Merge pull request #1258 from ipfs/improve-ipns-docs

2color · web-flow · commit 291645660070 · 2022-09-16T19:53:36.000+02:00
Improve IPNS docs
diff --git a/docs/.vuepress/config.js b/docs/.vuepress/config.js
@@ -237,6 +237,14 @@ module.exports = {
                   '/how-to/browser-tools-frameworks'
                 ]
               },
+              {
+                title: 'IPNS and mutability',
+                sidebarDepth: 1,
+                collapsable: false,
+                children: [
+                  '/how-to/publish-ipns'
+                ]
+              },
               {
                 title: 'IPFS Companion',
                 sidebarDepth: 1,
diff --git a/docs/concepts/ipns.md b/docs/concepts/ipns.md
@@ -1,134 +1,181 @@
 ---
 title: IPNS
-description: Learn about the InterPlanetary Name System (IPNS) and how it can be used in conjunction with IPFS.
+description: Learn about the mutability in IPFS, InterPlanetary Name System (IPNS), and how it can be used in conjunction with IPFS.
 ---
 
 # InterPlanetary Name System (IPNS)
 
-IPFS uses [content-based addressing](content-addressing.md); it creates an address of a file based on data contained within the file. If you were to share an IPFS address such as `/ipfs/QmbezGequPwcsWo8UL4wDF6a8hYwM1hmbzYv2mnKkEWaUp` with someone, you would need to give the person a new link every time you update the content.
+- [Mutability in IPFS](#mutability-in-ipfs)
+- [How IPNS works](#how-ipns-works)
+  - [Anatomy of an IPNS name](#anatomy-of-an-ipns-name)
+    - [How IPNS names relate to content paths](#how-ipns-names-relate-to-content-paths)
+  - [IPNS names are self-certifying](#ipns-names-are-self-certifying)
+  - [Common IPNS operations](#common-ipns-operations)
+  - [IPNS is transport agnostic](#ipns-is-transport-agnostic)
+    - [IPNS over the DHT](#ipns-over-the-dht)
+    - [IPNS over PubSub](#ipns-over-pubsub)
+  - [Tradeoffs between consistency vs. availability](#tradeoffs-between-consistency-vs-availability)
+    - [IPNS record validity](#ipns-record-validity)
+    - [Practical considerations](#practical-considerations)
+- [IPNS in practice](#ipns-in-practice)
+  - [Resolving IPNS names using IPFS gateways](#resolving-ipns-names-using-ipfs-gateways)
+  - [Publishing IPNS names](#publishing-ipns-names)
+- [Alternatives to IPNS](#alternatives-to-ipns)
+- [Further Resources](#further-resources)
 
-The InterPlanetary Name System (IPNS) solves this issue by creating an address that can be updated.
+## Mutability in IPFS
 
-A _name_ in IPNS is the [hash](hashing.md) of a public key. It is associated with a record containing information about the hash it links to that is signed by the corresponding private key. New records can be signed and published at any time.
+[Content addressing](content-addressing.md) in IPFS is by nature _immutable_: when you add a file to IPFS, it creates a hash from the data, with which the CID is constructed. Changing a file changes its hash, and consequently its CID which is used as an address.
 
-When looking up an IPNS address, use the `/ipns/` prefix:
+Yet, there are many situations where content-addressed data needs to be regularly updated, for example, when publishing a website that frequently changes. It would be impractical to share a new CID every time you update the website. With **mutable pointers**, you can share the address of the pointer once, and update the pointer – to the new CID – every time you publish a change.
+
+The InterPlanetary Name System (IPNS) is a system for creating such mutable pointers to CIDs known as **names** or **IPNS names**. IPNS names can be thought of as links that can be updated over time, while retaining the verifiability of content addressing.
+
+> **Note:** Technically, an IPNS name can point to an arbitrary content path (`/ipfs/` or `/ipns/`), including another IPNS name or DNSLink path. However, it most commonly points to a fully resolved and immutable path, i.e. `/ipfs/[CID]`.
+
+## How IPNS works
+
+### Anatomy of an IPNS name
+
+A **name** in IPNS is the [hash](hashing.md) of a public key. It is associated with an [**IPNS record**](https://github.com/ipfs/specs/blob/main/IPNS.md#ipns-record) containing the content path (`/ipfs/CID`) it links to and other information such as the expiration, the version number, and a cryptographic signature signed by the corresponding private key. New records can be signed and published at any time by the holder of the private key.
+
+For example, the following is an IPNS name represented by a CIDv1 of public key: [`k51qzi5uqu5dlvj2baxnqndepeb86cbk3ng7n3i46uzyxzyqj2xjonzllnv0v8`](https://cid.ipfs.tech/#k51qzi5uqu5dlvj2baxnqndepeb86cbk3ng7n3i46uzyxzyqj2xjonzllnv0v8).
+
+> **Note:** Kubo uses the `self` key (ed25519 private key used for the PeerID) as the default IPNS name. But you can generate multiple keys via [`ipfs key gen`](https://docs.ipfs.tech/reference/kubo/cli/#ipfs-key-gen), and use them for managing multiple IPNS names.
+
+#### How IPNS names relate to content paths
+
+IPNS record can point at an immutable or a mutable path. The meaning behind CID used in a path depends on used namespace:
+
+- `/ipfs/<cid>` – an [immutable content on IPFS](https://cid.ipfs.tech/#bafybeibml5uieyxa5tufngvg7fgwbkwvlsuntwbxgtskoqynbt7wlchmfm) (since the CID contains a multihash)
+- `/ipns/<cid-of-libp2p-key>` – a mutable, cryptographic [IPNS name](https://cid.ipfs.tech/#k51qzi5uqu5dlvj2baxnqndepeb86cbk3ng7n3i46uzyxzyqj2xjonzllnv0v8) which corresponds to a libp2p public key.
+
+The following is a useful mental model for understanding the difference between the two:
 
-```shell
-/ipns/QmSrPmbaUKA3ZodhzPWZnpFgcPMFWF4QsxXbkWfEptTBJd
+```
+IPFS = immutable *Pointer => content
+IPNS = **Pointer => content
 ```
 
-## Example IPNS Setup with CLI
+IPNS names are essentially pointers (IPNS names) to pointers (IPFS CIDs) whereas IPFS CIDs are immutable (because they're derived from the content) pointers to content.
 
-1. Start your IPFS daemon, if it isn't already running:
+### IPNS names are self-certifying
 
-   ```shell
-   ipfs daemon
-   ```
+IPNS names are self-certifying. This means that an IPNS record contains all the information necessary to certify its authenticity. IPNS achieves this using public and private key pairs:
 
-1. Open another command line window and create the file that you want to set up with IPNS. For the tutorial, we're just going to create a simple _hello world_ file:
+- Each IPNS name corresponds to a key pair
+- The IPNS name is a CID with a multihash of the public key
+- The IPNS record contains the public key and signature, allowing anyone to verify that the record was signed by the private key holder.
 
-   ```shell
-   echo "Hello IPFS" > hello.txt
-   ```
+This self-certifying nature gives IPNS several benefits not preset in hierarchical and consensus systems such as DNS, and blockchain identifiers. Notably, IPNS records can come from anywhere, not just a particular service/system, and it is very fast and easy to confirm a record is authentic.
 
-1. Add your file to IPFS:
+### Common IPNS operations
 
-   ```shell
-   ipfs add hello.txt
+As a user or developer using IPNS for naming, there are three common operations worth understanding:
 
-   > added QmUVTKsrYJpaxUT7dr9FpKq6AoKHhEM7eG1ZHGL56haKLG hello.txt
-   > 11 B / 11 B [=====================================================] 100.00%
-   ```
+- **Updating/Creating an IPNS record:** refers to the creation of an IPNS record and signing it with a private key.
+- **Publishing an IPNS record:** advertising the IPNS record so that other nodes can resolve it. Details depend on the transport.
+- **Resolving an IPNS name:** Resolving an IPNS name to a content path.
 
-   Take note of the CID output by IPFS.
+### IPNS is transport agnostic
 
-1. Use `cat` and the CID you just got from IPFS to view the file again:
+The self-certifying nature of IPNS records means that they are not tied to a specific transport protocol. In practice, most IPFS implementations rely on the [**DHT**](dht.md) and [**libp2p PubSub**](https://docs.libp2p.io/concepts/publish-subscribe/) to publish and resolve IPNS records.
 
-   ```shell
-   ipfs cat QmUVTKsrYJpaxUT7dr9FpKq6AoKHhEM7eG1ZHGL56haKLG
+There are nuanced differences and trade-offs between the **DHT** and **PubSub** to be aware of.
 
-   > Hello IPFS
-   ```
+The main qualitative difference between the two is that IPNS over the DHT publishes and resolves to a global shared state, whereas IPNS over PubSub uses messaging over topics (where each IPNS name has a unique topic) to publish to and resolve from **interested peers**.
 
-1. Publish your CID to IPNS:
+The main implication of this difference is that IPNS operations (publishing and resolving) over the DHT can take longer than over PubSub, while potentially ensuring higher consistency (you resolve to the latest version).
 
-   ```shell
-   ipfs name publish /ipfs/QmUVTKsrYJpaxUT7dr9FpKq6AoKHhEM7eG1ZHGL56haKLG
+> **Note:** This trade-off is best explained by [CAP theorem](https://en.wikipedia.org/wiki/CAP_theorem).
 
-   > Published to k51qzi5uqu5dkkciu33khkzbcmxtyhn376i1e83tya8kuy7z9euedzyr5nhoew: /ipfs/QmUVTKsrYJpaxUT7dr9FpKq6AoKHhEM7eG1ZHGL56haKLG
-   ```
+#### IPNS over the DHT
 
-   `k51...` is the public key or IPNS name of the IPFS you are running. You can now change the file repeatedly, and, even though the CID changes when you change the file, you can continue to access it with this key.
+The DHT is the default transport mechanism for IPNS records in most IPFS implementations, e.g. Kubo, and js-ipfs.
 
-1. You can view your file by going to `https://gateway.ipfs.io/ipns/k51qzi5uqu5dkkciu33khkzbcmxtyhn376i1e83tya8kuy7z9euedzyr5nhoew`:
+Due to the ephemeral nature of the DHT, peers forget records after 24 hours. This applies to any record in the DHT, irrespective of the `validity` (also referred to as `lifetime`) field in the IPNS record.
 
-   ```shell
-   curl https://gateway.ipfs.io/ipns/k51qzi5uqu5dkkciu33khkzbcmxtyhn376i1e83tya8kuy7z9euedzyr5nhoew
+Therefore, IPNS records need to be regularly (re-)published to the DHT. Moreover, publishing to the DHT at regular intervals ensures that the IPNS name can be resolved even when there's high node churn (nodes coming and going.)
 
-   > Hello IPFS
-   ```
+By default, Kubo will republish IPNS records to the DHT based on the [`Ipns.RepublishPeriod`](https://github.com/ipfs/kubo/blob/master/docs/config.md#ipnsrepublishperiod) configuration which defaults to 4 hours. [Republishing](https://github.com/ipfs/go-namesys/blob/1bf7d3d9cbe8f988b232b92288b24d25add85a00/republisher/repub.go#L130-L167) involves two steps:
 
-1. Make a change to your file, add it to IPFS, and update your IPNS:
+1. Creating an updated IPNS record with the `validity` timestamp field updated (by default based on [`Ipns.RecordLifetime`](https://github.com/ipfs/kubo/blob/master/docs/config.md#ipnsrecordlifetime)), and signing it with the private key. The `sequence` number will only be incremented if the content path changes.
+2. Publish the [IPNS record to the DHT](https://docs.ipfs.tech/concepts/dht/#ipns-records)
 
-   ```shell
-   echo "Hello again IPFS" > hello.txt
-   ipfs add hello.txt
+> **Note:** See the [DHT documentation](dht.md#ipns-records) for more information on the lifecycle of GETs and PUTs of IPNS records.
 
-   > added QmaVfeg2GM17RLjBs9C4fhpku6uDgrEGUYCTC183VrZaVW hello.txt
-   > 17 B / 17 B [=====================================================] 100.00%
+It's worth noting that publishing and resolving IPNS names using the DHT can be slow. This is because multiple records need to be found to ensure the latest version (record with the highest `sequence`), which involves round trips to multiple nodes.
 
-   ipfs name publish QmaVfeg2GM17RLjBs9C4fhpku6uDgrEGUYCTC183VrZaVW
+#### IPNS over PubSub
 
-   > Published to k51qzi5uqu5dkkciu33khkzbcmxtyhn376i1e83tya8kuy7z9euedzyr5nhoew: /ipfs/QmaVfeg2GM17RLjBs9C4fhpku6uDgrEGUYCTC183VrZaVW
-   ```
+IPNS over PubSub uses the [Libp2p PubSub](https://docs.libp2p.io/concepts/publish-subscribe/) to publish records and resolve names amongst **interested peers**.
 
-1. You can now go back to `https://gateway.ipfs.io/ipns/k51qzi5uqu5dkkciu33khkzbcmxtyhn376i1e83tya8kuy7z9euedzyr5nhoew` to view your updated file using the same address:
+This is achieved by deriving the PubSub topic name from the IPNS name so that each IPNS name has a unique topic.
 
-   ```shell
-   curl https://gateway.ipfs.io/ipns/k51qzi5uqu5dkkciu33khkzbcmxtyhn376i1e83tya8kuy7z9euedzyr5nhoew
+Because PubSub doesn't have the notion of persistence (messages are ephemeral and dropped after propagation), IPNS over PubSub [adds a persistence layer](https://github.com/ipfs/specs/blob/main/naming/pubsub.md#layering-persistence-onto-libp2p-pubsub) to ensure that IPNS records are always available to the network.
 
-   > Hello again IPFS
-   ```
+In Kubo, IPNS over PubSub is not enabled by default and can be enabled using the [`Ipns.UsePubsub`](https://github.com/ipfs/kubo/blob/master/docs/config.md#ipnsusepubsub) configuration.
 
-You can view the CID of the file associated with your `k5` key by using `name resolve`:
+Initial operations, e.g. resolving or publishing an IPNS name for the first time can take time as they involve a roundtrip to the DHT (to lookup or publish provider records for the topic).
 
-```shell
-ipfs name resolve
+After the subscription to the topic is established, PubSub usually improves both publishing and resolving times of IPNS by relying on interested peers for both operations.
 
-> /ipfs/QmaVfeg2GM17RLjBs9C4fhpku6uDgrEGUYCTC183VrZaVW
-```
+It should be noted that there's an upper limit to the number of unique IPNS names you can resolve over PubSub, because for each name, a subscription is created which opens several (by default 6) network connections to mesh members.
 
-To use a different `k5` key, first create one using `key gen test`, and use the `--key` flag when calling `name publish`:
+##### Publishing IPNS records over PubSub lifecycle
 
-```shell
-ipfs key gen SecondKey
+1. Create a record and sign it
+2. Calculate PubSub topic name from IPNS name
+3. Join the topic by querying the DHT for the topic's provider records
+4. Publish the IPNS record to the topic
+5. Whenever [a new peer joins the topic](https://github.com/libp2p/go-libp2p-pubsub-router/blob/292d99457d224853706c5e49f8ddc112740a856a/pubsub.go#L538-L560) (specifically your mesh), ask them for the record. If they respond with a newer record, update it locally and publish the updated record to the.
+6. Periodically (by default every 10 minutes) rebroadcast the IPNS record,
 
-> k51qzi5uqu5dh5kbbff1ucw3ksphpy3vxx4en4dbtfh90pvw4mzd8nfm5r5fnl
+Steps 5 and 6 describe from a high level how IPNS record persistence is layered over PubSub by ensuring continuous propagation of the IPNS record in the face of node churn (nodes dropping in and out of the network).
 
-ipfs name publish --key=SecondKey /ipfs/QmaVfeg2GM17RLjBs9C4fhpku6uDgrEGUYCTC183VrZaVW
+> Further details about the IPNS over PubSub protocol can be found in the [IPNS over PubSub Spec](https://github.com/ipfs/specs/blob/main/naming/pubsub.md#protocol)
 
-> Published to k51qzi5uqu5dh5kbbff1ucw3ksphpy3vxx4en4dbtfh90pvw4mzd8nfm5r5fnl: /ipfs/QmaVfeg2GM17RLjBs9C4fhpku6uDgrEGUYCTC183VrZaVW
-```
+### Tradeoffs between consistency vs. availability
 
-## Example IPNS Setup with JS SDK API
+The self-certifying nature of IPNS comes with an inherent tradeoff between **consistency** and **availability**.
 
-Imagine you want to publish your website under IPFS. You can use the [Files API](file-systems.md#mutable-file-system-mfs) to publish your static website, and then you'll get a CID you can link to. But when you need to make a change, a problem arises: you get a new CID because you now have different content. And it is not possible for you to be always giving others a new address.
+Consistency means ensuring that users resolve to the latest published IPNS record for the name (with the highest sequence number) at the cost of potentially not being able to resolve.
 
-Here's where the Name API comes in handy. With it, you can create a single, stable IPNS address that points to the CID for the latest version of your website.
+Availability means resolving to a valid IPNS record, at the cost of potentially resolving to an outdated record.
 
-```javascript
-// The address of your files.
-const addr = '/ipfs/QmbezGequPwcsWo8UL4wDF6a8hYwM1hmbzYv2mnKkEWaUp'
+#### IPNS record validity
 
-ipfs.name.publish(addr).then(function (res) {
-  // You now receive a res which contains two fields:
-  //   - name: the name under which the content was published.
-  //   - value: the "real" address to which Name points.
-  console.log(`https://gateway.ipfs.io/ipns/${res.name}`)
-})
-```
+When setting the `validity` (referred to as [`lifetime` by Kubo](https://github.com/ipfs/kubo/blob/master/docs/config.md#ipnsrecordlifetime)) field of an IPNS record, you typically need to choose whether you favor **consistency** (short validity period, e.g. 24 hours) or **availability** (long validity period, e.g. 1 month), due to the inherent trade-off between the two.
+
+#### Practical considerations
+
+One of the most important things to consider with IPNS names is **how frequently you intend on updating the name**.
+
+Practically, two levers within your control determine where your IPNS name is on the spectrum between consistency and availability:
+
+- **IPNS record validity:** longer validity will veer towards availability. Moreover, longer validity will reduce the dependence on the keyholder (which for most purposes is stored on a single machine and rare shared) since the record can continue to persist without requiring the private key holder to sign a new record. Another benefit of a longer validity is that the transport can be delegated to other nodes or services (such as [w3name](https://staging.web3.storage/docs/how-tos/w3name/)), without compromising the private key.
+- **Transport mechanism:** the DHT veers towards consistency while PubSub veers towards availability. However, with Kubo, IPNS names are always published to the DHT, while PubSub is opt-in. For most purposes, enabling PubSub is a net gain unless you hit the upper limit of connections as a result of too many PubSub subscriptions.
+
+## IPNS in practice
+
+### Resolving IPNS names using IPFS gateways
+
+IPNS names can be resolved by [IPFS gateways](ipfs-gateway.md) in a _trusted_ fashion using both path resolution and subdomain resolution style:
+
+- Path resolution: `https://ipfs.io/ipns/{ipns-name}`
+- Subdomain resolution: `https://{ipns-name}.ipns.dweb.link`
+
+For example:
+
+- [https://ipfs.io/ipns/k51qzi5uqu5dlvj2baxnqndepeb86cbk3ng7n3i46uzyxzyqj2xjonzllnv0v8](https://ipfs.io/ipns/k51qzi5uqu5dlvj2baxnqndepeb86cbk3ng7n3i46uzyxzyqj2xjonzllnv0v8)
+
+> **Note** IPNS resolution via an IPFS gateway is **trusted** (in the sense of trusting the gateway) which means you delegate IPNS resolution to the gateway without any means to verify the authenticity response you get, i.e the content path and signature of the IPNS record.
+
+<!-- ### Third-party providing/publishing w3name -->
+
+### Publishing IPNS names
 
-In the same way, you can republish a new version of your website under the same address. By default, `ipfs.name.publish` will use the Peer ID.
+See the following guide on [publishing IPNS names with Kubo and js-ipfs](../how-to/publish-ipns.md).
 
 ## Alternatives to IPNS
 
diff --git a/docs/how-to/publish-ipns.md b/docs/how-to/publish-ipns.md
