-## Appending Entries
-
-The lifetime of a leader schedule is called an *epoch*. The epoch is split into
-*slots*, where each slot has a duration of `T` PoH ticks.
-
-A leader transmits entries during its slot.  After `T` ticks, all the
-validators switch to the next scheduled leader. Validators must ignore entries
-sent outside a leader's assigned slot.
-
-All `T` ticks must be observed by the next leader for it to build its own
-entries on. If entries are not observed (leader is down) or entries are invalid
-(leader is buggy or malicious), the next leader must produce ticks to fill the
-previous leader's slot. Note that the next leader should do repair requests in
-parallel, and postpone sending ticks until it is confident other validators
-also failed to observe the previous leader's entries. If a leader incorrectly
-builds on its own ticks, the leader following it must replace all its ticks.

book/src/leader-validator-transition.md

@@ -1,84 +0,0 @@
-# Leader-to-Validator Transition
-
-A fullnode typically operates as a validator. If, however, a staker delegates
-its stake to a fullnode, it will occasionally be selected as a *slot leader*.
-As a slot leader, the fullnode is responsible for producing blocks during an
-assigned *slot*. A slot has a duration of some number of preconfigured *ticks*.
-The duration of those ticks are estimated with a *PoH Recorder* described later
-in this document.
-
-## BankFork
-
-BankFork tracks changes to the bank state over a specific slot.  Once the final
-tick has been registered the state is frozen. Any attempts to write to are
-rejected.
-
-## Validator
-
-A validator operates on many different concurrent forks of the bank state until
-it generates a PoH hash with a height within its leader slot.
-
-## Slot Leader
-
-A slot leader builds blocks on top of only one fork, the one it last voted on.
-
-## PoH Recorder
-
-Slot leaders and validators use a PoH Recorder for both estimating slot height
-and for recording transactions.
-
-### PoH Recorder when Validating
-
-The PoH Recorder acts as a simple VDF when validating. It tells the validator
-when it needs to switch to the slot leader role. Every time the validator votes
-on a fork, it should use the fork's latest block id to re-seed the VDF.
-Re-seeding solves two problems. First, it synchronizes its VDF to the leader's,
-allowing it to more accurately determine when its leader slot begins. Second,
-if the previous leader goes down, all wallclock time is accounted for in the
-next leader's PoH stream. For example, if one block is missing when the leader
-starts, the block it produces should have a PoH duration of two blocks. The
-longer duration ensures the following leader isn't attempting to snip all the
-transactions from the previous leader's slot.
-
-### PoH Recorder when Leading
-
-A slot leader use the PoH Recorder to record transactions, locking their
-positions in time. The PoH hash must be derived from a previous leader's last
-block.  If it isn't, its block will fail PoH verification and be rejected by
-the cluster.
-
-The PoH Recorder also serves to inform the slot leader when its slot is over.
-The leader needs to take care not to modify its bank if recording the
-transaction would generate a PoH height outside its designated slot.  The
-leader, therefore, should not commit account changes until after it generates
-the entry's PoH hash. When the PoH height falls outside its slot any
-transactions in its pipeline may be dropped or forwarded to the next leader.
-Forwarding is preferred, as it would minimize network congestion, allowing the
-cluster to advertise higher TPS capacity.
-
-
-## Validator Loop
-
-The PoH Recorder manages the transition between modes. Once a ledger is
-replayed, the validator can run until the recorder indicates it should be
-the slot leader. As a slot leader, the node can then execute and record
-transactions.
-
-The loop is synchronized to PoH and does a synchronous start and stop of the
-slot leader functionality. After stopping, the validator's TVU should find
-itself in the same state as if a different leader had sent it the same block.
-The following is pseudocode for the loop:
-
-1. Query the LeaderScheduler for the next assigned slot.
-2. Run the TVU over all the forks.
-   1. TVU will send votes to what it believes is the "best" fork.
-   2. After each vote, restart the PoH Recorder to run until the next assigned
-slot.
-3. When time to be a slot leader, start the TPU. Point it to the last fork the
-   TVU voted on.
-4. Produce entries until the end of the slot.
-   1. For the duration of the slot, the TVU must not vote on other forks.
-   2. After the slot ends, the TPU freezes its BankFork. After freezing,
-      the TVU may resume voting.
-5. Goto 1.
-

book/src/ledger-replication-to-implement.md

@@ -1,142 +0,0 @@
-# Ledger Replication
-
-Replication behavior yet to be implemented.
-
-### Storage epoch
-
-The storage epoch should be the number of slots which results in around 100GB-1TB of
-ledger to be generated for replicators to store. Replicators will start storing ledger
-when a given fork has a high probability of not being rolled back.
-
-### Validator behavior
-
-3. Every NUM\_KEY\_ROTATION\_TICKS it also validates samples received from
-replicators. It signs the PoH hash at that point and uses the following
-algorithm with the signature as the input:
-     - The low 5 bits of the first byte of the signature creates an index into
-       another starting byte of the signature.
-     - The validator then looks at the set of storage proofs where the byte of
-       the proof's sha state vector starting from the low byte matches exactly
-with the chosen byte(s) of the signature.
-     - If the set of proofs is larger than the validator can handle, then it
-       increases to matching 2 bytes in the signature.
-     - Validator continues to increase the number of matching bytes until a
-       workable set is found.
-     - It then creates a mask of valid proofs and fake proofs and sends it to
-       the leader. This is a storage proof confirmation transaction.
-5. After a lockout period of NUM\_SECONDS\_STORAGE\_LOCKOUT seconds, the
-validator then submits a storage proof claim transaction which then causes the
-distribution of the storage reward if no challenges were seen for the proof to
-the validators and replicators party to the proofs.
-
-### Replicator behavior
-
-9. The replicator then generates another set of offsets which it submits a fake
-proof with an incorrect sha state. It can be proven to be fake by providing the
-seed for the hash result.
-     - A fake proof should consist of a replicator hash of a signature of a PoH
-       value. That way when the replicator reveals the fake proof, it can be
-verified on chain.
-10. The replicator monitors the ledger, if it sees a fake proof integrated, it
-creates a challenge transaction and submits it to the current leader. The
-transacation proves the validator incorrectly validated a fake storage proof.
-The replicator is rewarded and the validator's staking balance is slashed or
-frozen.
-
-### Storage proof contract logic
-
-Each replicator and validator will have their own storage account. The validator's
-account would be separate from their gossip id similiar to their vote account.
-These should be implemented as two programs one which handles the validator as the keysigner
-and one for the replicator. In that way when the programs reference other accounts, they
-can check the program id to ensure it is a validator or replicator account they are
-referencing.
-
-#### SubmitMiningProof
-```rust,ignore
-SubmitMiningProof {
-    slot: u64,
-    sha_state: Hash,
-    signature: Signature,
-};
-keys = [replicator_keypair]
-```
-Replicators create these after mining their stored ledger data for a certain hash value.
-The slot is the end slot of the segment of ledger they are storing, the sha\_state
-the result of the replicator using the hash function to sample their encrypted ledger segment.
-The signature is the signature that was created when they signed a PoH value for the
-current storage epoch. The list of proofs from the current storage epoch should be saved
-in the account state, and then transfered to a list of proofs for the previous epoch when
-the epoch passes. In a given storage epoch a given replicator should only submit proofs
-for one segment.
-
-The program should have a list of slots which are valid storage mining slots.
-This list should be maintained by keeping track of slots which are rooted slots in which a significant
-portion of the network has voted on with a high lockout value, maybe 32-votes old. Every SLOTS\_PER\_SEGMENT
-number of slots would be added to this set. The program should check that the slot is in this set. The set can
-be maintained by receiving a AdvertiseStorageRecentBlockHash and checking with its bank/Tower BFT state.
-
-The program should do a signature verify check on the signature, public key from the transaction submitter and the message of
-the previous storage epoch PoH value.
-
-#### ProofValidation
-```rust,ignore
-ProofValidation {
-   proof_mask: Vec<ProofStatus>,
-}
-keys = [validator_keypair, replicator_keypair(s) (unsigned)]
-```
-A validator will submit this transaction to indicate that a set of proofs for a given
-segment are valid/not-valid or skipped where the validator did not look at it. The
-keypairs for the replicators that it looked at should be referenced in the keys so the program
-logic can go to those accounts and see that the proofs are generated in the previous epoch. The
-sampling of the storage proofs should be verified ensuring that the correct proofs are skipped by
-the validator according to the logic outlined in the validator behavior of sampling.
-
-The included replicator keys will indicate the the storage samples which are being referenced; the
-length of the proof\_mask should be verified against the set of storage proofs in the referenced
-replicator account(s), and should match with the number of proofs submitted in the previous storage
-epoch in the state of said replicator account.
-
-#### ClaimStorageReward
-```rust,ignore
-ClaimStorageReward {
-}
-keys = [validator_keypair or replicator_keypair, validator/replicator_keypairs (unsigned)]
-```
-Replicators and validators will use this transaction to get paid tokens from a program state
-where SubmitStorageProof, ProofValidation and ChallengeProofValidations are in a state where
-proofs have been submitted and validated and there are no ChallengeProofValidations referencing
-those proofs. For a validator, it should reference the replicator keypairs to which it has validated
-proofs in the relevant epoch. And for a replicator it should reference validator keypairs for which it
-has validated and wants to be rewarded.
-
-#### ChallengeProofValidation
-```rust,ignore
-ChallengeProofValidation {
-    proof_index: u64,
-    hash_seed_value: Vec<u8>,
-}
-keys = [replicator_keypair, validator_keypair]
-```
-
-This transaction is for catching lazy validators who are not doing the work to validate proofs.
-A replicator will submit this transaction when it sees a validator has approved a fake SubmitMiningProof
-transaction. Since the replicator is a light client not looking at the full chain, it will have to ask
-a validator or some set of validators for this information maybe via RPC call to obtain all ProofValidations for
-a certain segment in the previous storage epoch. The program will look in the validator account
-state see that a ProofValidation is submitted in the previous storage epoch and hash the hash\_seed\_value and
-see that the hash matches the SubmitMiningProof transaction and that the validator marked it as valid. If so,
-then it will save the challenge to the list of challenges that it has in its state.
-
-#### AdvertiseStorageRecentBlockhash
-```rust,ignore
-AdvertiseStorageRecentBlockhash {
-    hash: Hash,
-    slot: u64,
-}
-```
-
-Validators and replicators will submit this to indicate that a new storage epoch has passed and that the
-storage proofs which are current proofs should now be for the previous epoch. Other transactions should
-check to see that the epoch that they are referencing is accurate according to current chain state.

book/src/ledger-replication.md

@@ -1,219 +0,0 @@
-# Ledger Replication
-
-At full capacity on a 1gbps network solana will generate 4 petabytes of data
-per year.  To prevent the network from centralizing around validators that have
-to store the full data set this protocol proposes a way for mining nodes to
-provide storage capacity for pieces of the data.
-
-The basic idea to Proof of Replication is encrypting a dataset with a public
-symmetric key using CBC encryption, then hash the encrypted dataset. The main
-problem with the naive approach is that a dishonest storage node can stream the
-encryption and delete the data as it's hashed. The simple solution is to periodically
-regenerate the hash based on a signed PoH value. This ensures that all the data is present
-during the generation of the proof and it also requires validators to have the
-entirety of the encrypted data present for verification of every proof of every identity.
-So the space required to validate is `number_of_proofs * data_size`
-
-## Optimization with PoH
-
-Our improvement on this approach is to randomly sample the encrypted segments
-faster than it takes to encrypt, and record the hash of those samples into the
-PoH ledger. Thus the segments stay in the exact same order for every PoRep and
-verification can stream the data and verify all the proofs in a single batch.
-This way we can verify multiple proofs concurrently, each one on its own CUDA
-core. The total space required for verification is `1_ledger_segment +
-2_cbc_blocks * number_of_identities` with core count equal to
-`number_of_identities`. We use a 64-byte chacha CBC block size.
-
-## Network
-
-Validators for PoRep are the same validators that are verifying transactions.
-If a replicator can prove that a validator verified a fake PoRep, then the
-validator will not receive a reward for that storage epoch.
-
-Replicators are specialized *light clients*. They download a part of the
-ledger (a.k.a Segment) and store it, and provide PoReps of storing the ledger.
-For each verified PoRep replicators earn a reward of sol from the mining pool.
-
-## Constraints
-
-We have the following constraints:
-* Verification requires generating the CBC blocks. That requires space of 2
-  blocks per identity, and 1 CUDA core per identity for the same dataset. So as
-many identities at once should be batched with as many proofs for those
-identities verified concurrently for the same dataset.
-* Validators will randomly sample the set of storage proofs to the set that
-  they can handle, and only the creators of those chosen proofs will be
-rewarded. The validator can run a benchmark whenever its hardware configuration
-changes to determine what rate it can validate storage proofs.
-
-## Validation and Replication Protocol
-
-### Constants
-
-1. SLOTS\_PER\_SEGMENT: Number of slots in a segment of ledger data. The
-unit of storage for a replicator.
-2. NUM\_KEY\_ROTATION\_SEGMENTS: Number of segments after which replicators
-regenerate their encryption keys and select a new dataset to store.
-3. NUM\_STORAGE\_PROOFS: Number of storage proofs required for a storage proof
-claim to be successfully rewarded.
-4. RATIO\_OF\_FAKE\_PROOFS: Ratio of fake proofs to real proofs that a storage
-mining proof claim has to contain to be valid for a reward.
-5. NUM\_STORAGE\_SAMPLES: Number of samples required for a storage mining
-proof.
-6. NUM\_CHACHA\_ROUNDS: Number of encryption rounds performed to generate
-encrypted state.
-7. NUM\_SLOTS\_PER\_TURN: Number of slots that define a single storage epoch or
-a "turn" of the PoRep game.
-
-### Validator behavior
-
-1. Validators join the network and begin looking for replicator accounts at each
-storage epoch/turn boundary.
-2. Every turn, Validators sign the PoH value at the boundary and use that signature
-to randomly pick proofs to verify from each storage account found in the turn boundary.
-This signed value is also submitted to the validator's storage account and will be used by
-replicators at a later stage to cross-verify.
-3. Every `NUM_SLOTS_PER_TURN` slots the validator advertises the PoH value. This is value
-is also served to Replicators via RPC interfaces.
-4. For a given turn N, all validations get locked out until turn N+3 (a gap of 2 turn/epoch).
-At which point all validations during that turn are available for reward collection.
-5. Any incorrect validations will be marked during the turn in between.
-
-
-### Replicator behavior
-
-1. Since a replicator is somewhat of a light client and not downloading all the
-ledger data, they have to rely on other validators and replicators for information.
-Any given validator may or may not be malicious and give incorrect information, although
-there are not any obvious attack vectors that this could accomplish besides having the
-replicator do extra wasted work.  For many of the operations there are a number of options
-depending on how paranoid a replicator is:
-    - (a) replicator can ask a validator
-    - (b) replicator can ask multiple validators
-    - (c) replicator can ask other replicators
-    - (d) replicator can subscribe to the full transaction stream and generate
-      the information itself (assuming the slot is recent enough)
-    - (e) replicator can subscribe to an abbreviated transaction stream to
-      generate the information itself (assuming the slot is recent enough)
-2. A replicator obtains the PoH hash corresponding to the last turn with its slot.
-3. The replicator signs the PoH hash with its keypair. That signature is the
-seed used to pick the segment to replicate and also the encryption key. The
-replicator mods the signature with the slot to get which segment to
-replicate.
-4. The replicator retrives the ledger by asking peer validators and
-replicators. See 6.5.
-5. The replicator then encrypts that segment with the key with chacha algorithm
-in CBC mode with `NUM_CHACHA_ROUNDS` of encryption.
-6. The replicator initializes a chacha rng with the a signed recent PoH value as
-the seed.
-7. The replicator generates `NUM_STORAGE_SAMPLES` samples in the range of the
-entry size and samples the encrypted segment with sha256 for 32-bytes at each
-offset value. Sampling the state should be faster than generating the encrypted
-segment.
-8. The replicator sends a PoRep proof transaction which contains its sha state
-at the end of the sampling operation, its seed and the samples it used to the
-current leader and it is put onto the ledger.
-9. During a given turn the replicator should submit many proofs for the same segment
-and based on the `RATIO_OF_FAKE_PROOFS` some of those proofs must be fake.
-10. As the PoRep game enters the next turn, the replicator must submit a
-transaction with the mask of which proofs were fake during the last turn. This
-transaction will define the rewards for both replicators and validators.
-11. Finally for a turn N, as the PoRep game enters turn N + 3, replicator's proofs for
-turn N will be counted towards their rewards.
-
-
-### The PoRep Game
-
-The Proof of Replication game has 4 primary stages. For each "turn" multiple PoRep
-games can be in progress but each in a different stage.
-
-The 4 stages of the PoRep Game are as follows:
-
-1. Proof submission stage
-    - Replicators: submit as many proofs as possible during this stage
-    - Validators: No-op
-2. Proof verification stage
-    - Replicators: No-op
-    - Validators: Select replicators and verify their proofs from the previous turn
-3. Proof challenge stage
-    - Replicators: Submit the proof mask with justifications (for fake proofs submitted 2 turns ago)
-    - Validators: No-op
-4. Reward collection stage
-    - Replicators: Collect rewards for 3 turns ago
-    - Validators:  Collect rewards for 3 turns ago
-
-
-For each turn of the PoRep game, both Validators and Replicators evaluate each
-stage. The stages are run as separate transactions on the storage program.
-
-### Finding who has a given block of ledger
-
-1. Validators monitor the turns in the PoRep game and look at the rooted bank
-at turn boundaries for any proofs.
-2. Validators maintain a map of ledger segments and corresponding replicator public keys.
-The map is updated when a Validator processes a replicator's proofs for a segment.
-The validator provides an RPC interface to access the this map. Using this API, clients
-can map a segment to a replicator's network address (correlating it via cluster_info table).
-The clients can then send repair requests to the replicator to retrieve segments.
-3. Validators would need to invalidate this list every N turns.
-
-## Sybil attacks
-
-For any random seed, we force everyone to use a signature that is derived from
-a PoH hash at the turn boundary. Everyone uses the same count, so the same PoH
-hash is signed by every participant. The signatures are then each cryptographically
-tied to the keypair, which prevents a leader from grinding on the resulting
-value for more than 1 identity.
-
-Since there are many more client identities then encryption identities, we need
-to split the reward for multiple clients, and prevent Sybil attacks from
-generating many clients to acquire the same block of data. To remain BFT we
-want to avoid a single human entity from storing all the replications of a
-single chunk of the ledger.
-
-Our solution to this is to force the clients to continue using the same
-identity. If the first round is used to acquire the same block for many client
-identities, the second round for the same client identities will force a
-redistribution of the signatures, and therefore PoRep identities and blocks.
-Thus to get a reward for replicators need to store the first block for free and
-the network can reward long lived client identities more than new ones.
-
-## Validator attacks
-
-- If a validator approves fake proofs, replicator can easily out them by
-  showing the initial state for the hash.
-- If a validator marks real proofs as fake, no on-chain computation can be done
-  to distinguish who is correct. Rewards would have to rely on the results from
-  multiple validators to catch bad actors and replicators from being denied rewards.
-- Validator stealing mining proof results for itself. The proofs are derived
-  from a signature from a replicator, since the validator does not know the
-private key used to generate the encryption key, it cannot be the generator of
-the proof.
-
-## Reward incentives
-
-Fake proofs are easy to generate but difficult to verify. For this reason,
-PoRep proof transactions generated by replicators may require a higher fee than
-a normal transaction to represent the computational cost required by
-validators.
-
-Some percentage of fake proofs are also necessary to receive a reward from
-storage mining.
-
-## Notes
-
-* We can reduce the costs of verification of PoRep by using PoH, and actually
-  make it feasible to verify a large number of proofs for a global dataset.
-* We can eliminate grinding by forcing everyone to sign the same PoH hash and
-  use the signatures as the seed
-* The game between validators and replicators is over random blocks and random
-  encryption identities and random data samples. The goal of randomization is
-to prevent colluding groups from having overlap on data or validation.
-* Replicator clients fish for lazy validators by submitting fake proofs that
-  they can prove are fake.
-* To defend against Sybil client identities that try to store the same block we
-  force the clients to store for multiple rounds before receiving a reward.
-* Validators should also get rewarded for validating submitted storage proofs
-  as incentive for storing the ledger. They can only validate proofs if they
-are storing that slice of the ledger.

book/src/managing-forks.md

@@ -1,63 +0,0 @@
-# Managing Forks in the Ledger
-
-The ledger is permitted to fork at slot boundaries. The resulting data
-structure forms a tree called a *blocktree*. When the fullnode interprets the
-blocktree, it must maintain state for each fork in the chain. We call each
-instance an *active fork*.  It is the responsibility of a fullnode to weigh
-those forks, such that it may eventually select a fork.
-
-A fullnode selects a fork by submiting a vote to a slot leader on that fork.
-The vote commits the fullnode for a duration of time called a *lockout period*.
-The fullnode is not permitted to vote on a different fork until that lockout
-period expires. Each subsequent vote on the same fork doubles the length of the
-lockout period. After some cluster-configured number of votes (currently 32),
-the length of the lockout period reaches what's called *max lockout*. Until the
-max lockout is reached, the fullnode has the option to wait until the lockout
-period is over and then vote on another fork. When it votes on another fork, it
-performs a operation called *rollback*, whereby the state rolls back in time to
-a shared checkpoint and then jumps forward to the tip of the fork that it just
-voted on. The maximum distance that a fork may roll back is called the
-*rollback depth*. Rollback depth is the number of votes required to achieve
-max lockout. Whenever a fullnode votes, any checkpoints beyond the rollback
-depth become unreachable. That is, there is no scenario in which the fullnode
-will need to roll back beyond rollback depth. It therefore may safely *prune*
-unreachable forks and *squash* all checkpoints beyond rollback depth into the
-root checkpoint.
-
-## Active Forks
-
-An active fork is as a sequence of checkpoints that has a length at least one
-longer than the rollback depth. The shortest fork will have a length exactly
-one longer than the rollback depth.  For example:
-
-<img alt="Forks" src="img/forks.svg" class="center"/>
-
-The following sequences are *active forks*:
-
-* {4, 2, 1}
-* {5, 2, 1}
-* {6, 3, 1}
-* {7, 3, 1}
-
-## Pruning and Squashing
-
-A fullnode may vote on any checkpoint in the tree.  In the diagram above,
-that's every node except the leaves of the tree.  After voting, the fullnode
-prunes nodes that fork from a distance farther than the rollback depth and then
-takes the opportunity to minimize its memory usage by squashing any nodes it
-can into the root.
-
-Starting from the example above, wth a rollback depth of 2, consider a vote on
-5 versus a vote on 6. First, a vote on 5:
-
-<img alt="Forks after pruning" src="img/forks-pruned.svg" class="center"/>
-
-The new root is 2, and any active forks that are not descendants from 2 are
-pruned.
-
-Alternatively, a vote on 6:
-
-<img alt="Forks" src="img/forks-pruned2.svg" class="center"/>
-
-The tree remains with a root of 1, since the active fork starting at 6 is only
-2 checkpoints from the root.

book/src/passive-stake-delegation-and-rewards.md

@@ -1,216 +0,0 @@
-# Stake Delegation and Reward
-
-This design proposal focuses on the software architecture for the on-chain
-voting and staking programs.  Incentives for staking is covered in [staking
-rewards](staking-rewards.md).
-
-The current architecture requires a vote for each delegated stake from the
-validator, and therefore does not scale to allow replicator clients to
-automatically delegate their rewards.
-
-The design proposes a new set of programs for voting and stake delegation, The
-proposed programs allow many stake accounts to passively earn rewards with a
-single validator vote without permission or active involvement from the
-validator.
-
-## Current Design Problems
-
-In the current design each staker creates their own VoteState, and assigns a
-**delegate** in the VoteState that can submit votes.  Since the validator has to
-actively vote for each stake delegated to it, validators can censor stakes by
-not voting for them.
-
-The number of votes is equal to the number of stakers, and not the number of
-validators.  Replicator clients are expected to delegate their replication
-rewards as they are earned, and therefore the number of stakes is expected to be
-large compared to the number of validators in a long running cluster.
-
-## Proposed changes to the current design.
-
-The general idea is that instead of the staker, the validator will own the
-VoteState program. In this proposal the VoteState program is there to track
-validator votes, count validator generated credits and to provide any
-additional validator specific state.  The VoteState program is not aware of any
-stakes delegated to it, and has no staking weight.
-
-The rewards generated are proportional to the amount of lamports staked.  In
-this proposal stake state is stored as part of the StakeState program. This
-program is owned by the staker only.  Lamports stored in this program are the
-stake.  Unlike the current design, this program contains a new field to indicate
-which VoteState program the stake is delegated to.
-
-### VoteState
-
-VoteState is the current state of all the votes the **delegate** has submitted
-to the bank.  VoteState contains the following state information:
-
-* votes - The submitted votes data structure.
-
-* credits - The total number of rewards this vote program has generated over its
-lifetime.
-
-* root\_slot - The last slot to reach the full lockout commitment necessary for
-rewards.
-
-* commission - The commission taken by this VoteState for any rewards claimed by
-staker's StakeState accounts.  This is the percentage ceiling of the reward.
-
-* Account::lamports - The accumulated lamports from the commission.  These do not
-count as stakes.
-
-* `authorized_vote_signer` - Only this identity is authorized to submit votes, and
-this field can only modified by this entity
-
-### VoteInstruction::Initialize
-
-* `account[0]` - RW - The VoteState
-  `VoteState::authorized_vote_signer` is initialized to `account[0]`
-   other VoteState members defaulted
-
-### VoteInstruction::AuthorizeVoteSigner(Pubkey)
-
-* `account[0]` - RW - The VoteState
-  `VoteState::authorized_vote_signer` is set to to `Pubkey`, instruction must by
-   signed by Pubkey
-
-
-### StakeState
-
-A StakeState takes one of two forms, StakeState::Stake and StakeState::MiningPool.
-
-### StakeState::Stake
-
-Stake is the current delegation preference of the **staker**. Stake
-contains the following state information:
-
-* `voter_pubkey` - The pubkey of the VoteState instance the lamports are
-delegated to.
-
-* `credits_observed` - The total credits claimed over the lifetime of the
-program.
-
-* `stake` - The actual activated stake.
-
-* Account::lamports - Lamports available for staking, including any earned as rewards.
-
-
-### StakeState::MiningPool
-
-There are two approaches to the mining pool.  The bank could allow the
-StakeState program to bypass the token balance check, or a program representing
-the mining pool could run on the network.  To avoid a single network wide lock,
-the pool can be split into several mining pools.  This design focuses on using a
-StakeState::MiningPool as the cluster wide mining pools.
-
-* 256 StakeState::MiningPool are initialized, each with 1/256 number of mining pool
-tokens stored as `Account::lamports`.
-
-The stakes and the MiningPool are accounts that are owned by the same `Stake`
-program.
-
-### StakeInstruction::DelegateStake(stake)
-
-* `account[0]` - RW - The StakeState::Stake instance.
-  `StakeState::Stake::credits_observed` is initialized to `VoteState::credits`.
-  `StakeState::Stake::voter_pubkey` is initialized to `account[1]`
-  `StakeState::Stake::stake` is initialized to `stake`, as long as it's less than account[0].lamports
-
-* `account[1]` - R - The VoteState instance.
-
-### StakeInstruction::RedeemVoteCredits
-
-The VoteState program and the StakeState programs maintain a lifetime counter
-of total rewards generated and claimed.  Therefore an explicit `Clear`
-instruction is not necessary.  When claiming rewards, the total lamports
-deposited into the StakeState and as validator commission is proportional to
-`VoteState::credits - StakeState::credits_observed`.
-
-
-* `account[0]` - RW - The StakeState::MiningPool instance that will fulfill the
-reward.
-* `account[1]` - RW - The StakeState::Stake instance that is redeeming votes
-credits.
-* `account[2]` - R - The VoteState instance, must be the same as
-`StakeState::voter_pubkey`
-
-Reward is payed out for the difference between `VoteState::credits` to
-`StakeState::Delgate.credits_observed`, and `credits_observed` is updated to
-`VoteState::credits`.  The commission is deposited into the `VoteState` token
-balance, and the reward is deposited to the `StakeState::Stake` token balance.  The
-reward and the commission is weighted by the `StakeState::lamports` divided by total lamports staked.
-
-The Staker or the owner of the Stake program sends a transaction with this
-instruction to claim the reward.
-
-Any random MiningPool can be used to redeem the credits.
-
-```rust,ignore
-let credits_to_claim = vote_state.credits - stake_state.credits_observed;
-stake_state.credits_observed = vote_state.credits;
-```
-
-`credits_to_claim` is used to compute the reward and commission, and
-`StakeState::Stake::credits_observed` is updated to the latest
-`VoteState::credits` value.
-
-### Collecting network fees into the MiningPool
-
-At the end of the block, before the bank is frozen, but after it processed all
-the transactions for the block, a virtual instruction is executed to collect
-the transaction fees.
-
-* A portion of the fees are deposited into the leader's account.
-* A portion of the fees are deposited into the smallest StakeState::MiningPool
-account.
-
-### Benefits
-
-* Single vote for all the stakers.
-
-* Clearing of the credit variable is not necessary for claiming rewards.
-
-* Each delegated stake can claim its rewards independently.
-
-* Commission for the work is deposited when a reward is claimed by the delegated
-stake.
-
-This proposal would benefit from the `read-only` accounts proposal to allow for
-many rewards to be claimed concurrently.
-
-## Passive Delegation
-
-Any number of instances of StakeState::Stake programs can delegate to a single
-VoteState program without an interactive action from the identity controlling
-the VoteState program or submitting votes to the program.
-
-The total stake allocated to a VoteState program can be calculated by the sum of
-all the StakeState programs that have the VoteState pubkey as the
-`StakeState::Stake::voter_pubkey`.
-
-## Example Callflow
-
-<img alt="Passive Staking Callflow" src="img/passive-staking-callflow.svg" class="center"/>
-
-## Future work
-
-Validators may want to split the stake delegated to them amongst many validator
-nodes since stake is used as weight in the network control and data planes.  One
-way to implement this would be for the StakeState to delegate to a pool of
-validators instead of a single one.
-
-Instead of a single `vote_pubkey` and `credits_observed` entry in the StakeState
-program, the program can be initialized with a vector of tuples.
-
-```rust,ignore
-Voter {
-    voter_pubkey: Pubkey,
-    credits_observed: u64,
-    weight: u8,
-}
-```
-
-* voters: Vec<Voter> - Array of VoteState accounts that are voting rewards with
-this stake.
-
-A StakeState program would claim a fraction of the reward from each voter in
-the `voters` array, and each voter would be delegated a fraction of the stake.

book/src/performance-metrics.md

@@ -1,29 +0,0 @@
-# Performance Metrics
-
-Solana cluster performance is measured as average number of transactions per second
-that the network can sustain (TPS). And, how long it takes for a transaction to be
-confirmed by super majority of the cluster (Confirmation Time).
-
-Each cluster node maintains various counters that are incremented on certain events.
-These counters are periodically uploaded to a cloud based database. Solana's metrics
-dashboard fetches these counters, and computes the performance metrics and displays
-it on the dashboard. 
-
-## TPS
-
-The leader node's banking stage maintains a count of transactions that it recorded.
-The dashboard displays the count averaged over 2 second period in the TPS time series
-graph. The dashboard also shows per second mean, maximum and total TPS as a running
-counter.
-
-## Confirmation Time
-
-Each validator node maintains a list of active ledger forks that are visible to the node.
-A fork is considered to be frozen when the node has received and processed all entries
-corresponding to the fork. A fork is considered to be confirmed when it receives cumulative
-super majority vote, and when one of its children forks is frozen.
-
-The node assigns a timestamp to every new fork, and computes the time it took to confirm
-the fork. This time is reflected as validator confirmation time in performance metrics.
-The performance dashboard displays the average of each validator node's confirmation time
-as a time series graph. 

book/src/persistent-account-storage.md

@@ -1,153 +0,0 @@
-# Persistent Account Storage
-
-The set of Accounts represent the current computed state of all the transactions
-that have been processed by a fullnode.  Each fullnode needs to maintain this
-entire set.  Each block that is proposed by the network represents a change to
-this set, and since each block is a potential rollback point the changes need to
-be reversible.
-
-Persistent storage like NVMEs are 20 to 40 times cheaper than DDR.  The problem
-with persistent storage is that write and read performance is much slower than
-DDR and care must be taken in how data is read or written to.  Both reads and
-writes can be split between multiple storage drives and accessed in parallel.
-This design proposes a data structure that allows for concurrent reads and
-concurrent writes of storage.   Writes are optimized by using an AppendVec data
-structure, which allows a single writer to append while allowing access to many
-concurrent readers.  The accounts index maintains a pointer to a spot where the
-account was appended to every fork, thus removing the need for explicit
-checkpointing of state.
-
-# AppendVec
-
-AppendVec is a data structure that allows for random reads concurrent with a
-single append-only writer.  Growing or resizing the capacity of the AppendVec
-requires exclusive access.  This is implemented with an atomic `offset`, which
-is updated at the end of a completed append.
-
-The underlying memory for an AppendVec is a memory-mapped file.  Memory-mapped
-files allow for fast random access and paging is handled by the OS.
-
-# Account Index
-
-The account index is designed to support a single index for all the currently
-forked Accounts.
-
-```rust,ignore
-type AppendVecId = usize;
-
-type Fork = u64;
-
-struct AccountMap(Hashmap<Fork, (AppendVecId, u64)>);
-
-type AccountIndex = HashMap<Pubkey, AccountMap>;
-
-```
-
-The index is a map of account Pubkeys to a map of Forks and the location of the
-Account data in an AppendVec.  To get the version of an account for a specific Fork:
-
-```rust,ignore
-/// Load the account for the pubkey.
-/// This function will load the account from the specified fork, falling back to the fork's parents
-/// * fork - a virtual Accounts instance, keyed by Fork.  Accounts keep track of their parents with Forks,
-///       the persistent store
-/// * pubkey - The Account's public key.
-pub fn load_slow(&self, id: Fork, pubkey: &Pubkey) -> Option<&Account>
-```
-
-The read is satisfied by pointing to a memory-mapped location in the
-`AppendVecId` at the stored offset.  A reference can be returned without a copy.
-
-## Root Forks
-
-[Tower BFT](tower-bft.md) eventually selects a fork as a
-root fork and the fork is squashed.  A squashed/root fork cannot be rolled back.
-
-When a fork is squashed, all accounts in its parents not already present in the
-fork are pulled up into the fork by updating the indexes.  Accounts with zero
-balance in the squashed fork are removed from fork by updating the indexes.
-
-An account can be *garbage-collected* when squashing makes it unreachable.
-
-Three possible options exist:
-
-* Maintain a HashSet<u64> of root forks.  One is expected to be created every
-second.  The entire tree can be garbage-collected later. Alternatively, if
-every fork keeps a reference count of accounts, garbage collection could occur
-any time an index location is updated.
-
-* Remove any pruned forks from the index.  Any remaining forks lower in number
-than the root are can be considered root.
-
-* Scan the index, migrate any old roots into the new one.   Any remaining forks
-lower than the new root can be deleted later.
-
-# Append-only Writes
-
-All the updates to Accounts occur as append-only updates.  For every account
-update, a new version is stored in the AppendVec.
-
-It is possible to optimize updates within a single fork by returning a mutable
-reference to an already stored account in a fork.  The Bank already tracks
-concurrent access of accounts and guarantees that a write to a specific account
-fork will not be concurrent with a read to an account at that fork. To support
-this operation, AppendVec should implement this function:
-
-```rust,ignore
-fn get_mut(&self, index: u64) -> &mut T;
-```
-
-This API allows for concurrent mutable access to a memory region at `index`.  It
-relies on the Bank to guarantee exclusive access to that index.
-
-# Garbage collection
-
-As accounts get updated, they move to the end of the AppendVec.  Once capacity
-has run out, a new AppendVec can be created and updates can be stored there.
-Eventually references to an older AppendVec will disappear because all the
-accounts have been updated, and the old AppendVec can be deleted.
-
-To speed up this process, it's possible to move Accounts that have not been
-recently updated to the front of a new AppendVec.  This form of garbage
-collection can be done without requiring exclusive locks to any of the data
-structures except for the index update.
-
-The initial implementation for garbage collection is that once all the accounts in
-an AppendVec become stale versions, it gets reused. The accounts are not updated
-or moved around once appended.
-
-# Index Recovery
-
-Each bank thread has exclusive access to the accounts during append, since the
-accounts locks cannot be released until the data is committed. But there is no
-explicit order of writes between the separate AppendVec files.  To create an
-ordering, the index maintains an atomic write version counter.  Each append to
-the AppendVec records the index write version number for that append in the
-entry for the Account in the AppendVec.
-
-To recover the index, all the AppendVec files can be read in any order, and the
-latest write version for every fork should be stored in the index.
-
-# Snapshots
-
-To snapshot, the underlying memory-mapped files in the AppendVec need to be
-flushed to disk.  The index can be written out to disk as well.
-
-# Performance
-
-* Append-only writes are fast.  SSDs and NVMEs, as well as all the OS level
-kernel data structures, allow for appends to run as fast as PCI or NVMe bandwidth
-will allow (2,700 MB/s).
-
-* Each replay and banking thread writes concurrently to its own AppendVec.
-
-* Each AppendVec could potentially be hosted on a separate NVMe.
-
-* Each replay and banking thread has concurrent read access to all the
-AppendVecs without blocking writes.
-
-* Index requires an exclusive write lock for writes.  Single-thread performance
-for HashMap updates is on the order of 10m per second.
-
-* Banking and Replay stages should use 32 threads per NVMe.  NVMes have
-optimal performance with 32 concurrent readers or writers.

book/src/programs.md

@@ -1,65 +0,0 @@
-# Programming Model
-
-A client *app* interacts with a Solana cluster by sending it *transactions*
-with one or more *instructions*. The Solana *runtime* passes those instructions
-to user-contributed *programs*. An instruction might, for example, tell a
-program to transfer *lamports* from one *account* to another or create an interactive
-contract that governs how lamports are transfered. Instructions are executed
-atomically. If any instruction is invalid, any changes made within the
-transaction are discarded.
-
-## Deploying Programs to a Cluster
-
-<img alt="SDK tools" src="img/sdk-tools.svg" class="center"/>
-
-As shown in the diagram above a client creates a program and compiles it to an
-ELF shared object containing BPF bytecode and sends it to the Solana cluster.
-The cluster stores the program locally and makes it available to clients via a
-*program ID*. The program ID is a *public key* generated by the client and is
-used to reference the program in subsequent transactions.
-
-A program may be written in any programming language that can target the
-Berkley Packet Filter (BPF) safe execution environment. The Solana SDK offers
-the best support for C programs, which is compiled to BPF using the [LLVM
-compiler infrastructure](https://llvm.org).
-
-## Storing State between Transactions
-
-If the program needs to store state between transactions, it does so using
-*accounts*. Accounts are similar to files in operating systems such as Linux.
-Like a file, an account may hold arbitrary data and that data persists beyond
-the lifetime of a program. Also like a file, an account includes metadata that
-tells the runtime who is allowed to access the data and how. Unlike a file, the
-account includes metadata for the lifetime of the file. That lifetime is
-expressed in "tokens", which is a number of fractional native tokens, called
-*lamports*. Accounts are held in validator memory and pay "rent" to stay there.
-Each fullnode periodically scan all accounts and collects rent. Any account
-that drops to zero lamports is purged.
-
-If an account is marked "executable", it will only be used by a *loader* to run
-programs. For example, a BPF-compiled program is marked executable and loaded
-by the BPF loader. No program is allowed to modify the contents of an
-executable account.
-
-An account also includes "owner" metadata. The owner is a program ID. The
-runtime grants the program write access to the account if its ID matches the
-owner. If an account is not owned by a program, the program is permitted to
-read its data and credit the account.
-
-In the same way that a Linux user uses a path to look up a file, a Solana
-client uses public keys to look up accounts. To create an account, the client
-generates a *keypair* and registers its public key using the CreateAccount
-instruction. Once registered, transactions reference account keys to grant
-programs access to accounts. The runtime grants programs read access by
-default. To grant write access, the client must either assign the account to a
-program or sign the transaction using the keypair's *secret key*. Since only
-the holder of the secret key can produce valid signatures matching the
-account's public key, the runtime recognizes the signature as authorization to
-modify account data or debit the account.
-
-After the runtime executes each of the transaction's instructions, it uses the
-account metadata and transaction signatures to verify that none of the access
-rules were violated. If a program violates an access rule, the runtime discards
-all account changes made by all instructions and marks the transaction as
-failed.
-

book/src/proposals.md

@@ -1,7 +0,0 @@
-# Proposed Architectural Changes
-
-The following architectural proposals have been accepted by the Solana team, but
-are not yet fully implemented. The proposals may be implemented as described,
-implemented differently as issues in the designs become evident, or not
-implemented at all. If implemented, the descriptions will be moved from this
-section to earlier chapters in a future version of this book.

book/src/reliable-vote-transmission.md

@@ -1,124 +0,0 @@
-# Reliable Vote Transmission
-
-Validator votes are messages that have a critical function for consensus and
-continuous operation of the network. Therefore it is critical that they are
-reliably delivered and encoded into the ledger.
-
-## Challenges
-
-1. Leader rotation is triggered by PoH, which is clock with high drift.  So many
-nodes are likely to have an incorrect view if the next leader is active in
-realtime or not.
-
-2. The next leader may be easily be flooded.  Thus a DDOS would not only prevent
-delivery of regular transactions, but also consensus messages.
-
-3. UDP is unreliable, and our asynchronous protocol requires any message that is
-transmitted to be retransmitted until it is observed in the ledger.
-Retransmittion could potentially cause an unintentional *thundering herd*
-against the leader with a large number of validators.  Worst case flood would be
-`(num_nodes * num_retransmits)`.
-
-4. Tracking if the vote has been transmitted or not via the ledger does not
-guarantee it will appear in a confirmed block.  The current observed block may
-be unrolled. Validators would need to maintain state for each vote and fork.
-
-
-## Design
-
-1. Send votes as a push message through gossip.  This ensures delivery of the
-vote to all the next leaders, not just the next future one.
-
-2. Leaders will read the Crds table for new votes and encode any new received
-votes into the blocks they propose.  This allows for validator votes to be
-included in rollback forks by all the future leaders.
-
-3. Validators that receive votes in the ledger will add them to their local crds
-table, not as a push request, but simply add them to the table.  This shortcuts
-the push message protocol, so the validation messages do not need to be
-retransmitted twice around the network.
-
-4. CrdsValue for vote should look like this ``` Votes(Vec<Transaction>) ```
-
-Each vote transaction should maintain a `wallclock` in its data.  The merge
-strategy for Votes will keep the last N set of votes as configured by the local
-client.  For push/pull the vector is traversed recursively and each Transaction
-is treated as an individual CrdsValue with its own local wallclock and
-signature.
-
-Gossip is designed for efficient propagation of state.  Messages that are sent
-through gossip-push are batched and propagated with a minimum spanning tree to
-the rest of the network. Any partial failures in the tree are actively repaired
-with the gossip-pull protocol while minimizing the amount of data transfered
-between any nodes.
-
-
-## How this design solves the Challenges
-
-1. Because there is no easy way for validators to be in sync with leaders on the
-leader's "active" state, gossip allows for eventual delivery regardless of that
-state.
-
-2. Gossip will deliver the messages to all the subsequent leaders, so if the
-current leader is flooded the next leader would have already received these
-votes and is able to encode them.
-
-3. Gossip minimizes the number of requests through the network by maintaining an
-efficient spanning tree, and using bloom filters to repair state.  So retransmit
-back-off is not necessary and messages are batched.
-
-4. Leaders that read the crds table for votes will encode all the new valid
-votes that appear in the table.  Even if this leader's block is unrolled, the
-next leader will try to add the same votes without any additional work done by
-the validator.  Thus ensuring not only eventual delivery, but eventual encoding
-into the ledger.
-
-
-## Performance
-
-1. Worst case propagation time to the next leader is Log(N) hops with a base
-depending on the fanout.  With our current default fanout of 6, it is about 6
-hops to 20k nodes.
-
-2. The leader should receive 20k validation votes aggregated by gossip-push into
-64kb blobs. Which would reduce the number of packets for 20k network to 80
-blobs.
-
-3. Each validators votes is replicated across the entire network.  To maintain a
-queue of 5 previous votes the Crds table would grow by 25 megabytes.  `(20,000
-nodes * 256 bytes * 5)`.
-
-## Two step implementation rollout
-
-Initially the network can perform reliably with just 1 vote transmitted and
-maintained through the network with the current Vote implementation.  For small
-networks a fanout of 6 is sufficient.  With small network the memory and push
-overhead is minor.
-
-### Sub 1k validator network
-
-1. Crds just maintains the validators latest vote.
-
-2. Votes are pushed and retransmitted regardless if they are appearing in the
-ledger.
-
-3. Fanout of 6.
-
-* Worst case 256kb memory overhead per node.
-* Worst case 4 hops to propagate to every node.
-* Leader should receive the entire validator vote set in 4 push message blobs.
-
-### Sub 20k network
-
-Everything above plus the following:
-
-1. CRDS table maintains a vector of 5 latest validator votes.
-
-2. Votes encode a wallclock.  CrdsValue::Votes is a type that recurses into the
-transaction vector for all the gossip protocols.
-
-3. Increase fanout to 20.
-
-* Worst case 25mb memory overhead per node.
-* Sub 4 hops worst case to deliver to the entire network.
-* 80 blobs received by the leader for all the validator messages.

book/src/repair-service.md

@@ -1,51 +0,0 @@
-# Repair Service
-
-The RepairService is in charge of retrieving missing blobs that failed to be delivered by primary communication protocols like Avalanche. It is in charge of managing the protocols described below in the `Repair Protocols` section below.  
-
-# Challenges:
-
-1) Validators can fail to receive particular blobs due to network failures
-
-2) Consider a scenario where blocktree contains the set of slots {1, 3, 5}. Then Blocktree receives blobs for some slot 7, where for each of the blobs b, b.parent == 6, so then the parent-child relation 6 -> 7 is stored in blocktree. However, there is no way to chain these slots to any of the existing banks in Blocktree, and thus the `Blob Repair` protocol will not repair these slots. If these slots happen to be part of the main chain, this will halt replay progress on this node.
-
-3) Validators that find themselves behind the cluster by an entire epoch struggle/fail to catch up because they do not have a leader schedule for future epochs. If nodes were to blindly accept repair blobs in these future epochs, this exposes nodes to spam.
-
-# Repair Protocols
-
-The repair protocol makes best attempts to progress the forking structure of Blocktree. 
-
-The different protocol strategies to address the above challenges:
-
-1. Blob Repair (Addresses Challenge #1): 
-    This is the most basic repair protocol, with the purpose of detecting and filling "holes" in the ledger. Blocktree tracks the latest root slot. RepairService will then periodically iterate every fork in blocktree starting from the root slot, sending repair requests to validators for any missing blobs. It will send at most some `N` repair reqeusts per iteration.
-
-    Note: Validators will only accept blobs within the current verifiable epoch (epoch the validator has a leader schedule for).
-
-2. Preemptive Slot Repair (Addresses Challenge #2):
-    The goal of this protocol is to discover the chaining relationship of "orphan" slots that do not currently chain to any known fork. 
-
-    * Blocktree will track the set of "orphan" slots in a separate column family. 
-
-    * RepairService will periodically make `RequestOrphan` requests for each of the orphans in blocktree. 
-
-    `RequestOrphan(orphan)` request - `orphan` is the orphan slot that the requestor wants to know the parents of
-    `RequestOrphan(orphan)` response - The highest blobs for each of the first `N` parents of the requested `orphan` 
-
-    On receiving the responses `p`, where `p` is some blob in a parent slot, validators will:
-        * Insert an empty `SlotMeta` in blocktree for `p.slot` if it doesn't already exist.
-        * If `p.slot` does exist, update the parent of `p` based on `parents`
-
-    Note: that once these empty slots are added to blocktree, the `Blob Repair` protocol should attempt to fill those slots.
-
-    Note: Validators will only accept responses containing blobs within the current verifiable epoch (epoch the validator has a leader schedule for).
-
-3. Repairmen (Addresses Challenge #3):
-    This part of the repair protocol is the primary mechanism by which new nodes joining the cluster catch up after loading a snapshot. This protocol works in a "forward" fashion, so validators can verify every blob that they receive against a known leader schedule.
-
-    Each validator advertises in gossip:
-        * Current root
-        * The set of all completed slots in the confirmed epochs (an epoch that was calculated based on a bank <= current root) past the current root
-
-    Observers of this gossip message with higher epochs (repairmen) send blobs to catch the lagging node up with the rest of the cluster. The repairmen are responsible for sending the slots within the epochs that are confrimed by the advertised `root` in gossip. The repairmen divide the responsibility of sending each of the missing slots in these epochs based on a random seed (simple blob.index iteration by N, seeded with the repairman's node_pubkey). Ideally, each repairman in an N node cluster (N nodes whose epochs are higher than that of the repairee) sends 1/N of the missing blobs. Both data and coding blobs for missing slots are sent. Repairmen do not send blobs again to the same validator until they see the message in gossip updated, at which point they perform another iteration of this protocol.
-
-    Gossip messages are updated every time a validator receives a complete slot within the epoch. Completed slots are detected by blocktree and sent over a channel to RepairService. It is important to note that we know that by the time a slot X is complete, the epoch schedule must exist for the epoch that contains slot X because WindowService will reject blobs for unconfirmed epochs. When a newly completed slot is detected, we also update the current root if it has changed since the last update. The root is made available to RepairService through Blocktree, which holds the latest root.

book/src/runtime.md

@@ -1,116 +0,0 @@
-# The Runtime
-
-The runtime is a concurrent transaction processor. Transactions specify their
-data dependencies upfront and dynamic memory allocation is explicit. By
-separating program code from the state it operates on, the runtime is able to
-choreograph concurrent access. Transactions accessing only credit-only
-accounts are executed in parallel whereas transactions accessing writable
-accounts are serialized.  The runtime interacts with the program through an
-entrypoint with a well-defined interface.  The data stored in an account is
-an opaque type, an array of bytes. The program has full control over its
-contents.
-
-The transaction structure specifies a list of public keys and signatures for
-those keys and a sequential list of instructions that will operate over the
-states associated with the account keys.  For the transaction to be committed
-all the instructions must execute successfully; if any abort the whole
-transaction fails to commit.
-
-### Account Structure
-
-Accounts maintain a lamport balance and program-specific memory.
-
-# Transaction Engine
-
-The engine maps public keys to accounts and routes them to the program's
-entrypoint.
-
-## Execution
-
-Transactions are batched and processed in a pipeline.  The TPU and TVU follow a
-slightly different path.  The TPU runtime ensures that PoH record occurs before
-memory is committed.
-
-The TVU runtime ensures that PoH verification occurs before the runtime
-processes any transactions.
-
-<img alt="Runtime pipeline" src="img/runtime.svg" class="center"/>
-
-At the *execute* stage, the loaded accounts have no data dependencies, so all the
-programs can be executed in parallel.
-
-The runtime enforces the following rules:
-
-1. Only the *owner* program may modify the contents of an account.  This means
-that upon assignment data vector is guaranteed to be zero.
-
-2. Total balances on all the accounts is equal before and after execution of a
-transaction.
-
-3. After the transaction is executed, balances of credit-only accounts must be
-greater than or equal to the balances before the transaction.
-
-4. All instructions in the transaction executed atomically. If one fails, all
-account modifications are discarded.
-
-Execution of the program involves mapping the program's public key to an
-entrypoint which takes a pointer to the transaction, and an array of loaded
-accounts.
-
-## SystemProgram Interface
-
-The interface is best described by the `Instruction::data` that the user
-encodes.
-
-* `CreateAccount` - This allows the user to create an account with an allocated
-data array and assign it to a Program.
-
-* `Assign` - Allows the user to assign an existing account to a program.
-
-* `Transfer`  - Transfers lamports between accounts.
-
-## Program State Security
-
-For blockchain to function correctly, the program code must be resilient to user
-inputs.  That is why in this design the program specific code is the only code
-that can change the state of the data byte array in the Accounts that are
-assigned to it.  It is also the reason why `Assign` or `CreateAccount` must zero
-out the data.  Otherwise there would be no possible way for the program to
-distinguish the recently assigned account data from a natively generated
-state transition without some additional metadata from the runtime to indicate
-that this memory is assigned instead of natively generated.
-
-To pass messages between programs, the receiving program must accept the message
-and copy the state over.  But in practice a copy isn't needed and is
-undesirable. The receiving program can read the state belonging to other
-Accounts without copying it, and during the read it has a guarantee of the
-sender program's state.
-
-## Notes
-
-* There is no dynamic memory allocation.  Client's need to use `CreateAccount`
-instructions to create memory before passing it to another program.  This
-instruction can be composed into a single transaction with the call to the
-program itself.
-
-* `CreateAccount` and `Assign` guarantee that when account is assigned to the
-program, the Account's data is zero initialized.
-
-* Once assigned to program an Account cannot be reassigned.
-
-* Runtime guarantees that a program's code is the only code that can modify
-Account data that the Account is assigned to.
-
-* Runtime guarantees that the program can only spend lamports that are in
-accounts that are assigned to it.
-
-* Runtime guarantees the balances belonging to accounts are balanced before
-and after the transaction.
-
-* Runtime guarantees that instructions all executed successfully when a
-transaction is committed.
-
-# Future Work
-
-* [Continuations and Signals for long running
-  Transactions](https://github.com/solana-labs/solana/issues/1485)

book/src/simple-payment-and-state-verification.md

@@ -1,172 +0,0 @@
-# Simple Payment and State Verification
-
-It is often useful to allow low resourced clients to participate in a Solana
-cluster. Be this participation economic or contract execution, verification
-that a client's activity has been accepted by the network is typically
-expensive. This proposal lays out a mechanism for such clients to confirm that
-their actions have been committed to the ledger state with minimal resource
-expenditure and third-party trust.
-
-## A Naive Approach
-
-Validators store the signatures of recently confirmed transactions for a short
-period of time to ensure that they are not processed more than once. Validators
-provide a JSON RPC endpoint, which clients can use to query the cluster if a
-transaction has been recently processed. Validators also provide a PubSub
-notification, whereby a client registers to be notified when a given signature
-is observed by the validator. While these two mechanisms allow a client to
-verify a payment, they are not a proof and rely on completely trusting a
-fullnode.
-
-We will describe a way to minimize this trust using Merkle Proofs to anchor the
-fullnode's response in the ledger, allowing the client to confirm on their own
-that a sufficient number of their preferred validators have confirmed a
-transaction. Requiring multiple validator attestations further reduces trust in
-the fullnode, as it increases both the technical and economic difficulty of
-compromising several other network participants.
-
-## Light Clients
-
-A 'light client' is a cluster participant that does not itself run a fullnode.
-This light client would provide a level of security greater than trusting a
-remote fullnode, without requiring the light client to spend a lot of resources
-verifying the ledger.
-
-Rather than providing transaction signatures directly to a light client, the
-fullnode instead generates a Merkle Proof from the transaction of interest to
-the root of a Merkle Tree of all transactions in the including block. This Merkle
-Root is stored in a ledger entry which is voted on by validators, providing it
-consensus legitimacy. The additional level of security for a light client depends
-on an initial canonical set of validators the light client considers to be the
-stakeholders of the cluster. As that set is changed, the client can update its
-internal set of known validators with [receipts](#receipts). This may become
-challenging with a large number of delegated stakes.
-
-Fullnodes themselves may want to use light client APIs for performance reasons.
-For example, during the initial launch of a fullnode, the fullnode may use a
-cluster provided checkpoint of the state and verify it with a receipt.
-
-## Receipts
-
-A receipt is a minimal proof that; a transaction has been included in a block,
-that the block has been voted on by the client's preferred set of validators and
-that the votes have reached the desired confirmation depth.
-
-The receipts for both state and payments start with a Merkle Path from the
-value into a Bank-Merkle that has been voted on and included in the ledger. A
-chain of PoH Entries containing subsequent validator votes, deriving from the
-Bank-Merkle, is the confirmation proof.
-
-Clients can examine this ledger data and compute the finality using Solana's fork
-selection rules.
-
-### Payment Merkle Path
-
-A payment receipt is a data structure that contains a Merkle Path from a
-transaction to the required set of validator votes.
-
-An Entry-Merkle is a Merkle Root including all transactions in the entry, sorted
-by signature.
-
-<img alt="Block Merkle Diagram" src="img/spv-block-merkle.svg" class="center"/>
-
-A Block-Merkle is a Merkle root of all the Entry-Merkles sequenced in the block.
-Transaction status is necessary for the receipt because the state receipt is
-constructed for the block. Two transactions over the same state can appear in
-the block, and therefore, there is no way to infer from just the state whether a
-transaction that is committed to the ledger has succeeded or failed in modifying
-the intended state. It may not be necessary to encode the full status code, but
-a single status bit to indicate the transaction's success.
-
-### State Merkle Path
-
-A state receipt provides a confirmation that a specific state is committed at the
-end of the block. Inter-block state transitions do not generate a receipt.
-
-For example:
-
-* A sends 5 Lamports to B
-* B spends 5 Lamports
-* C sends 5 Lamports to A
-
-At the end of the block, A and B are in the exact same starting state, and any
-state receipt would point to the same value for A or B.
-
-The Bank-Merkle is computed from the Merkle Tree of the new state changes, along
-with the Previous Bank-Merkle, and the Block-Merkle.
-
-<img alt="Bank Merkle Diagram" src="img/spv-bank-merkle.svg" class="center"/>
-
-A state receipt contains only the state changes occurring in the block. A direct
-Merkle Path to the current Bank-Merkle guarantees the state value at that bank
-hash, but it cannot be used to generate a “current” receipt to the latest state
-if the state modification occurred in some previous block. There is no guarantee
-that the path provided by the validator is the latest one available out of all
-the previous Bank-Merkles.
-
-Clients that want to query the chain for a receipt of the "latest" state would
-need to create a transaction that would update the Merkle Path for that account,
-such as a credit of 0 Lamports.
-
-###  Validator Votes
-
-Leaders should coalesce the validator votes by stake weight into a single entry.
-This will reduce the number of entries necessary to create a receipt.
-
-###  Chain of Entries
-
-A receipt has a PoH link from the payment or state Merkle Path root to a list of
-consecutive validation votes.
-
-It contains the following:
-* State -> Bank-Merkle
-or
-* Transaction -> Entry-Merkle -> Block-Merkle -> Bank-Merkle
-
-And a vector of PoH entries:
-
-* Validator vote entries
-* Ticks
-* Light entries
-
-
-```rust,ignore
-/// This Entry definition skips over the transactions and only contains the
-/// hash of the transactions used to modify PoH.
-LightEntry {
-    /// The number of hashes since the previous Entry ID.
-    pub num_hashes: u64,
-    /// The SHA-256 hash `num_hashes` after the previous Entry ID.
-    hash: Hash,
-    /// The Merkle Root of the transactions encoded into the Entry.
-    entry_hash: Hash,
-}
-```
-
-The light entries are reconstructed from Entries and simply show the entry Merkle
-Root that was mixed in to the PoH hash, instead of the full transaction set.
-
-Clients do not need the starting vote state. The [fork selection](book/src/fork-selection.md) algorithm is
-defined such that only votes that appear after the transaction provide finality
-for the transaction, and finality is independent of the starting state.
-
-###  Verification
-
-A light client that is aware of the supermajority set validators can verify a
-receipt by following the Merkle Path to the PoH chain. The Bank-Merkle is the
-Merkle Root and will appear in votes included in an Entry. The light client can
-simulate [fork selection](book/src/fork-selection.md) for the consecutive votes
-and verify that the receipt is confirmed at the desired lockout threshold.
-
-### Synthetic State
-
-Synthetic state should be computed into the Bank-Merkle along with the bank
-generated state.
-
-For example:
-
-* Epoch validator accounts and their stakes and weights.
-* Computed fee rates
-
-These values should have an entry in the Bank-Merkle. They should live under
-known accounts, and therefore have an exact address in the Merkle Path.

book/src/stake-delegation-and-rewards.md

@@ -1,197 +0,0 @@
-# Stake Delegation and Rewards
-
-Stakers are rewarded for helping to validate the ledger. They do this by
-delegating their stake to validator nodes. Those validators do the legwork of
-replaying the ledger and send votes to a per-node vote account to which stakers
-can delegate their stakes.  The rest of the cluster uses those stake-weighted
-votes to select a block when forks arise. Both the validator and staker need
-some economic incentive to play their part. The validator needs to be
-compensated for its hardware and the staker needs to be compensated for the risk
-of getting its stake slashed.  The economics are covered in [staking
-rewards](staking-rewards.md).  This chapter, on the other hand, describes the
-underlying mechanics of its implementation.
-
-## Basic Design
-
-The general idea is that the validator owns a Vote account. The Vote account
-tracks validator votes, counts validator generated credits, and provides any
-additional validator specific state.  The Vote account is not aware of any
-stakes delegated to it and has no staking weight.
-
-A separate Stake account (created by a staker) names a Vote account to which the
-stake is delegated.  Rewards generated are proportional to the amount of
-lamports staked.  The Stake account is owned by the staker only.  Some portion of the lamports
-stored in this account are the stake.
-
-## Passive Delegation
-
-Any number of Stake accounts can delegate to a single
-Vote account without an interactive action from the identity controlling
-the Vote account or submitting votes to the account.
-
-The total stake allocated to a Vote account can be calculated by the sum of
-all the Stake accounts that have the Vote account pubkey as the
-`StakeState::Stake::voter_pubkey`.
-
-## Vote and Stake accounts
-
-The rewards process is split into two on-chain programs. The Vote program solves
-the problem of making stakes slashable. The Stake account acts as custodian of
-the rewards pool, and provides passive delegation. The Stake program is
-responsible for paying out each staker once the staker proves to the Stake
-program that its delegate has participated in validating the ledger.
-
-### VoteState
-
-VoteState is the current state of all the votes the validator has submitted to
-the network. VoteState contains the following state information:
-
-* `votes` - The submitted votes data structure.
-
-* `credits` - The total number of rewards this vote program has generated over its
-lifetime.
-
-* `root_slot` - The last slot to reach the full lockout commitment necessary for
-rewards.
-
-* `commission` - The commission taken by this VoteState for any rewards claimed by
-staker's Stake accounts.  This is the percentage ceiling of the reward.
-
-* Account::lamports - The accumulated lamports from the commission.  These do not
-count as stakes.
-
-* `authorized_vote_signer` - Only this identity is authorized to submit votes. This field can only modified by this identity.
-
-### VoteInstruction::Initialize
-
-* `account[0]` - RW - The VoteState
-  `VoteState::authorized_vote_signer` is initialized to `account[0]`
-   other VoteState members defaulted
-
-### VoteInstruction::AuthorizeVoteSigner(Pubkey)
-
-* `account[0]` - RW - The VoteState
-  `VoteState::authorized_vote_signer` is set to to `Pubkey`, the transaction must by
-   signed by the Vote account's current `authorized_vote_signer`.  <br>
-   `VoteInstruction::AuthorizeVoter` allows a staker to choose a signing service
-for its votes. That service is responsible for ensuring the vote won't cause
-the staker to be slashed.
-
-
-### VoteInstruction::Vote(Vec<Vote>)
-
-* `account[0]` - RW - The VoteState
-  `VoteState::lockouts` and `VoteState::credits` are updated according to voting lockout rules see [Tower BFT](tower-bft.md)
-
-
-* `account[1]` - RO - A list of some N most recent slots and their hashes for the vote to be verified against.
-
-
-### StakeState
-
-A StakeState takes one of three forms, StakeState::Uninitialized, StakeState::Stake and StakeState::RewardsPool.
-
-### StakeState::Stake
-
-StakeState::Stake is the current delegation preference of the **staker** and
-contains the following state information:
-
-* Account::lamports - The lamports available for staking.
-
-* `stake` - the staked amount (subject to warm up and cool down) for generating rewards, always less than or equal to Account::lamports
-
-* `voter_pubkey` - The pubkey of the VoteState instance the lamports are
-delegated to.
-
-* `credits_observed` - The total credits claimed over the lifetime of the
-program.
-
-* `activated` - the epoch at which this stake was activated/delegated. The full stake will be counted after warm up.
-
-* `deactivated` - the epoch at which this stake will be completely de-activated, which is `cool down` epochs after StakeInstruction::Deactivate is issued.
-
-### StakeState::RewardsPool
-
-To avoid a single network wide lock or contention in redemption, 256 RewardsPools are part of genesis under pre-determined keys, each with std::u64::MAX credits to be able to satisfy redemptions according to point value.
-
-The Stakes and the RewardsPool are accounts that are owned by the same `Stake` program.
-
-### StakeInstruction::DelegateStake(u64)
-
-The Stake account is moved from Uninitialized to StakeState::Stake form.  This is
-how stakers choose their initial delegate validator node and activate their
-stake account lamports.
-
-* `account[0]` - RW - The StakeState::Stake instance. <br>
-      `StakeState::Stake::credits_observed` is initialized to `VoteState::credits`,<br>
-      `StakeState::Stake::voter_pubkey` is initialized to `account[1]`,<br>
-      `StakeState::Stake::stake` is initialized to the u64 passed as an argument above,<br>
-      `StakeState::Stake::activated` is initialized to current Bank epoch, and<br>
-      `StakeState::Stake::deactivated` is initialized to std::u64::MAX
-
-* `account[1]` - R - The VoteState instance.
-
-* `account[2]` - R - syscall::current account, carries information about current Bank epoch
-
-### StakeInstruction::RedeemVoteCredits
-
-The staker or the owner of the Stake account sends a transaction with this
-instruction to claim rewards.
-
-The Vote account and the Stake account pair maintain a lifetime counter of total
-rewards generated and claimed.  Rewards are paid according to a point value
-supplied by the Bank from inflation.  A `point` is one credit * one staked
-lamport, rewards paid are proportional to the number of lamports staked.
-
-* `account[0]` - RW - The StakeState::Stake instance that is redeeming rewards.
-* `account[1]` - R - The VoteState instance, must be the same as `StakeState::voter_pubkey`
-* `account[2]` - RW - The StakeState::RewardsPool instance that will fulfill the request (picked at random).
-* `account[3]` - R - syscall::rewards account from the Bank that carries point value.
-
-Reward is paid out for the difference between `VoteState::credits` to
-`StakeState::Stake::credits_observed`, multiplied by `syscall::rewards::Rewards::validator_point_value`.
-`StakeState::Stake::credits_observed` is updated to`VoteState::credits`.  The commission is deposited into the Vote account token
-balance, and the reward is deposited to the Stake account token balance.
-
-
-```rust,ignore
-let credits_to_claim = vote_state.credits - stake_state.credits_observed;
-stake_state.credits_observed = vote_state.credits;
-```
-
-`credits_to_claim` is used to compute the reward and commission, and
-`StakeState::Stake::credits_observed` is updated to the latest
-`VoteState::credits` value.
-
-### StakeInstruction::Deactivate
-A staker may wish to withdraw from the network.  To do so he must first deactivate his stake, and wait for cool down.
-
-* `account[0]` - RW - The StakeState::Stake instance that is deactivating, the transaction must be signed by this key.
-* `account[1]` - R - syscall::current account from the Bank that carries current epoch
-
-StakeState::Stake::deactivated is set to the current epoch + cool down.  The account's stake will ramp down to zero by
-that epoch, and Account::lamports will be available for withdrawal.
-
-
-### StakeInstruction::Withdraw(u64)
-Lamports build up over time in a Stake account and any excess over activated stake can be withdrawn.
-
-* `account[0]` - RW - The StakeState::Stake from which to withdraw, the transaction must be signed by this key.
-* `account[1]` - RW - Account that should be credited with the withdrawn lamports.
-* `account[2]` - R - syscall::current account from the Bank that carries current epoch, to calculate stake.
-
-
-## Benefits of the design
-
-* Single vote for all the stakers.
-
-* Clearing of the credit variable is not necessary for claiming rewards.
-
-* Each delegated stake can claim its rewards independently.
-
-* Commission for the work is deposited when a reward is claimed by the delegated
-stake.
-
-## Example Callflow
-
-<img alt="Passive Staking Callflow" src="img/passive-staking-callflow.svg" class="center"/>

book/src/staking-rewards.md

@@ -1,136 +0,0 @@
-# Staking Rewards
-
-A Proof of Stake (PoS), (i.e. using in-protocol asset, SOL, to provide
-secure consensus) design is outlined here. Solana implements a proof of
-stake reward/security scheme for validator nodes in the cluster. The purpose is
-threefold:
-
-- Align validator incentives with that of the greater cluster through
-  skin-in-the-game deposits at risk
-- Avoid 'nothing at stake' fork voting issues by implementing slashing rules
-  aimed at promoting fork convergence
-- Provide an avenue for validator rewards provided as a function of validator
-  participation in the cluster.
-
-While many of the details of the specific implementation are currently under
-consideration and are expected to come into focus through specific modeling
-studies and parameter exploration on the Solana testnet, we outline here our
-current thinking on the main components of the PoS system. Much of this
-thinking is based on the current status of Casper FFG, with optimizations and
-specific attributes to be modified as is allowed by Solana's Proof of History
-(PoH) blockchain data structure.
-
-### General Overview
-
-Solana's ledger validation design is based on a rotating, stake-weighted selected leader broadcasting transactions in a PoH data
-structure to validating nodes. These nodes, upon receiving the leader's
-broadcast, have the opportunity to vote on the current state and PoH height by
-signing a transaction into the PoH stream.
-
-To become a Solana validator, a fullnode must deposit/lock-up some amount
-of SOL in a contract. This SOL will not be accessible for a specific time
-period. The precise duration of the staking lockup period has not been
-determined. However we can consider three phases of this time for which
-specific parameters will be necessary:
-
-- *Warm-up period*: which SOL is deposited and inaccessible to the node,
-  however PoH transaction validation has not begun. Most likely on the order of
-  days to weeks
-- *Validation period*: a minimum duration for which the deposited SOL will be
-  inaccessible, at risk of slashing (see slashing rules below) and earning
-  rewards for the validator participation. Likely duration of months to a
-  year.
-- *Cool-down period*: a duration of time following the submission of a
-  'withdrawal' transaction. During this period validation responsibilities have
-  been removed and the funds continue to be inaccessible. Accumulated rewards
-  should be delivered at the end of this period, along with the return of the
-  initial deposit.
-
-Solana's trustless sense of time and ordering provided by its PoH data
-structure, along with its
-[turbine](https://www.youtube.com/watch?v=qt_gDRXHrHQ&t=1s) data broadcast
-and transmission design, should provide sub-second transaction confirmation times that scale
-with the log of the number of nodes in the cluster. This means we shouldn't
-have to restrict the number of validating nodes with a prohibitive 'minimum
-deposits' and expect nodes to be able to become validators with nominal amounts
-of SOL staked. At the same time, Solana's focus on high-throughput should create incentive for validation clients to provide high-performant and reliable hardware. Combined with potential a minimum network speed threshold to join as a validation-client, we expect a healthy validation delegation market to emerge. To this end, Solana's testnet will lead into a "Tour de SOL" validation-client competition, focusing on throughput and uptime to rank and reward testnet validators.
-
-
-### Slashing rules
-
-Unlike Proof of Work (PoW) where off-chain capital expenses are already
-deployed at the time of block construction/voting, PoS systems require
-capital-at-risk to prevent a logical/optimal strategy of multiple chain voting.
-We intend to implement slashing rules which, if broken, result some amount of
-the offending validator's deposited stake to be removed from circulation. Given
-the ordering properties of the PoH data structure, we believe we can simplify
-our slashing rules to the level of a voting lockout time assigned per vote.
-
-I.e. Each vote has an associated lockout time (PoH duration) that represents a
-duration by any additional vote from that validator must be in a PoH that
-contains the original vote, or a portion of that validator's stake is
-slashable. This duration time is a function of the initial vote PoH count and
-all additional vote PoH counts.  It will likely take the form:
-
-Lockout<sub>i</sub>(PoH<sub>i</sub>, PoH<sub>j</sub>) = PoH<sub>j</sub> + K *
-exp((PoH<sub>j</sub> - PoH<sub>i</sub>) / K)
-
-Where PoH<sub>i</sub> is the height of the vote that the lockout is to be
-applied to and PoH<sub>j</sub> is the height of the current vote on the same
-fork. If the validator submits a vote on a different PoH fork on any
-PoH<sub>k</sub> where k > j > i and PoH<sub>k</sub> < Lockout(PoH<sub>i</sub>,
-PoH<sub>j</sub>), then a portion of that validator's stake is at risk of being
-slashed.
-
-In addition to the functional form lockout described above, early
-implementation may be a numerical approximation based on a First In, First Out
-(FIFO) data structure and the following logic:
-- FIFO queue holding 32 votes per active validator
-- new votes are pushed on top of queue (`push_front`)
-- expired votes are popped off top (`pop_front`)
-- as votes are pushed into the queue, the lockout of each queued vote doubles
-- votes are removed from back of queue if `queue.len() > 32`
-- the earliest and latest height that has been removed from the back of the
-  queue should be stored
-
-It is likely that a reward will be offered as a % of the slashed amount to any
-node that submits proof of this slashing condition being violated to the PoH.
-
-#### Partial Slashing
-
-In the schema described so far, when a validator votes on a given PoH stream,
-they are committing themselves to that fork for a time determined by the vote
-lockout. An open question is whether validators will be hesitant to begin
-voting on an available fork if the penalties are perceived too harsh for an
-honest mistake or flipped bit.
-
-One way to address this concern would be a partial slashing design that results
-in a slashable amount as a function of either:
-
-1. the fraction of validators, out of the total validator pool, that were also
-   slashed during the same time period (ala Casper)
-2. the amount of time since the vote was cast (e.g. a linearly increasing % of
-   total deposited as slashable amount over time), or both.
-
-This is an area currently under exploration
-
-
-### Penalties
-
-As discussed in the [Economic Design](ed_overview.md) section, annual validator interest rates are to be specified as a
-function of total percentage of circulating supply that has been staked. The cluster rewards validators who are online
-and actively participating in the validation process throughout the entirety of
-their *validation period*. For validators that go offline/fail to validate
-transactions during this period, their annual reward is effectively reduced.
-
-Similarly, we may consider an algorithmic reduction in a validator's active
-amount staked amount in the case that they are offline. I.e. if a validator is
-inactive for some amount of time, either due to a partition or otherwise, the
-amount of their stake that is considered ‘active’ (eligible to earn rewards)
-may be reduced. This design would be structured to help long-lived partitions
-to eventually reach finality on their respective chains as the % of non-voting
-total stake is reduced over time until a super-majority can be achieved by the
-active validators in each partition. Similarly, upon re-engaging, the ‘active’
-amount staked will come back online at some defined rate. Different rates of
-stake reduction may be considered depending on the size of the partition/active
-set.

book/src/synchronization.md

@@ -1,87 +0,0 @@
-# Synchronization
-
-Fast, reliable synchronization is the biggest reason Solana is able to achieve
-such high throughput. Traditional blockchains synchronize on large chunks of
-transactions called blocks. By synchronizing on blocks, a transaction cannot be
-processed until a duration called "block time" has passed. In Proof of Work
-consensus, these block times need to be very large (~10 minutes) to minimize
-the odds of multiple fullnodes producing a new valid block at the same time.
-There's no such constraint in Proof of Stake consensus, but without reliable
-timestamps, a fullnode cannot determine the order of incoming blocks.  The
-popular workaround is to tag each block with a [wallclock
-timestamp](https://en.bitcoin.it/wiki/Block_timestamp). Because of clock drift
-and variance in network latencies, the timestamp is only accurate within an
-hour or two. To workaround the workaround, these systems lengthen block times
-to provide reasonable certainty that the median timestamp on each block is
-always increasing.
-
-Solana takes a very different approach, which it calls *Proof of History* or
-*PoH*. Leader nodes "timestamp" blocks with cryptographic proofs that some
-duration of time has passed since the last proof. All data hashed into the
-proof most certainly have occurred before the proof was generated. The node
-then shares the new block with validator nodes, which are able to verify those
-proofs. The blocks can arrive at validators in any order or even could be
-replayed years later. With such reliable synchronization guarantees, Solana is
-able to break blocks into smaller batches of transactions called *entries*.
-Entries are streamed to validators in realtime, before any notion of block
-consensus.
-
-Solana technically never sends a *block*, but uses the term to describe the
-sequence of entries that fullnodes vote on to achieve *confirmation*. In that
-way, Solana's confirmation times can be compared apples to apples to
-block-based systems. The current implementation sets block time to 800ms.
-
-What's happening under the hood is that entries are streamed to validators as
-quickly as a leader node can batch a set of valid transactions into an entry.
-Validators process those entries long before it is time to vote on their
-validity. By processing the transactions optimistically, there is effectively
-no delay between the time the last entry is received and the time when the node
-can vote. In the event consensus is **not** achieved, a node simply rolls back
-its state. This optimisic processing technique was introduced in 1981 and
-called [Optimistic Concurrency
-Control](http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.65.4735).  It
-can be applied to blockchain architecture where a cluster votes on a hash that
-represents the full ledger up to some *block height*. In Solana, it is
-implemented trivially using the last entry's PoH hash.
-
-### Relationship to VDFs
-
-The Proof of History technique was first described for use in blockchain by
-Solana in November of 2017. In June of the following year, a similar technique
-was described at Stanford and called a [verifiable delay
-function](https://eprint.iacr.org/2018/601.pdf) or *VDF*.
-
-A desirable property of a VDF is that verification time is very fast. Solana's
-approach to verifying its delay function is proportional to the time it took to
-create it. Split over a 4000 core GPU, it is sufficiently fast for Solana's
-needs, but if you asked the authors of the paper cited above, they might tell you
-([and have](https://github.com/solana-labs/solana/issues/388)) that Solana's
-approach is algorithmically slow and it shouldn't be called a VDF. We argue the
-term VDF should represent the category of verifiable delay functions and not
-just the subset with certain performance characteristics. Until that's
-resolved, Solana will likely continue using the term PoH for its
-application-specific VDF.
-
-Another difference between PoH and VDFs is that a VDF is used only for tracking
-duration. PoH's hash chain, on the other hand, includes hashes of any data the
-application observed.  That data is a double-edged sword. On one side, the data
-"proves history" - that the data most certainly existed before hashes after it.
-On the side, it means the application can manipulate the hash chain by changing
-*when* the data is hashed. The PoH chain therefore does not serve as a good
-source of randomness whereas a VDF without that data could. Solana's [leader
-rotation algorithm](#leader-rotation), for example, is derived only from the
-VDF *height* and not its hash at that height.
-
-### Relationship to Consensus Mechanisms
-
-Proof of History is not a consensus mechanism, but it is used to improve the
-performance of Solana's Proof of Stake consensus. It is also used to improve
-the performance of the data plane and replication protocols.
-
-### More on Proof of History
-
-* [water clock
-  analogy](https://medium.com/solana-labs/proof-of-history-explained-by-a-water-clock-e682183417b8)
-
-* [Proof of History
-  overview](https://medium.com/solana-labs/proof-of-history-a-clock-for-blockchain-cf47a61a9274)

book/src/terminology.md

@@ -1,325 +0,0 @@
-# Terminology
-
-The following terms are used throughout this book.
-
-#### account
-
-A persistent file addressed by [public key](#public-key) and with
-[lamports](#lamport) tracking its lifetime.
-
-#### app
-
-A front-end application that interacts with a Solana cluster.
-
-#### blob
-
-A fraction of a [block](#block); the smallest unit sent between
-[fullnodes](#fullnode).
-
-#### block
-
-A contiguous set of [entries](#entry) on the ledger covered by a
-[vote](#ledger-vote). A [leader](#leader) produces at most one block per
-[slot](#slot).
-
-#### block height
-
-The number of [blocks](#block) beneath the current block. The first block after
-the [genesis block](#genesis-block) has height zero.
-
-#### block id
-
-The [entry id](#entry-id) of the last entry in a [block](#block).
-
-#### bootstrap leader
-
-The first [fullnode](#fullnode) to take the [leader](#leader) role.
-
-#### CBC block
-
-Smallest encrypted chunk of ledger, an encrypted ledger segment would be made of
-many CBC blocks. `ledger_segment_size / cbc_block_size` to be exact.
-
-#### client
-
-A [node](#node) that utilizes the [cluster](#cluster).
-
-#### cluster
-
-A set of [fullnodes](#fullnode) maintaining a single [ledger](#ledger).
-
-#### confirmation
-
-The wallclock duration between a [leader](#leader) creating a [tick
-entry](#tick) and recognizing a supermajority of [ledger votes](#ledger-vote)
-with a ledger interpretation that matches the leader's.
-
-#### control plane
-
-A gossip network connecting all [nodes](#node) of a [cluster](#cluster).
-
-#### data plane
-
-A multicast network used to efficiently validate [entries](#entry) and gain
-consensus.
-
-#### drone
-
-An off-chain service that acts as a custodian for a user's private key. It
-typically serves to validate and sign transactions.
-
-#### fake storage proof
-
-A proof which has the same format as a storage proof, but the sha state is
-actually from hashing a known ledger value which the storage client can reveal
-and is also easily verifiable by the network on-chain.
-
-#### entry
-
-An entry on the [ledger](#ledger) either a [tick](#tick) or a [transactions
-entry](#transactions-entry).
-
-#### entry id
-
-A globally unique identifier that is also a proof that the [entry](#entry) was
-generated after a duration of time, all [transactions](#transaction) included
-in the entry, and all previous entries on the [ledger](#ledger). See [Proof of
-History](#proof-of-history).
-
-#### epoch
-
-The time, i.e. number of [slots](#slot), for which a [leader
-schedule](#leader-schedule) is valid.
-
-#### finality
-
-When nodes representing 2/3rd of the stake have a common [root](#root).
-
-#### fork
-
-A [ledger](#ledger) derived from common entries but then diverged.
-
-#### fullnode
-
-A full participant in the [cluster](#cluster) either a [leader](#leader) or
-[validator](#validator) node.
-
-#### fullnode state
-
-The result of interpreting all programs on the ledger at a given [tick
-height](#tick-height). It includes at least the set of all [accounts](#account)
-holding nonzero [native tokens](#native-tokens).
-
-#### genesis block
-
-The configuration file that prepares the [ledger](#ledger) for the first [block](#block).
-
-#### hash
-
-A digital fingerprint of a sequence of bytes.
-
-#### instruction
-
-The smallest unit of a [program](#program) that a [client](#client) can include
-in a [transaction](#instruction).
-
-#### keypair
-
-A [public key](#public-key) and corresponding [secret key](#secret-key).
-
-#### lamport
-
-A fractional [native token](#native-token) with the value of approximately
-0.0000000000582 [sol](#sol) (2^-34).
-
-#### loader
-
-A [program](#program) with the ability to interpret the binary encoding of
-other on-chain programs.
-
-#### leader
-
-The role of a [fullnode](#fullnode) when it is appending [entries](#entry) to
-the [ledger](#ledger).
-
-#### leader schedule
-
-A sequence of [fullnode](#fullnode) [public keys](#public-key). The cluster
-uses the leader schedule to determine which fullnode is the [leader](#leader)
-at any moment in time.
-
-#### ledger
-
-A list of [entries](#entry) containing [transactions](#transaction) signed by
-[clients](#client).
-
-#### ledger segment
-
-Portion of the ledger which is downloaded by the replicator where storage proof
-data is derived.
-
-#### ledger vote
-
-A [hash](#hash) of the [fullnode's state](#fullnode-state) at a given [tick
-height](#tick-height). It comprises a validator's affirmation that a
-[block](#block) it has received has been verified, as well as a promise not to
-vote for a conflicting [block](#block) (i.e. [fork](#fork)) for a specific
-amount of time, the [lockout](#lockout) period.
-
-#### light client
-
-A type of [client](#client) that can verify it's pointing to a valid
-[cluster](#cluster). It performs more ledger verification than a [thin
-client](#thin-client) and less than a [fullnode](#fullnode).
-
-#### lockout
-
-The duration of time for which a [fullnode](#fullnode) is unable to
-[vote](#ledger-vote) on another [fork](#fork).
-
-#### native token
-
-The [token](#token) used to track work done by [nodes](#node) in a cluster.
-
-#### node
-
-A computer participating in a [cluster](#cluster).
-
-#### node count
-
-The number of [fullnodes](#fullnode) participating in a [cluster](#cluster).
-
-#### PoH
-
-See [Proof of History](#proof-of-history).
-
-#### program
-
-The code that interprets [instructions](#instruction).
-
-#### program id
-
-The public key of the [account](#account) containing a [program](#program).
-
-#### Proof of History
-
-A stack of proofs, each which proves that some data existed before the proof
-was created and that a precise duration of time passed before the previous
-proof. Like a [VDF](#verifiable-delay-function), a Proof of History can be
-verified in less time than it took to produce.
-
-#### public key
-
-The public key of a [keypair](#keypair).
-
-#### replicator
-
-Storage mining client, stores some part of the ledger enumerated in blocks and
-submits storage proofs to the chain. Not a full-node.
-
-#### root
-
-A [block](#block) or [slot](#slot) that has reached maximum [lockout](#lockout)
-on a validator.  The root is the highest block that is an ancestor of all active
-forks on a validator.  All ancestor blocks of a root are also transitively a
-root.  Blocks that are not an ancestor and not a descendant of the root are
-excluded from consideration for consensus and can be discarded.
-
-
-#### runtime
-
-The component of a [fullnode](#fullnode) responsible for [program](#program)
-execution.
-
-#### secret key
-
-The private key of a [keypair](#keypair).
-
-#### slot
-
-The period of time for which a [leader](#leader) ingests transactions and
-produces a [block](#block).
-
-#### sol
-
-The [native token](#native-token) tracked by a [cluster](#cluster) recognized
-by the company Solana.
-
-#### stake
-
-Tokens forfeit to the [cluster](#cluster) if malicious [fullnode](#fullnode)
-behavior can be proven.
-
-#### storage proof
-
-A set of sha hash state which is constructed by sampling the encrypted version
-of the stored ledger segment at certain offsets.
-
-#### storage proof challenge
-
-A transaction from a replicator that verifiably proves that a validator
-confirmed a fake proof.
-
-#### storage proof claim
-
-A transaction from a validator which is after the timeout period given from the
-storage proof confirmation and which no successful challenges have been
-observed which rewards the parties of the storage proofs and confirmations.
-
-#### storage proof confirmation
-
-A transaction by a validator which indicates the set of real and fake proofs
-submitted by a storage miner. The transaction would contain a list of proof
-hash values and a bit which says if this hash is valid or fake.
-
-#### storage validation capacity
-
-The number of keys and samples that a validator can verify each storage epoch.
-
-#### thin client
-
-A type of [client](#client) that trusts it is communicating with a valid
-[cluster](#cluster).
-
-#### tick
-
-A ledger [entry](#entry) that estimates wallclock duration.
-
-#### tick height
-
-The Nth [tick](#tick) in the [ledger](#ledger).
-
-#### token
-
-A scarce, fungible member of a set of tokens.
-
-#### tps
-
-[Transactions](#transaction) per second.
-
-#### transaction
-
-One or more [instructions](#instruction) signed by the [client](#client) and
-executed atomically.
-
-#### transactions entry
-
-A set of [transactions](#transaction) that may be executed in parallel.
-
-#### validator
-
-The role of a [fullnode](#fullnode) when it is validating the
-[leader's](#leader) latest [entries](#entry).
-
-#### VDF
-
-See [verifiable delay function](#verifiable-delay-function).
-
-#### verifiable delay function
-
-A function that takes a fixed amount of time to execute that produces a proof
-that it ran, which can then be verified in less time than it took to produce.
-
-#### vote
-
-See [ledger vote](#ledger-vote).

book/src/testing-programs.md

@@ -1,68 +0,0 @@
-## Testing Programs
-
-Applications send transactions to a Solana cluster and query validators to
-confirm the transactions were processed and to check each transaction's result.
-When the cluster doesn't behave as anticipated, it could be for a number of
-reasons:
-
-* The program is buggy
-* The BPF loader rejected an unsafe program instruction
-* The transaction was too big
-* The transaction was invalid
-* The Runtime tried to execute the transaction when another one was accessing
-  the same account
-* The network dropped the transaction
-* The cluster rolled back the ledger
-* A validator responded to queries maliciously
-
-### The AsyncClient and SyncClient Traits
-
-To troubleshoot, the application should retarget a lower-level component, where
-fewer errors are possible. Retargeting can be done with different
-implementations of the AsyncClient and SyncClient traits.
-
-Components implement the following primary methods:
-
-```rust,ignore
-trait AsyncClient {
-    fn async_send_transaction(&self, transaction: Transaction) -> io::Result<Signature>;
-}
-
-trait SyncClient {
-    fn get_signature_status(&self, signature: &Signature) -> Result<Option<transaction::Result<()>>>;
-}
-```
-
-Users send transactions and asynchrounously and synchrounously await results.
-
-#### ThinClient for Clusters
-
-The highest level implementation, ThinClient, targets a Solana cluster, which
-may be a deployed testnet or a local cluster running on a development machine.
-
-#### TpuClient for the TPU
-
-The next level is the TPU implementation, which is not yet implemented. At the
-TPU level, the application sends transactions over Rust channels, where there
-can be no surprises from network queues or dropped packets. The TPU implements
-all "normal" transaction errors. It does signature verification, may report
-account-in-use errors, and otherwise results in the ledger, complete with proof
-of history hashes.
-
-### Low-level testing
-
-#### BankClient for the Bank
-
-Below the TPU level is the Bank. The Bank doesn't do signature verification or
-generate a ledger. The Bank is a convenient layer at which to test new on-chain
-programs. It allows developers to toggle between native program implementations
-and BPF-compiled variants. No need for the Transact trait here. The Bank's API
-is synchronous.
-
-### Unit-testing with the Runtime
-
-Below the Bank is the Runtime. The Runtime is the ideal test environment for
-unit-testing. By statically linking the Runtime into a native program
-implementation, the developer gains the shortest possible edit-compile-run
-loop. Without any dynamic linking, stack traces include debug symbols and
-program errors are straightforward to troubleshoot.

book/src/testnet-participation.md

@@ -1,284 +0,0 @@
-## Testnet Participation
-This document describes how to participate in the testnet as a
-validator node.
-
-Please note some of the information and instructions described here may change
-in future releases.
-
-### Overview
-The testnet features a validator running at testnet.solana.com, which
-serves as the entrypoint to the cluster for your validator.
-
-Additionally there is a blockexplorer available at
-[http://testnet.solana.com/](http://testnet.solana.com/).
-
-The testnet is configured to reset the ledger daily, or sooner
-should the hourly automated cluster sanity test fail.
-
-There is a **#validator-support** Discord channel available to reach other
-testnet participants, [https://discord.gg/pquxPsq](https://discord.gg/pquxPsq).
-
-Also we'd love it if you choose to register your validator node with us at
-[https://forms.gle/LfFscZqJELbuUP139](https://forms.gle/LfFscZqJELbuUP139).
-
-### Machine Requirements
-Since the testnet is not intended for stress testing of max transaction
-throughput, a higher-end machine with a GPU is not necessary to participate.
-
-However ensure the machine used is not behind a residential NAT to avoid NAT
-traversal issues.  A cloud-hosted machine works best.  **Ensure that IP ports
-8000 through 10000 are not blocked for Internet inbound and outbound traffic.**
-
-Prebuilt binaries are available for Linux x86_64 (Ubuntu 18.04 recommended).
-MacOS or WSL users may build from source.
-
-For a performance testnet with many transactions we have some preliminary recommended setups:
-
-| | Low end | Medium end | High end | Notes |
-| --- | ---------|------------|----------| -- |
-| CPU | AMD Threadripper 1900x | AMD Threadripper 2920x | AMD Threadripper 2950x | Consider a 10Gb-capable motherboard with as many PCIe lanes and m.2 slots as possible. |
-| RAM | 16GB | 32GB | 64GB | |
-| OS Drive | Samsung 860 Evo 2TB | Samsung 860 Evo 4TB | Samsung 860 Evo 4TB | Or equivalent SSD |
-| Accounts Drive(s) | None | Samsung 970 Pro 1TB | 2x Samsung 970 Pro 1TB | |
-| GPU | 4x Nvidia 1070 or 2x Nvidia 1080 Ti or 2x Nvidia 2070 | 2x Nvidia 2080 Ti | 4x Nvidia 2080 Ti | Any number of cuda-capable GPUs are supported on Linux platforms. |
-
-#### GPU Requirements
-CUDA is required to make use of the GPU on your system.  The provided Solana
-release binaries are built on Ubuntu 18.04 with <a
-href="https://developer.nvidia.com/cuda-toolkit-archive">CUDA Toolkit 10.1
-update 1"</a>.  If your machine is using a different CUDA version then you will
-need to rebuild from source.
-
-#### Confirm The Testnet Is Reachable
-Before attaching a validator node, sanity check that the cluster is accessible
-to your machine by running some simple commands.  If any of the commands fail,
-please retry 5-10 minutes later to confirm the testnet is not just restarting
-itself before debugging further.
-
-Fetch the current transaction count over JSON RPC:
-```bash
-$ curl -X POST -H 'Content-Type: application/json' -d '{"jsonrpc":"2.0","id":1, "method":"getTransactionCount"}' http://testnet.solana.com:8899
-```
-
-Inspect the blockexplorer at [http://testnet.solana.com/](http://testnet.solana.com/) for activity.
-
-View the [metrics dashboard](
-https://metrics.solana.com:3000/d/testnet-beta/testnet-monitor-beta?var-testnet=testnet)
-for more detail on cluster activity.
-
-### Validator Setup
-#### Obtaining The Software
-##### Bootstrap with `solana-install`
-
-The `solana-install` tool can be used to easily install and upgrade the cluster
-software on Linux x86_64 and mac OS systems.
-
-```bash
-$ curl -sSf https://raw.githubusercontent.com/solana-labs/solana/v0.16.5/install/solana-install-init.sh | sh -s
-```
-
-Alternatively build the `solana-install` program from source and run the
-following command to obtain the same result:
-```bash
-$ solana-install init
-```
-
-After a successful install, `solana-install update` may be used to easily update the cluster
-software to a newer version at any time.
-
-##### Download Prebuilt Binaries
-If you would rather not use `solana-install` to manage the install, you can manually download and install the binaries.
-
-###### Linux
-Download the binaries by navigating to
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest),
-download **solana-release-x86_64-unknown-linux-gnu.tar.bz2**, then extract the
-archive:
-```bash
-$ tar jxf solana-release-x86_64-unknown-linux-gnu.tar.bz2
-$ cd solana-release/
-$ export PATH=$PWD/bin:$PATH
-```
-###### mac OS
-Download the binaries by navigating to
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest),
-download **solana-release-x86_64-apple-darwin.tar.bz2**, then extract the
-archive:
-```bash
-$ tar jxf solana-release-x86_64-apple-darwin.tar.bz2
-$ cd solana-release/
-$ export PATH=$PWD/bin:$PATH
-```
-
-##### Build From Source
-If you are unable to use the prebuilt binaries or prefer to build it yourself
-from source, navigate to
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest),
-and download the **Source Code** archive.  Extract the code and build the
-binaries with:
-```bash
-$ ./scripts/cargo-install-all.sh .
-$ export PATH=$PWD/bin:$PATH
-```
-
-If building for CUDA (Linux only), fetch the perf-libs first then include the
-`cuda` feature flag when building:
-```bash
-$ ./fetch-perf-libs.sh
-$ source /home/mvines/ws/solana/target/perf-libs/env.sh
-$ ./scripts/cargo-install-all.sh . cuda
-$ export PATH=$PWD/bin:$PATH
-```
-
-### Starting The Validator
-Sanity check that you are able to interact with the cluster by receiving a small
-airdrop of lamports from the testnet drone:
-```bash
-$ solana-wallet airdrop 123
-$ solana-wallet balance
-```
-
-Also try running following command to join the gossip network and view all the other nodes in the cluster:
-```bash
-$ solana-gossip --entrypoint testnet.solana.com:8001 spy
-# Press ^C to exit
-```
-
-Now configure a key pair for your validator by running:
-```bash
-$ solana-keygen new -o ~/validator-keypair.json
-```
-
-Then use one of the following commands, depending on your installation
-choice, to start the node:
-
-If this is a `solana-install`-installation:
-```bash
-$ validator.sh --identity ~/validator-keypair.json --config-dir ~/validator-config --rpc-port 8899 --poll-for-new-genesis-block testnet.solana.com
-```
-
-Alternatively, the `solana-install run` command can be used to run the validator
-node while periodically checking for and applying software updates:
-```bash
-$ solana-install run validator.sh -- --identity ~/validator-keypair.json --config-dir ~/validator-config --rpc-port 8899 --poll-for-new-genesis-block testnet.solana.com
-```
-
-If you built from source:
-```bash
-$ NDEBUG=1 USE_INSTALL=1 ./multinode-demo/validator.sh --identity ~/validator-keypair.json --rpc-port 8899 --poll-for-new-genesis-block testnet.solana.com
-```
-
-#### Enabling CUDA
-By default CUDA is disabled.  If your machine has a GPU with CUDA installed,
-define the SOLANA_CUDA flag in your environment *before* running any of the
-previusly mentioned commands
-```bash
-$ export SOLANA_CUDA=1
-```
-
-When your validator is started look for the following log message to indicate that CUDA is enabled:
-`"[<timestamp> solana::validator] CUDA is enabled"`
-
-#### Controlling local network port allocation
-By default the validator will dynamically select available network ports in the
-8000-10000 range, and may be overridden with `--dynamic-port-range`.  For
-example, `validator.sh --dynamic-port-range 11000-11010 ...` will restrict the
-validator to ports 11000-11011.
-
-### Validator Monitoring
-When `validator.sh` starts, it will output a validator configuration that looks
-similar to:
-```bash
-======================[ validator configuration ]======================
-identity pubkey: 4ceWXsL3UJvn7NYZiRkw7NsryMpviaKBDYr8GK7J61Dm
-vote pubkey: 2ozWvfaXQd1X6uKh8jERoRGApDqSqcEy6fF1oN13LL2G
-ledger: ...
-accounts: ...
-======================================================================
-```
-
-The **identity pubkey** for your validator can also be found by running:
-```bash
-$ solana-keygen pubkey ~/validator-keypair.json
-```
-
-From another console, confirm the IP address and **identity pubkey** of your validator is visible in the
-gossip network by running:
-```bash
-$ solana-gossip --entrypoint testnet.solana.com:8001 spy
-```
-
-Provide the **vote pubkey** to the `solana-wallet show-vote-account` command to view
-the recent voting activity from your validator:
-```bash
-$ solana-wallet show-vote-account 2ozWvfaXQd1X6uKh8jERoRGApDqSqcEy6fF1oN13LL2G
-```
-
-The vote pubkey for the validator can also be found by running:
-```bash
-# If this is a `solana-install`-installation run:
-$ solana-keygen pubkey ~/.local/share/solana/install/active_release/config-local/validator-vote-keypair.json
-# Otherwise run:
-$ solana-keygen pubkey ./config-local/validator-vote-keypair.json
-```
-
-
-#### Validator Metrics
-Metrics are available for local monitoring of your validator.
-
-Docker must be installed and the current user added to the docker group.  Then
-download `solana-metrics.tar.bz2` from the Github Release and run
-```bash
-$ tar jxf solana-metrics.tar.bz2
-$ cd solana-metrics/
-$ ./start.sh
-```
-
-A local InfluxDB and Grafana instance is now running on your machine.  Define
-`SOLANA_METRICS_CONFIG` in your environment as described at the end of the
-`start.sh` output and restart your validator.
-
-Metrics should now be streaming and visible from your local Grafana dashboard.
-
-#### Timezone For Log Messages
-Log messages emitted by your validator include a timestamp.  When sharing logs
-with others to help triage issues, that timestamp can cause confusion as it does
-not contain timezone information.
-
-To make it easier to compare logs between different sources we request that
-everybody use Pacific Time on their validator nodes.  In Linux this can be
-accomplished by running:
-```bash
-$ sudo ln -sf /usr/share/zoneinfo/America/Los_Angeles /etc/localtime
-```
-
-#### Publishing Validator Info
-
-You can publish your validator information to the chain to be publicly visible
-to other users.
-
-Run the solana-validator-info CLI to populate a validator-info account:
-```bash
-$ solana-validator-info publish ~/validator-keypair.json <VALIDATOR_NAME> <VALIDATOR_INFO_ARGS>
-```
-Optional fields for VALIDATOR_INFO_ARGS:
-* Website
-* Keybase Username
-* Details
-
-##### Keybase
-
-Including a Keybase username allows client applications (like the Solana Network
-Explorer) to automatically pull in your validator public profile, including
-cryptographic proofs, brand identity, etc. To connect your validator pubkey with
-Keybase:
-
-1. Join https://keybase.io/ and complete the profile for your validator
-2. Add your validator **identity pubkey** to Keybase:
-  * Create an empty file on your local computer called `validator-<PUBKEY>`
-  * In Keybase, navigate to the Files section, and upload your pubkey file to
-  a `solana` subdirectory in your public folder: `/keybase/public/<KEYBASE_USERNAME>/solana`
-  * To check your pubkey, ensure you can successfully browse to
-  `https://keybase.pub/<KEYBASE_USERNAME>/solana/validator-<PUBKEY>`
-3. Add or update your `solana-validator-info` with your Keybase username. The
-CLI will verify the `validator-<PUBKEY>` file

book/src/testnet-replicator.md

@@ -1,154 +0,0 @@
-## Testnet Replicator
-This document describes how to setup a replicator in the testnet
-
-Please note some of the information and instructions described here may change
-in future releases.
-
-### Overview
-Replicators are specialized light clients. They download a part of the
-ledger (a.k.a Segment) and store it. They earn rewards for storing segments.
-
-The testnet features a validator running at testnet.solana.com, which
-serves as the entrypoint to the cluster for your replicator node.
-
-Additionally there is a blockexplorer available at
-[http://testnet.solana.com/](http://testnet.solana.com/).
-
-The testnet is configured to reset the ledger daily, or sooner
-should the hourly automated cluster sanity test fail.
-
-### Machine Requirements
-Replicators don't need specialized hardware. Anything with more than
-128GB of disk space will be able to participate in the cluster as a replicator node.
-
-Currently the disk space requirements are very low but we expect them to change
-in the future.
-
-Prebuilt binaries are available for Linux x86_64 (Ubuntu 18.04 recommended),
-macOS, and Windows.
-
-#### Confirm The Testnet Is Reachable
-Before starting a replicator node, sanity check that the cluster is accessible
-to your machine by running some simple commands.  If any of the commands fail,
-please retry 5-10 minutes later to confirm the testnet is not just restarting
-itself before debugging further.
-
-Fetch the current transaction count over JSON RPC:
-```bash
-$ curl -X POST -H 'Content-Type: application/json' -d '{"jsonrpc":"2.0","id":1, "method":"getTransactionCount"}' http://testnet.solana.com:8899
-```
-
-Inspect the blockexplorer at [http://testnet.solana.com/](http://testnet.solana.com/) for activity.
-
-View the [metrics dashboard](
-https://metrics.solana.com:3000/d/testnet-beta/testnet-monitor-beta?var-testnet=testnet)
-for more detail on cluster activity.
-
-### Replicator Setup
-##### Obtaining The Software
-##### Bootstrap with `solana-install`
-
-The `solana-install` tool can be used to easily install and upgrade the cluster
-software.
-
-##### Linux and mac OS
-```bash
-$ export SOLANA_RELEASE=v0.16.0  # skip this line to install the latest release
-$ curl -sSf https://raw.githubusercontent.com/solana-labs/solana/v0.16.0/install/solana-install-init.sh | sh -s
-```
-
-Alternatively build the `solana-install` program from source and run the
-following command to obtain the same result:
-```bash
-$ solana-install init
-```
-
-##### Windows
-Download and install **solana-install-init** from
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest)
-
-After a successful install, `solana-install update` may be used to
-easily update the software to a newer version at any time.
-
-##### Download Prebuilt Binaries
-If you would rather not use `solana-install` to manage the install, you can manually download and install the binaries.
-
-##### Linux
-Download the binaries by navigating to
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest),
-download **solana-release-x86_64-unknown-linux-gnu.tar.bz2**, then extract the
-archive:
-```bash
-$ tar jxf solana-release-x86_64-unknown-linux-gnu.tar.bz2
-$ cd solana-release/
-$ export PATH=$PWD/bin:$PATH
-```
-##### mac OS
-Download the binaries by navigating to
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest),
-download **solana-release-x86_64-apple-darwin.tar.bz2**, then extract the
-archive:
-```bash
-$ tar jxf solana-release-x86_64-apple-darwin.tar.bz2
-$ cd solana-release/
-$ export PATH=$PWD/bin:$PATH
-```
-##### Windows
-Download the binaries by navigating to
-[https://github.com/solana-labs/solana/releases/latest](https://github.com/solana-labs/solana/releases/latest),
-download **solana-release-x86_64-pc-windows-msvc.tar.bz2**, then extract it into a folder.
-It is a good idea to add this extracted folder to your windows PATH.
-
-### Starting The Replicator
-Try running following command to join the gossip network and view all the other nodes in the cluster:
-```bash
-$ solana-gossip --entrypoint testnet.solana.com:8001 spy
-# Press ^C to exit
-```
-
-Now configure the keypairs for your replicator by running:
-
-Navigate to the solana install location and open a cmd prompt
-```bash
-$ solana-keygen new -o replicator-keypair.json
-$ solana-keygen new -o storage-keypair.json
-```
-
-Use solana-keygen to show the public keys for each of the keypairs,
-they will be needed in the next step:
-- Windows
-```bash
-# The replicator's identity
-$ solana-keygen pubkey replicator-keypair.json
-$ solana-keygen pubkey storage-keypair.json
-```
-- Linux and mac OS
-```bash
-$ export REPLICATOR_IDENTITY=$(solana-keygen pubkey replicator-keypair.json)
-$ export STORAGE_IDENTITY=$(solana-keygen pubkey storage-keypair.json)
-
-```
-Then set up the storage accounts for your replicator by running:
-```bash
-$ solana-wallet --keypair replicator-keypair.json airdrop 100000
-$ solana-wallet --keypair replicator-keypair.json create-replicator-storage-account $REPLICATOR_IDENTITY $STORAGE_IDENTITY
-```
-Note: Every time the testnet restarts, run the wallet steps to setup the replicator accounts again.
-
-To start the replicator:
-```bash
-$ solana-replicator --entrypoint testnet.solana.com:8001 --identity replicator-keypair.json --storage-keypair storage-keypair.json --ledger replicator-ledger
-```
-
-### Verify Replicator Setup
-From another console, confirm the IP address and **identity pubkey** of your replicator is visible in the
-gossip network by running:
-```bash
-$ solana-gossip --entrypoint testnet.solana.com:8001 spy
-```
-
-Provide the **storage account pubkey** to the `solana-wallet show-storage-account` command to view
-the recent mining activity from your replicator:
-```bash
-$ solana-wallet --keypair storage-keypair.json show-storage-account $STORAGE_IDENTITY
-```

book/src/tictactoe.md

@@ -1,35 +0,0 @@
-# Example app: Tic-Tac-Toe
-
-[Click here to play
-Tic-Tac-Toe](https://solana-example-tictactoe.herokuapp.com/) on the Solana
-testnet. Open the link and wait for another player to join, or open the link
-in a second browser tab to play against yourself. You will see that every
-move a player makes stores a transaction on the ledger.
-
-
-## Build and run Tic-Tac-Toe locally
-
-First fetch the latest release of the example code:
-
-```sh
-$ git clone https://github.com/solana-labs/example-tictactoe.git
-$ cd example-tictactoe
-$ TAG=$(git describe --tags $(git rev-list --tags
---max-count=1))
-$ git checkout $TAG
-```
-
-Next, follow the steps in the git repository's
-[README](https://github.com/solana-labs/example-tictactoe/blob/master/README.md).
-
-
-## Getting lamports to users
-
-You may have noticed you interacted with the Solana cluster without first
-needing to acquire lamports to pay transaction fees. Under the hood, the web
-app creates a new ephemeral identity and sends a request to an off-chain
-service for a signed transaction authorizing a user to start a new game.
-The service is called a *drone*. When the app sends the signed transaction
-to the Solana cluster, the drone's lamports are spent to pay the transaction
-fee and start the game. In a real world app, the drone might request the user
-watch an ad or pass a CAPTCHA before signing over its lamports.

book/src/tower-bft.md

@@ -1,233 +0,0 @@
-# Tower BFT
-
-This design describes Solana's *Tower BFT* algorithm. It addresses the
-following problems:
-
-* Some forks may not end up accepted by the super-majority of the cluster, and
-voters need to recover from voting on such forks.
-
-* Many forks may be votable by different voters, and each voter may see a
-different set of votable forks.  The selected forks should eventually converge
-for the cluster.
-
-* Reward based votes have an associated risk.  Voters should have the ability to
-configure how much risk they take on.
-
-* The [cost of rollback](#cost-of-rollback) needs to be computable.  It is
-important to clients that rely on some measurable form of Consistency.  The
-costs to break consistency need to be computable, and increase super-linearly
-for older votes.
-
-* ASIC speeds are different between nodes, and attackers could employ Proof of
-History ASICS that are much faster than the rest of the cluster.  Consensus
-needs to be resistant to attacks that exploit the variability in Proof of
-History ASIC speed.
-
-For brevity this design assumes that a single voter with a stake is deployed as
-an individual validator in the cluster.
-
-## Time
-
-The Solana cluster generates a source of time via a Verifiable Delay Function we
-are calling [Proof of History](book/src/synchronization.md).
-
-Proof of History is used to create a deterministic round robin schedule for all
-the active leaders.  At any given time only 1 leader, which can be computed from
-the ledger itself, can propose a fork.  For more details, see [fork
-generation](fork-generation.md) and [leader rotation](leader-rotation.md).
-
-## Lockouts
-
-The purpose of the lockout is to force a validator to commit opportunity cost to
-a specific fork.  Lockouts are measured in slots, and therefor represent a
-real-time forced delay that a validator needs to wait before breaking the
-commitment to a fork.
-
-Validators that violate the lockouts and vote for a diverging fork within the
-lockout should be punished. The proposed punishment is to slash the validator
-stake if a concurrent vote within a lockout for a non-descendant fork can be
-proven to the cluster.
-
-## Algorithm
-
-The basic idea to this approach is to stack consensus votes and double lockouts.
-Each vote in the stack is a confirmation of a fork.  Each confirmed fork is an
-ancestor of the fork above it.  Each vote has a `lockout` in units of slots
-before the validator can submit a vote that does not contain the confirmed fork
-as an ancestor.
-
-When a vote is added to the stack, the lockouts of all the previous votes in the
-stack are doubled (more on this in [Rollback](#Rollback)).  With each new vote,
-a validator commits the previous votes to an ever-increasing lockout.  At 32
-votes we can consider the vote to be at `max lockout` any votes with a lockout
-equal to or above `1<<32` are dequeued (FIFO).  Dequeuing a vote is the trigger
-for a reward.  If a vote expires before it is dequeued, it and all the votes
-above it are popped (LIFO) from the vote stack.  The validator needs to start
-rebuilding the stack from that point.
-
-### Rollback
-
-Before a vote is pushed to the stack, all the votes leading up to vote with a
-lower lock time than the new vote are popped.  After rollback lockouts are not
-doubled until the validator catches up to the rollback height of votes.
-
-For example, a vote stack with the following state:
-
-| vote | vote time | lockout | lock expiration time |
-|-----:|----------:|--------:|---------------------:|
-|    4 |         4 |      2  |                    6 |
-|    3 |         3 |      4  |                    7 |
-|    2 |         2 |      8  |                   10 |
-|    1 |         1 |      16 |                   17 |
-
-*Vote 5* is at time 9, and the resulting state is
-
-| vote | vote time | lockout | lock expiration time |
-|-----:|----------:|--------:|---------------------:|
-|    5 |         9 |      2  |                   11 |
-|    2 |         2 |      8  |                   10 |
-|    1 |         1 |      16 |                   17 |
-
-*Vote 6* is at time 10
-
-| vote | vote time | lockout | lock expiration time |
-|-----:|----------:|--------:|---------------------:|
-|    6 |        10 |       2 |                   12 |
-|    5 |         9 |       4 |                   13 |
-|    2 |         2 |       8 |                   10 |
-|    1 |         1 |      16 |                   17 |
-
-At time 10 the new votes caught up to the previous votes.  But *vote 2* expires
-at 10, so the when *vote 7* at time 11 is applied the votes including and above
-*vote 2* will be popped.
-
-| vote | vote time | lockout | lock expiration time |
-|-----:|----------:|--------:|---------------------:|
-|    7 |        11 |       2 |                   13 |
-|    1 |         1 |      16 |                   17 |
-
-The lockout for vote 1 will not increase from 16 until the stack contains 5
-votes.
-
-### Slashing and Rewards
-
-Validators should be rewarded for selecting the fork that the rest of the
-cluster selected as often as possible.  This is well-aligned with generating a
-reward when the vote stack is full and the oldest vote needs to be dequeued.
-Thus a reward should be generated for each successful dequeue.
-
-### Cost of Rollback
-
-Cost of rollback of *fork A* is defined as the cost in terms of lockout time to
-the validator to confirm any other fork that does not include *fork A* as an
-ancestor.
-
-The **Economic Finality** of *fork A* can be calculated as the loss of all the
-rewards from rollback of *fork A* and its descendants, plus the opportunity cost
-of reward due to the exponentially growing lockout of the votes that have
-confirmed *fork A*.
-
-### Thresholds
-
-Each validator can independently set a threshold of cluster commitment to a fork
-before that validator commits to a fork.  For example, at vote stack index 7,
-the lockout is 256 time units.  A validator may withhold votes and let votes 0-7
-expire unless the vote at index 7 has at greater than 50% commitment in the
-cluster.  This allows each validator to independently control how much risk to
-commit to a fork.  Committing to forks at a higher frequency would allow the
-validator to earn more rewards.
-
-### Algorithm parameters
-
-The following parameters need to be tuned:
-
-* Number of votes in the stack before dequeue occurs (32).
-
-* Rate of growth for lockouts in the stack (2x).
-
-* Starting default lockout (2).
-
-* Threshold depth for minimum cluster commitment before committing to the fork
-(8).
-
-* Minimum cluster commitment size at threshold depth (50%+).
-
-### Free Choice
-
-A "Free Choice" is an unenforcible validator action.  There is no way for the
-protocol to encode and enforce these actions since each validator can modify the
-code and adjust the algorithm.  A validator that maximizes self-reward over all
-possible futures should behave in such a way that the system is stable, and the
-local greedy choice should result in a greedy choice over all possible futures.
-A set of validator that are engaging in choices to disrupt the protocol should
-be bound by their stake weight to the denial of service.  Two options exits for
-validator:
-
-* a validator can outrun previous validator in virtual generation and submit a
-  concurrent fork
-
-* a validator can withhold a vote to observe multiple forks before voting
-
-In both cases, the validator in the cluster have several forks to pick from
-concurrently, even though each fork represents a different height.  In both
-cases it is impossible for the protocol to detect if the validator behavior is
-intentional or not.
-
-### Greedy Choice for Concurrent Forks
-
-When evaluating multiple forks, each validator should use the following rules:
-
-1. Forks must satisfy the *Threshold* rule.
-
-2. Pick the fork that maximizes the total cluster lockout time for all the
-ancestor forks.
-
-3. Pick the fork that has the greatest amount of cluster transaction fees.
-
-4. Pick the latest fork in terms of PoH.
-
-Cluster transaction fees are fees that are deposited to the mining pool as
-described in the [Staking Rewards](book/src/staking-rewards.md) section.
-
-## PoH ASIC Resistance
-
-Votes and lockouts grow exponentially while ASIC speed up is linear.  There are
-two possible attack vectors involving a faster ASIC.
-
-### ASIC censorship
-
-An attacker generates a concurrent fork that outruns previous leaders in an
-effort to censor them. A fork proposed by this attacker will be available
-concurrently with the next available leader.  For nodes to pick this fork it
-must satisfy the *Greedy Choice* rule.
-
-1. Fork must have equal number of votes for the ancestor fork.
-
-2. Fork cannot be so far a head as to cause expired votes.
-
-3. Fork must have a greater amount of cluster transaction fees.
-
-This attack is then limited to censoring the previous leaders fees, and
-individual transactions.  But it cannot halt the cluster, or reduce the
-validator set compared to the concurrent fork.  Fee censorship is limited to
-access fees going to the leaders but not the validators.
-
-### ASIC Rollback
-
-An attacker generates a concurrent fork from an older block to try to rollback
-the cluster.  In this attack the concurrent fork is competing with forks that
-have already been voted on.  This attack is limited by the exponential growth of
-the lockouts.
-
-* 1 vote has a lockout of 2 slots.  Concurrent fork must be at least 2 slots
-ahead, and be produced in 1 slot. Therefore requires an ASIC 2x faster.
-
-* 2 votes have a lockout of 4 slots.  Concurrent fork must be at least 4 slots
-ahead and produced in 2 slots. Therefore requires an ASIC 2x faster.
-
-* 3 votes have a lockout of 8 slots.  Concurrent fork must be at least 8 slots
-ahead and produced in 3 slots. Therefore requires an ASIC 2.6x faster.
-
-* 10 votes have a lockout of 1024 slots.  1024/10, or 102.4x faster ASIC.
-
-* 20 votes have a lockout of 2^20 slots.  2^20/20, or 52,428.8x faster ASIC.

book/src/tpu.md

@@ -1,3 +0,0 @@
-# The Transaction Processing Unit
-
-<img alt="TPU Block Diagram" src="img/tpu.svg" class="center"/>

book/src/transaction-api.md

@@ -1,48 +0,0 @@
-# The Transaction
-
-### Components of a `Transaction`
-
-* **Transaction:**
-  * **message:** Defines the transaction
-    * **header:** Details the account types of and signatures required by
-      the transaction
-      *  **num_required_signatures:** The total number of signatures
-         required to make the transaction valid.
-      *  **num_credit_only_signed_accounts:** The last
-         `num_credit_only_signed_accounts` signatures refer to signing
-         credit only accounts. Credit only accounts can be used concurrently
-         by multiple parallel transactions, but their balance may only be
-         increased, and their account data is read-only.
-      *  **num_credit_only_unsigned_accounts:** The last
-         `num_credit_only_unsigned_accounts` pubkeys in `account_keys` refer
-         to non-signing credit only accounts
-    * **account_keys:** List of pubkeys used by the transaction, including
-      by the instructions and for signatures. The first
-      `num_required_signatures` pubkeys must sign the transaction.
-    * **recent_blockhash:** The ID of a recent ledger entry. Validators will
-      reject transactions with a `recent_blockhash` that is too old.
-    * **instructions:** A list of [instructions](instruction.md) that are
-      run sequentially and committed in one atomic transaction if all
-      succeed.
-  * **signatures:** A list of signatures applied to the transaction. The
-    list is always of length `num_required_signatures`, and the signature
-    at index `i` corresponds to the pubkey at index `i` in `account_keys`.
-    The list is initialized with empty signatures (i.e. zeros), and
-    populated as signatures are added.
-  
-### Transaction Signing
-
-A `Transaction` is signed by using an ed25519 keypair to sign the
-serialization of the `message`. The resulting signature is placed at the
-index of `signatures` matching the index of the keypair's pubkey in
-`account_keys`.
-
-### Transaction Serialization
-
-`Transaction`s (and their `message`s) are serialized and deserialized
-using the [bincode](https://crates.io/crates/bincode) crate with a
-non-standard vector serialization that uses only one byte for the length
-if it can be encoded in 7 bits, 2 bytes if it fits in 14 bits, or 3
-bytes if it requires 15 or 16 bits. The vector serialization is defined
-by Solana's
-[short-vec](https://github.com/solana-labs/solana/blob/master/sdk/src/short_vec.rs).

book/src/transaction-fees.md

@@ -1,59 +0,0 @@
-# Deterministic Transaction Fees
-
-Transactions currently include a fee field that indicates the maximum fee field
-a slot leader is permitted to charge to process a transaction. The cluster, on
-the other hand, agrees on a minimum fee. If the network is congested, the slot
-leader may prioritize the transactions offering higher fees. That means the
-client won't know how much was collected until the transaction is confirmed by
-the cluster and the remaining balance is checked. It smells of exactly what we
-dislike about Ethereum's "gas", non-determinism.
-
-### Congestion-driven fees
-
-Each validator uses *signatures per slot* (SPS) to estimate network congestion
-and *SPS target* to estimate the desired processing capacity of the cluster.
-The validator learns the SPS target from the genesis block, whereas it
-calculates SPS from recently processed transactions.  The genesis block also
-defines a target `lamports_per_signature`, which is the fee to charge per
-signature when the cluster is operating at *SPS target*.
-
-### Calculating fees
-
-The client uses the JSON RPC API to query the cluster for the current fee
-parameters.  Those parameters are tagged with a blockhash and remain valid
-until that blockhash is old enough to be rejected by the slot leader.
-
-Before sending a transaction to the cluster, a client may submit the
-transaction and fee account data to an SDK module called the *fee calculator*.
-So long as the client's SDK version matches the slot leader's version, the
-client is assured that its account will be changed exactly the same number of
-lamports as returned by the fee calculator.
-
-### Fee Parameters
-
-In the first implementation of this design, the only fee parameter is
-`lamports_per_signature`. The more signatures the cluster needs to verify, the
-higher the fee. The exact number of lamports is determined by the ratio of SPS
-to the SPS target. At the end of each slot, the cluster lowers
-`lamports_per_signature` when SPS is below the target and raises it when above
-the target.  The minimum value for `lamports_per_signature` is 50% of the target
-`lamports_per_signature` and the maximum value is 10x the target
-`lamports_per_signature'
-
-Future parameters might include:
-
-* `lamports_per_pubkey` - cost to load an account
-* `lamports_per_slot_distance` - higher cost to load very old accounts
-* `lamports_per_byte` - cost per size of account loaded
-* `lamports_per_bpf_instruction` - cost to run a program
-
-### Attacks
-
-#### Hijacking the SPS Target
-
-A group of validators can centralize the cluster if they can convince it to
-raise the SPS Target above a point where the rest of the validators can keep
-up. Raising the target will cause fees to drop, presumably creating more demand
-and therefore higher TPS. If the validator doesn't have hardware that can
-process that many transactions that fast, its confirmation votes will
-eventually get so long that the cluster will be forced to boot it.