Archives
/
lokinet
mirror of https://github.com/oxen-io/lokinet
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
ubuntu/noble
ubuntu/mantic
quic-wip
dev
dev-next
opensuse/tumbleweed
ubuntu/lunar
ubuntu/kinetic
ubuntu/jammy
ubuntu/focal
ubuntu/bionic
debian/buster
debian/bullseye
debian/bookworm
debian/sid
fedora/36
fedora/37
stable
makepkg
fedora/35
ubuntu/impish
fedora/34
centos/8
ubuntu/hirsute
ubuntu/groovy
v0.9.11
v0.9.10
v0.9.9
v0.9.8
v0.9.7
v0.9.6
v0.9.5
v0.9.4
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.5
v0.8.4
v0.8.3
v0.8.2
v0.8.1
v0.8.1-rc3
v0.8.1-rc2
v0.8.1-rc1
v0.7.1
v0.7.0
v0.7.0-rc3
v0.7.0-rc2
v0.7.0-rc1
v0.6.4
v0.6.2
v0.6.1
v0.6.0
v0.6.0-rc2
v0.6.0-rc1
v0.5.2
v0.5.0
v0.4.2½
v0.4.2
v0.4.1
v0.4.0-release
0.4.0-release
v0.4.0
v0.4.0-rc3
v0.4.0-rc2
v0.3.1
0.3.0-neuro1
v0.2.3-rc1
v0.2.2
v0.2.1
v0.1.0
v0.0.3
0.2.3-neuro0
0.6.1
rm
v0.0.1
v0.0.2
v0.3.0
v0.4.3
v0.5.1
v0.6.3
v0.7
v0.8.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'quic-wip'
${ noResults }
lokinet/docs/architecture.md

2.1 KiB
Raw Permalink Blame History

High-Level Architecture

Path Building

Starting from the top, here's a high-level overview of how the lokinet client builds a path to a terminating node

  1. Client semi-randomly selects SN's for hops 2 and 3 using Introset Hash Ring (IHR)

    • First hop is sticky: upon initialization of lokinet, 4-5 first hops are selected

  2. Message sent to hop 1

    • Message consists of eight records in a linked list. Four hops are typically used, leaving the last 4 links as dummy records
    • Each record contains a TX (upstream) path ID and RX (downstream) path ID
    • Each record has a pointer to the next record, except for the final hops' record; the pointer here is recursive, signalling the end of the path-build

  3. Hop 2 pops top record, appends metadata, and pushes record to the back of linked list

    • Hop adds metadata to the record, such as optional lifetime, pubkey to derive shared secret, etc

  4. Steps 2-3 are repeated for the remaining hops until destination is reached

    • Final hop reads the recursive pointer signalling the end of the path-build process

  5. Upon completion, plain-text reply is propagated backwards, where the client can then decrypt all records

  6. Client measures latency

    • A) Routing message is sequentially encrypted using hop 4's key through hop 1's key
      • At each iteration, the nonce is permuted by XOR'ing the previous nonce with the hash of the secret key of each hop
    • B) Routing message is sent s.t. each hop can decrypt, with final hop receiving plain-text
      • Each hop appends latency and expiration time data, with the final hop interpreting the plain-text as a routing message and sending it back to the client

  7. Introset is published to IHR upon successful completion; introset contains:

    • Path ID's of routers
    • Latency and expiration time for each hop
    • DNS SRV records
    • etc

Failure Cases

  1. Next hop is an invalid SN
  2. Cannot connect to SN

In either case, the path-build status is sent backwards with an error flag. Once received by the client, metadata related to the prospective path is wiped and the path forgotten