[Issue #395] Restructuring py-libp2p: modularity, interfaces, and developer experience

[acul71]

This discussion is opened to continue the design conversation from issue #395 (Restructuring py-libp2p to be more modular and developer-friendly), so that the issue and PRs stay easier to manage. Please carry on the discussion here.

---

Summary of the proposal (from #395)

The issue proposes refactoring py-libp2p along three axes:

1. Restructure around 3 concepts: Transport (dials Multiaddr → Connection), Connection (protocol negotiation, read/write), Protocol (reads/writes on Connection).
2. Interfaces for cross-library compatibility: Abstract interfaces (e.g. ProvidesTransport, ProvidesConnection, ISecureConnection) so that protocols can depend on capabilities (e.g. “requires secure connection”) without depending on concrete implementations.
3. Interface vs implementation split: Advertise interfaces in the core library; keep concrete implementations (TCP, Mplex, SecIO, etc.) as separate or clearly separated, so that e.g. libp2p-bluetooth can register with py-libp2p via a single function without tight coupling.

---

Research: current state of py-libp2p

A quick pass over the codebase shows that a lot of this is already in place, but naming and layering don’t fully match the issue’s vocabulary.

1. Transport, Connection, Protocol (concepts)

• Transport: libp2p.abc.ITransport — dial(maddr) -> IRawConnection, create_listener(handler) -> IListener. Implementations: TCP, WebsocketTransport, QUICTransport, CircuitV2Transport, etc. A transport registry (libp2p.transport.transport_registry) maps multiaddr protocols (e.g. tcp, ws, quic) to transport classes and is used to create the right transport for a given multiaddr.
• Connection: The stack is raw → secure → muxed:
  • IRawConnection (raw I/O)
  • ISecureConn (secure; get_local_peer, get_remote_peer, etc.) — security is applied via TransportUpgrader / SecurityMultistream (e.g. Noise, TLS, secio, plaintext).
  • IMuxedConn (multiplexed; open_stream, accept_stream) — muxer is selected via MuxerMultistream (e.g. Yamux, Mplex).
• Protocol: In the issue, “Protocol” is used both for (a) stream-level protocols (e.g. “the ping protocol”) and (b) “protocols that provide transport or connection” (e.g. multiplexer “provides” new connections). In the codebase, (a) is represented by TProtocol and protocol handlers on the host; (b) is represented by security transports and muxers that are selected by multistream and then produce ISecureConn / IMuxedConn. So the three concepts are present, but “Protocol” in the issue’s sense is split across “stream protocol”, “security transport”, and “muxer” in the code.

2. Interfaces

• Transport: ITransport, ISecureTransport (secure_inbound / secure_outbound).
• Connections: IRawConnection, ISecureConn (extends AbstractSecureConn + IRawConnection), IMuxedConn, IMuxedStream, INetStream, INetConn.
• Discovery/registration: The transport registry already allows registering transport classes by protocol name; custom transports (e.g. a hypothetical Bluetooth transport) can be registered and then used when a matching multiaddr is dialed.
• What’s not there (from the issue): Explicit “ProvidesTransport” / “ProvidesConnection” interfaces on protocol instances that the core then discovers and uses; and a decorator like @requires_connection(ISecureConnection) to declare that a protocol only runs over a secure connection. Today, security is enforced by the upgrader/swarm layer, not by protocol-level checks.

3. Interface vs implementation

• Interfaces live in libp2p/abc.py (and libp2p/io/abc.py for ReadWriteCloser, etc.).
• Implementations live in libp2p/transport/, libp2p/security/, libp2p/stream_muxer/, etc., and implement those ABCs. So the split “interface in core, implementation elsewhere” is partially there; the main gap is that default implementations are still in the same repo and wired in by default (e.g. transport registry registers TCP, WS, QUIC at init). Moving default transports to separate packages and having the core only depend on interfaces would complete the picture.

---

Formulated answers / discussion points

1. Alignment with the proposal: The codebase already has Transport and Connection as first-class concepts, a transport registry, and a clear interface layer in abc.py. The main differences are: (i) “Protocol” in the issue is spread over stream protocols, security, and muxer; (ii) no “ProvidesTransport”/“ProvidesConnection” style discovery from protocol instances; (iii) no @requires_connection(ISecureConnection)-style decorator.

2. Possible next steps (for discussion):

   • Naming / docs: Optionally introduce aliases or a short doc that maps “Transport / Connection / Protocol” from the issue onto the current types (ITransport, IRawConnection → ISecureConn → IMuxedConn, and stream protocols vs security/muxer).
   • Capability-based protocol requirements: If we want protocols to declare “I need a secure connection”, we could add something like @requires_connection(ISecureConn) (or a base interface like ISecureConnection if we want to match the issue’s name) and have the host/swarm only run such protocols on connections that have been secured. This would be an addition on top of the current upgrader-based security.
   • ProvidesTransport / ProvidesConnection: If we want third-party “protocols” (e.g. a multiplexer or a custom transport) to be discovered by the core via an interface (e.g. “this protocol provides new connections”), we could introduce such interfaces and a registry that the swarm consults. Today, the swarm already has a fixed notion of “security then muxer”; generalizing that to “anything that provides a connection” would be a larger refactor.
   • Packaging: Moving built-in transports (TCP, WS, QUIC, etc.) into separate packages (e.g. py-libp2p-tcp, py-libp2p-websocket) and having the main library only depend on libp2p.abc would match “interface vs implementation” and make it easier for libp2p-bluetooth-style packages to plug in without polluting the core.

3. Risk / scope: The proposal is from 2020; the codebase has evolved (e.g. TransportRegistry, clearer ABCs). So “restructuring” today might mean incremental alignment (docs, small API additions, optional decorators/registries) rather than a big-bang rewrite. A discussion here can help decide which parts of the original proposal are still desired and which are already satisfied.

---

Please add your thoughts, especially on: (a) whether the “ProvidesTransport”/“ProvidesConnection” discovery model is still desired, (b) whether a @requires_connection(...)-style mechanism would be useful, and (c) whether splitting default transports into separate packages is a goal. If there’s consensus, we can turn this into a short design doc and reference it from issue #395 and any follow-up PRs.

[acul71]

So if I understood correctly there will be some Interfaces definition but the actual implementation can be done in separate python package? Is this possible in python ?
and then the @requires_connection(...)-style mechanism specify for every module what packages are needed ?
Also the core modules can be externalized? But I imagine some will still be there. can you make a code base Research if last sentence is correct ?

---

1. Interfaces in core, implementations in separate packages — yes, it’s possible in Python

Python supports this pattern:

• Core package (e.g. py-libp2p) defines only interfaces in libp2p.abc (and shared types in custom_types, peer, etc.). It does not import concrete transport/security/muxer implementations.
• Other packages (e.g. py-libp2p-tcp, py-libp2p-noise, py-libp2p-quic) depend on py-libp2p and provide classes that implement those interfaces (ITransport, ISecureTransport, IMuxedConn, etc.).
• The application depends on the core plus the implementations it wants, and either:
  • passes instances explicitly (e.g. new_swarm(sec_opt={...}, ...) with instances from py-libp2p-noise), or
  • uses entry points / a registry so the core discovers implementations when the extra package is installed (e.g. libp2p-bluetooth registers its transport on import).

So: interfaces in core, implementations in separate packages is possible and common in Python.

---

2. What @requires_connection(...) is (and isn’t)

@requires_connection(ISecureConnection) in the issue is not “which Python packages this module needs.”

It’s a runtime/capability constraint: “this protocol handler may only run on connections that satisfy this interface (e.g. secure).” So:

• It specifies what kind of connection the protocol needs (e.g. ISecureConn), not which pip packages to install.
• The host/swarm would use it to decide on which connections a protocol is allowed to run (e.g. only after the connection has been upgraded to a secure connection).

Package dependencies are still expressed the usual way: install_requires in setup.py/pyproject.toml and/or optional extras (e.g. pip install py-libp2p[quic]). The decorator and package deps are separate concepts.

---

3. Can “core” be externalized? Yes — but some parts must stay, and some need refactors

Below is a concise codebase view of what can stay as “core” vs what can be moved out.

What is already interface-based and can stay as “core”

• libp2p/abc.py – Only abstract interfaces (ITransport, ISecureTransport, IRawConnection, ISecureConn, IMuxedConn, etc.). No concrete implementations. Stays in core.
• libp2p/transport/upgrader.py – Uses only TSecurityOptions and TMuxerOptions (mappings to interfaces). Stays in core.
• libp2p/peer/ (id, peerstore, peerinfo, etc.) – Core identity/peer concepts. Stays in core.
• libp2p/io/abc.py, libp2p/protocol_muxer/ (multiselect), libp2p/network/ (swarm, connection, stream), libp2p/host/ – Conceptually core; some of them currently import concrete implementations (see below).
• Security and muxer – Already pluggable by injection: new_swarm(sec_opt=..., muxer_opt=...) accept mappings to implementations. So Noise, TLS, Mplex, Yamux could live in separate packages and be passed in; the core doesn’t have to import them if we don’t wire defaults in the core.
• Transport registry – register_transport(protocol, transport_class) already allows external transports. The only coupling is default registration (see below).

Where the core currently depends on concrete implementations

• libp2p/__init__.py
  Imports TCP, Noise, TLS, secio, InsecureTransport, Mplex, Yamux, QUIC transport/config and builds default sec_opt, muxer_opt, and (via registry) default transports. So the top-level API is where default implementations are wired. To externalize them, defaults would move to a “batteries-included” package or optional extras that register with the core.

• libp2p/transport/transport_registry.py
_register_default_transports() imports TCP, WebsocketTransport, QUICTransport. So the registry is in core but its defaults pull in concrete transports. Externalizing would mean: either no default registration in core (caller or an extra package registers), or a pluggable “defaults” provider.

• libp2p/network/swarm.py
  Imports QUICTransport, QUICConnection, QUICTransportConfig and uses isinstance(..., QUICTransport) / isinstance(..., QUICConnection) in several places (e.g. skip security/muxer upgrade for QUIC, QUIC-specific connection handling). So Swarm has QUIC-specific branches. To fully externalize QUIC, those would need to be generalized (e.g. “transport declares it’s already muxed” or a small adapter interface) so Swarm only depends on interfaces.

• libp2p/host/basic_host.py
  Imports QUICConnection and TLS autotls; uses isinstance(muxed_conn, QUICConnection) and QUIC-specific config/timeouts. Same idea: to make QUIC optional in a separate package, this would use an interface or capability flag instead of QUICConnection.

• libp2p/custom_types.py
  Imports QUICStream and QUICConnection for TQUICStreamHandlerFn and TQUICConnHandlerFn. To externalize QUIC, these could be made generic (e.g. Stream / MuxedConn from abc) or defined in the QUIC package and re-exported by the core only when QUIC is present.

Summary table

Area	In core today	Can be externalized?	Note
Interfaces (abc)	Yes	N/A	Stays; no impl deps.
Transport registry	Yes	Partially	Core keeps registry; default registration (TCP, WS, QUIC) can move to extras or separate package.
Security / muxer	Defaults wired in __init__.py	Yes	Already injectable; remove default imports from core and ship defaults elsewhere.
Swarm	Uses ITransport, but also QUIC* types	Yes, with refactor	Replace isinstance(QUICTransport/QUICConnection) with interface or capability (e.g. “already_muxed”).
BasicHost	Same QUIC/TLS coupling	Yes, with refactor	Same as Swarm: use interfaces/capabilities instead of concrete QUIC/TLS types.
custom_types	QUICStream/QUICConnection in type aliases	Yes, with refactor	Use abc types or move QUIC-specific aliases to QUIC package.

So: core can be externalized, and some modules will still be in the main repo (abc, peer, io, protocol_muxer, network, host, transport upgrader/registry, crypto interfaces, utils, rcmgr, etc.). What changes is that the concrete transports, security, and muxers (TCP, QUIC, WebSocket, Noise, TLS, Mplex, Yamux) and their default wiring can live in separate packages or optional extras; the core would only depend on interfaces and, where needed, small capability flags or adapter interfaces instead of QUIC/TLS-specific types.

[ChayanDass]

QUIC should expose its behavior via capabilities, not be relied on as a concrete type.

Refactoring this to capability-based checks (e.g. is_secure, is_muxed) would decouple the core from QUIC and make transports like Iroh, WebRTC, or future “secure + muxed” transports pluggable without special-casing.

[ShadowJonathan]

I need to add a caveat that, when I wrote #395, I was following an entirely internal idea for connections reflecting the codebase and libp2p landscape at the time (2020), with the core goal of allowing py-libp2p to be a development kit for current and future protocols, this means absolute abstraction from any assumptions of applications (such as IPFS at the time), and a reduction of everything back to a structured hierarchy, which can then be rearranged or changed to reflect any new protocol development work.

[ShadowJonathan]

And to clarify some concepts (as they're understood in my head) further, let's start off with the posit that everything here is IO, "just" "IO", in the sense that each of these provide an IO channel from... somewhere, to... somewhere.

However, on top of that, there's a core distinction between "terminus" IO (IO channels that don't feed or get fed by other IO channels), and "transitive" IO (Connection, mainly, which layers an IO channel on top of another IO channel).

In this case, then;

• Transports are "Incoming" IO channels, the "underlying" side terminates outside of libp2p; TCP, UDP, Bluetooth, etc.
• Connections are "transitive" IO channels, the underlying side terminates to another IO channel inside libp2p, and the top side terminates to another IO channel inside libp2p.
• Protocols are "Outgoing" IO channels, the "top"-side terminates outside of libp2p; Ping, Swarm, etc.

By abstracting things like this, one could potentially go from a "push"-based connectivity system ('when setting up a connection to another node, "just" create a secure protocol and then a muxer'), to a "pull"-based system, where the application "just" provides a Protocol class to the libp2p library, and then libp2p will "resolve dependencies" (depth-first), trying transports, connection layering, and the likes, with a tree of registered Transport and Connection classes, until, it has created a Connection with all the required prerequisites, which it then layers the Protocol on, initializes it, and then gives it back to the application to perform IO on, in its own fashion.

---

Example:

• Lets say some application tells libp2p to initialize ExoticProtocol, which requires IFTLConnection, a prerequisite.

• Then, libp2p will resolve IFTLConnection to FTLStarGateConnection, which can then be further resolved to a SubliminalSpaceshipTransport. However, it also sees FTLSpaceshipTransport, which supports IFTLConnection by itself.

• Libp2p will first attempt to dial the SubliminalSpaceshipTransport, connects, and then request the FTLStarGateConnection wire protocol.

• That fails, as the other side has no knowledge (or support) of this wire protocol. So, this tree branch is closed off, and the next branch is attempted.

• It then dials FTLSpaceshipTransport, which connects, and then libp2p immediately puts ExoticProtocol on top of it, and gave the hint to the application the Protocol instance is connected, as it has declared no other dependencies.

---

Via this way, protocols could potentially identify nebulous or otherwise "semi-protocols" which would be transparent passthrough IO channels, but otherwise signal interesting or important requirements or property requirements on the underlying connection.

IMultiChannelConnection/IRedundantConnection might be one, where an application has an uninterrupted connection to the other side, even if a primary channel falls away, for important meta-coordination.

With this, you could say that the Provides/@requires idea was more or less based around this (hitherto-invisible) idea of a "resolver" inside the libp2p engine, which could effectively and efficiently resolve exacting requirements to connections.

I took inspiration of this from systemd, of it's ordering system, and I'll take further inspiration to discuss a problem not yet mentioned;

Systemd has both After= and Requires=, which will internally reorder on-boot components to fit these requirements. However, After= is "softer" than Requires=, it will not initiate startup of a component, but it'll still influence ordering; if a set of services are scheduled to start, and if any one of them has After= on another service inside that set, then the scheduler will make sure that one will start only when the other one has (been verified) to start.

There's a problem with the Transport/Connection/Protocol + resolver idea if you apply it in a "pure" sense; the "secure-then-mux" regularity. In this pure sense, then it'll most likely "just" initiate a transport, secure connection, and immediately apply the Protocol on top of that, without muxing.

Also, if a protocol would "simply" require a secure connection and a muxed connection, then the resolver isn't exactly deterministic; it might create a muxer on top of the transport, and then a secure connection, or vice versa.

As such, I'm recommending another idea; @after_connection(), which will not require a connection to be present, but influence the resolver.

With this, the muxer could have this annotation of @after_connection(ISecureConnection), and a resolver will not try to arrange a muxer before a secure connection; it'll make sure the secure connection is applied before any muxer is applied.

Consequently, these relations could be specified virtually as well, with @requires_connection(IStream) (or the likes) having an @before annotation of "just" Protocol, meaning that any application protocol is always be a muxed stream IO channel, no matter where it is specified.

This would require internal bookkeeping, at-runtime resolvers, and the likes, but it could be an incredibly powerful way of building up building blocks of supporting internal/external protocols, which can then be seamlessly inserted in any connection buildup.

With this, even the basic core principle of "secure connections" and "muxed connections" could be externalised to other libraries, or at the very least, properly isolated, making py-libp2p only a smart connection-stacking resolver; complete abstraction from any implementation details, no matter how straightforward or "core".

Edit: And just to be extra clear, I personally split "protocol" into "application protocol" and "wire protocol". The first one (any protocol required by the application) is a Protocol, the code-level superclass of any "terminating" application protocol. The second one more specifically refers to any "internal" protocol, or more specifically, to the protocol selection dance that happens on a connection.

With this, Protocol is meant as a "friendly" class to any external developers implementing it, and also the "level" on which an application/node wishes to talk to another node; all protocols/connections/transports underneath it are all in service for this protocol.

[ShadowJonathan]

@acul71 I hope this can give some clarification on the direction I was trying to head towards with this design. If you have any questions, feel free to @ me, as even though I abandoned working on py-libp2p directly a while ago, I'm ofc still open to design discussions :)

[acul71]

@ShadowJonathan

libp2p IO Schema

Based on comment by ShadowJonathan (Discussion #1204, Feb 2026). Everything is IO; Transport / Connection / Protocol and the resolver.

---

1. Everything is IO

Each layer provides an IO channel from somewhere to somewhere. Two kinds:

• Terminus IO — channels that don't feed or get fed by other IO channels.
• Transitive IO — Connection: layers an IO channel on top of another inside libp2p.

---

2. Three Roles

Concept	Role	Underlying side terminates	Top side terminates
Transport	Incoming IO	Outside libp2p (network: TCP, UDP, Bluetooth…)	Inside libp2p (next layer)
Connection	Transitive IO	Inside libp2p (lower layer)	Inside libp2p (upper layer)
Protocol	Outgoing IO	Inside libp2p (connection)	Outside libp2p (application: Ping, Identify…)

---

3. Stack (vertical)

Layer	Role / note
Application	↕ top of Protocol pipe (outside libp2p)
Protocol	↕ Outgoing IO — e.g. Ping, Identify
Connection	↕ Transitive IO — e.g. Secure, Muxer
Transport	↕ Incoming IO — e.g. TCP, QUIC
Network	↕ bottom of Transport pipe (outside libp2p)

---

4. Push vs Pull

• Push: app manually builds stack (“create secure, then muxer”).
• Pull: app gives a Protocol class; libp2p resolver resolves dependencies (depth-first), tries registered Transport/Connection tree, builds a Connection with required prerequisites, layers the Protocol on top, returns it to the app.

---

5. Resolver example (ExoticProtocol → IFTLConnection)

ExoticProtocol requires IFTLConnection. Resolver has two paths:

ExoticProtocol
         │
         │ @requires_connection(IFTLConnection)
         ▼
IFTLConnection
         │
    ┌────┴────┐
    │         │
    ▼         ▼
 Path A      Path B
    │         │
    │         │ FTLSpaceshipTransport
    │         │ (Transport, provides IFTLConnection directly)
    │         │
    │         ▼
    │    ✓ Success: stack ExoticProtocol on top
    │
    │ FTLStarGateConnection → SubliminalSpaceshipTransport
    │ (dial, then request FTLStarGate wire protocol)
    │
    ▼
 ✗ Fail: remote doesn't support wire protocol → close branch, try Path B

---

6. Ordering: @after_connection and @requires_connection

Inspired by systemd:

• Requires= → @requires_connection(I): this connection type must be present.
• After= → @after_connection(I): don't start this layer until I is present (ordering only).

So the muxer can be annotated with @after_connection(ISecureConnection) so the resolver always applies secure before muxer. Application protocols can have @requires_connection(IStream) with an implicit @before Protocol so they always get a muxed stream.

---

7. Application protocol vs wire protocol

Application protocol — the Protocol class (terminating); what the app talks to.
Wire protocol — the internal protocol selection dance on a connection (multistream handshake, etc.).

---

Source: GitHub Discussion #1204, comment 15772422.

[acul71]

@seetadev @pacrob @sumanjeet0012 @yashksaini-coder @ShadowJonathan

What It Would Take to Implement ShadowJonathan’s Concept in py-libp2p

This document maps the current py-libp2p codebase to the target design (Transport/Connection/Protocol as IO layers, pull-based resolver, capability-based checks, optional packaging split) and outlines a concrete implementation roadmap. It is intended for maintainers and contributors.

References: Issue #395, Discussion #1204, and the summary in #1204 (comment).

---

1. Current State (What Exists Today)

1.1 Interfaces (abc.py)

• Transport: ITransport — dial(maddr) -> IRawConnection, create_listener(handler) -> IListener.
• Connections: IRawConnection, ISecureConn (extends AbstractSecureConn + IRawConnection), IMuxedConn, IMuxedStream, INetStream, INetConn.
• Security: ISecureTransport — secure_inbound / secure_outbound; implementations (Noise, TLS, secio, Insecure) in libp2p/security/.
• No “ProvidesTransport” / “ProvidesConnection” interfaces. No @requires_connection(...) or @after_connection(...) on protocols.

1.2 Transport Registry

• Location: libp2p/transport/transport_registry.py.
• Behaviour: Maps protocol names (tcp, ws, wss, quic, quic-v1) to transport classes; create_transport_for_multiaddr(maddr, upgrader, **kwargs) picks a transport for a multiaddr.
• Default registration: TransportRegistry._register_default_transports() imports and registers TCP, WebsocketTransport, QUICTransport inside the core package. External transports can call register_transport(protocol, transport_class) (e.g. a hypothetical libp2p-bluetooth).

1.3 Upgrade Pipeline (Push Model)

• TransportUpgrader (libp2p/transport/upgrader.py): Takes TSecurityOptions and TMuxerOptions (mappings protocol_id -> implementation). Fixed sequence: raw → security → muxer.
• Swarm (libp2p/network/swarm.py): Holds one ITransport and one TransportUpgrader. On dial: transport.dial → raw conn → upgrader.upgrade_security → upgrader.upgrade_connection → muxed conn. No dependency resolution; the stack is fixed.

1.4 QUIC and Concrete-Type Coupling

• Swarm imports QUICTransport, QUICConnection, QUICTransportConfig and uses isinstance(self.transport, QUICTransport) and isinstance(..., QUICConnection) in several places:
  • Skip security/muxer upgrade when the transport is QUIC (QUIC is already secure and muxed).
  • new_stream and connection handling branch on QUIC.
• BasicHost imports QUICConnection; uses isinstance(muxed_conn, QUICConnection) for timeouts and stream negotiation (semaphore, etc.).
• custom_types.py defines TQUICStreamHandlerFn, TQUICConnHandlerFn using QUICStream and QUICConnection (QUIC-specific types in core).

So the core today depends on concrete QUIC types, not only on interfaces.

Why QUIC is singled out: QUIC is the only transport in the current codebase that bundles security and multiplexing inside the transport itself (TLS is inside QUIC; streams are native). So the normal path “raw → add security → add muxer” does not apply: stacking Noise and Mplex on top of QUIC would be wrong. The code had to special-case “if this is QUIC, skip those upgrades.” In the target design, QUIC is not special — any transport that is “already secure and muxed” (QUIC, WebRTC, Iroh, etc.) is handled the same way via capabilities, not type checks.

1.5 Default Wiring in libp2p/__init__.py

• new_swarm builds default sec_opt (Noise, TLS, secio, Insecure) and muxer_opt (Yamux, Mplex) by importing concrete classes from libp2p.security.* and libp2p.stream_muxer.*.
• If listen_addrs is provided, transport is chosen via create_transport_for_multiaddr; otherwise single transport (TCP or QUIC) is created directly (including QUICTransport(...) when enable_quic=True).
• new_host builds swarm via new_swarm and wraps it in BasicHost.

1.6 Protocol (Application) Layer

• Stream protocols (Identify, Ping, etc.) are registered on the host via set_stream_handler(protocol_id, stream_handler). The host’s multiselect runs on muxed streams; there is no formal “this protocol requires ISecureConn” check — security is enforced by the upgrader, not by protocol-level decorators.

---

2. Target Design (ShadowJonathan’s Concept, Concrete)

Aspect	Target
Model	Everything is IO; Transport = incoming, Connection = transitive, Protocol = outgoing (see IO.md).
Stack building	Pull: app requests a Protocol (or a connection with capabilities); a resolver builds the stack from registered Transports/Connections.
Requirements	Protocols declare required connection capabilities via e.g. @requires_connection(ISecureConn) (runtime constraint, not package dependency).
Ordering	Layers declare ordering via e.g. @after_connection(ISecureConn) so the resolver never stacks muxer before security.
Discovery	Optional: “ProvidesTransport” / “ProvidesConnection” interfaces so the core can discover implementations (e.g. muxer “provides” new connections) without hard-coding.
Core vs impl	Core exposes interfaces only; concrete transports/security/muxers can live in separate packages or extras and register at runtime.
QUIC / others	No isinstance(QUICTransport) or isinstance(QUICConnection); use capability flags (e.g. is_secure, is_muxed) or interfaces so any “secure+muxed” transport (QUIC, Iroh, WebRTC) is pluggable.

How the IO concept handles QUIC (and other “secure+muxed” transports)

In the IO model, QUIC is still a Transport (incoming IO): its bottom touches the network, its top exposes a connection. The difference is that QUIC’s “top” already provides both security and multiplexing (its own TLS and streams), so it doesn’t use the separate Noise/Mplex layers. The core should not stack those on top; it should treat the QUIC connection as already satisfying “secure” and “muxed.” That’s exactly what capability flags do (Phase 1): the transport or the connection object declares e.g. provides_secure=True, provides_muxed=True. The upgrader/resolver then skips adding security and muxer layers for that connection. So QUIC (and any future transport with built-in security and muxing) is handled by the same IO concept — no special type, just a transport that advertises higher capabilities. QUIC’s “own” security and muxer modules stay inside the QUIC implementation; the core only sees the resulting connection and its capabilities.

---

3. Gap Analysis

Gap	Current	Target
QUIC special-casing	Swarm and BasicHost branch on QUICTransport / QUICConnection.	Use capability checks (e.g. transport/connection declares “already_secure”, “already_muxed”); core uses only interfaces.
Protocol requirements	No way for a protocol to declare “I need a secure connection.”	Add @requires_connection(IBaseConnection) (or similar) and optionally enforce when attaching protocols.
Ordering	Fixed “security then muxer” in upgrader.	Add @after_connection(IBaseConnection) (or similar) so resolver/upgrader respects ordering without hard-coding.
Resolver	No resolver; stack is built in one fixed path.	Introduce a component that, given a target (e.g. “run Protocol X”), resolves required capabilities and tries registered Transport/Connection paths (depth-first or similar).
Provides discovery*	Transport registry maps multiaddr protocol → class; no “this protocol instance provides connections.”	Optional: ProvideTransport / ProvideConnection interfaces and a registry the resolver consults.
Default implementations in core	__init__.py and transport_registry import TCP, Noise, TLS, Mplex, Yamux, QUIC.	Defaults could move to optional extras or a “batteries-included” package that registers with core.
custom_types QUIC	TQUICStreamHandlerFn, TQUICConnHandlerFn reference QUIC types.	Generalize to INetStream / IMuxedConn or move QUIC-specific types to a QUIC package.

---

4. Implementation Roadmap

Phase 1: Capability-Based Checks (Decouple from QUIC)

Goal: Remove all isinstance(..., QUICTransport) and isinstance(..., QUICConnection) from Swarm and BasicHost so QUIC is just one implementation of shared capabilities.

Steps:

1. Define capability attributes or a small interface (e.g. in libp2p/abc.py or a new libp2p/capabilities.py):
   • On transport or connection: e.g. provides_secure: bool, provides_muxed: bool (or a ConnectionCapabilities protocol/ABC).
   • QUIC transport/connection sets these to True; TCP + upgrader stack exposes them based on current layer (e.g. after security upgrade provides_secure=True).
2. Swarm: Replace every isinstance(self.transport, QUICTransport) and isinstance(..., QUICConnection) with checks on these capabilities (e.g. “if transport/connection is already muxed, skip muxer upgrade”).
3. BasicHost: Same: replace QUIC-specific branches with capability-based logic (timeouts, stream limits, etc. driven by “is this connection already muxed / already secure” rather than “is this QUIC”).
4. custom_types: Replace or complement TQUICStreamHandlerFn / TQUICConnHandlerFn with handlers that take INetStream / IMuxedConn (or keep QUIC-specific handlers in a QUIC-only module if needed for backward compatibility).

Deliverables: No direct QUIC imports in Swarm/BasicHost for control flow; QUIC remains in repo but pluggable via capabilities. New “secure+muxed” transports (e.g. WebRTC) can plug in without new branches.

Risk: Low. Mostly refactor + adding a few attributes or a tiny interface.

---

Phase 2: Protocol Requirements (@requires_connection)

Goal: Allow application protocols to declare what kind of connection they require; core can optionally enforce or use this for the resolver later.

Steps:

1. Define a decorator (e.g. in libp2p/protocol_requirements.py or in abc.py):
   • @requires_connection(interface) — e.g. @requires_connection(ISecureConn) or a base type like ISecureConnection.
   • Store the requirement on the protocol class (e.g. _required_connection_interface or a registry).
2. Document that this is a runtime/capability requirement (not a pip dependency).
3. Optional enforcement: When the host sets a stream handler for a protocol, or when opening a stream for that protocol, check that the connection (or its stack) satisfies the required interface (e.g. via isinstance(conn, ISecureConn) or capability flags). If not, log a warning or raise.
4. Keep existing behaviour: If no decorator is present, behave as today (no extra check).

Deliverables: Protocols can declare “I need a secure connection”; host/swarm can optionally enforce it. Foundation for resolver (Phase 4).

Risk: Low. Additive; default behaviour unchanged.

---

Phase 3: Connection Ordering (@after_connection)

Goal: Make “security before muxer” (and similar rules) explicit and extensible so a future resolver can respect ordering without hard-coding.

Steps:

1. Define a decorator (e.g. in the same module as Phase 2):
   • @after_connection(interface) — e.g. muxer implementation is annotated with @after_connection(ISecureConn).
   • Store ordering constraints (e.g. “this connection type must be stacked after ISecureConn”).
2. Integrate with TransportUpgrader (or equivalent):
   • When building the stack, the upgrader consults these annotations and applies security before muxer (current behaviour), and can later support more layers if needed.
3. Document that this drives ordering only (like systemd’s After=), not “require this to be present” (that’s @requires_connection).

Deliverables: Explicit ordering metadata; upgrader (and later resolver) use it. No change to default stack shape if we keep current security-then-muxer as the only path for now.

Risk: Low. Can be implemented as metadata first, then wired into upgrader.

---

Phase 4: Resolver (Pull Model)

Goal: Application requests “run this Protocol” (or “give me a connection with these capabilities”); a resolver tries registered Transport/Connection paths and builds the stack automatically.

Steps:

1. Define a Resolver API:
   • Input: desired protocol class (or desired capability set, e.g. “IMuxedConn”).
   • Output: a constructed stack (transport dial → optional security → optional muxer) and the top-level connection/stream for the protocol.
2. Registry of “connection providers”:
   • Transports that produce IRawConnection (already exist).
   • Security and muxer as “connection layers” that consume one connection and produce another (already exist; could be registered as “provides ISecureConn” / “provides IMuxedConn”).
   • Use @after_connection so the resolver orders layers correctly (e.g. muxer after secure).
3. Depth-first (or similar) resolution:
   • Given “I need IMuxedConn for protocol X”, resolver tries: dial each registered transport → for each, try stacking security then muxer (or use ordering metadata); if a path fails (e.g. wire handshake fails), try next path. Mirror ShadowJonathan’s “Path A / Path B” example.
4. Integration with Host:
   • When the app asks to dial a peer for a given protocol, host can call the resolver instead of the fixed “dial transport → upgrade security → upgrade muxer” path. Fallback: keep current behaviour if resolver is not used.

Deliverables: A working resolver that can build connection stacks from registries and ordering constraints; host can optionally use it for dial/stream.

Risk: Medium. Touches dial path, error handling, and testing. Should be feature-flagged or opt-in initially.

---

Phase 5: ProvidesTransport / ProvidesConnection (Optional)

Goal: Let “protocols” (e.g. a muxer instance) be discovered by the core as “this provides new connections” so the resolver can iterate over them without hard-coding Multiplex, Yamux, etc.

Steps:

1. Define interfaces (e.g. in abc.py):
   • ProvidesTransport — e.g. “can dial this multiaddr” / “matches multiaddr”.
   • ProvidesConnection — e.g. “can create a new connection (stream) on top of this”.
2. Implementations: Muxer instances could implement ProvidesConnection; custom transports implement ProvidesTransport. Register them in a central registry the resolver uses.
3. Resolver (from Phase 4) consults these registries when building the stack.

Deliverables: Pluggable discovery of transports and “connection providers”; core does not depend on concrete muxer/transport classes for discovery.

Risk: Medium. Larger API and behavioural change; can be done after Phase 4.

---

Phase 6: Packaging (Interface vs Implementation Split)

Goal: Core package exposes only interfaces (and peer, io, multiselect, network, host, upgrader, registry, etc.); current implementations (TCP, ws/wss, Noise, TLS, secio, QUIC, Mplex, Yamux, etc.) become installable via pip — either as optional extras of the main package or as separate packages.

Do ws, wss, Noise, secio, QUIC, etc. need to be external / pip-installable?
Yes, in the full vision of the proposal: the core should not depend on concrete implementations. That can be achieved in two ways (or a mix):

• Option A — Single “defaults” extra: One pip extra, e.g. pip install py-libp2p[defaults], that pulls in all current implementations (still in the same repo as optional subpackages, or as a single “batteries” package). Users who want the current behaviour install the extra; core alone stays interface-only.
• Option B — Per-module packages: Each implementation is its own pip package, e.g. py-libp2p-tcp, py-libp2p-websocket, py-libp2p-noise, py-libp2p-secio, py-libp2p-quic, py-libp2p-mplex, py-libp2p-yamux. Users install only what they need (e.g. pip install py-libp2p py-libp2p-tcp py-libp2p-noise py-libp2p-yamux). A meta-package like py-libp2p[defaults] can depend on all of them for “batteries included.”

The roadmap does mention this in Phase 6: “default implementations live in extras or separate packages” and “implementations = optional packages.” So the answer is: yes, the current modules (ws, wss, Noise, secio, QUIC, TCP, Mplex, Yamux, etc.) are the ones that would move to extras or separate pip-installable packages; Phase 6 is where that is described.

Can a module like py-libp2p-tcp be resolved/installed at runtime?

• Resolved at runtime — yes. The core can discover which transports are available without the app explicitly importing each one, using Python entry points (e.g. in pyproject.toml of py-libp2p-tcp: [project.entry-points."libp2p.transports"] pointing to the TCP transport class). When the core (or the transport registry) is first used, it can iterate over importlib.metadata.entry_points(group="libp2p.transports") and register each discovered transport. So the package must be installed beforehand (e.g. pip install py-libp2p-tcp), but the choice of which transport to use for a given multiaddr is made at runtime from whatever is installed and registered. No need for the app to import libp2p_tcp — the core discovers it at runtime.
• Installed at runtime — possible but not recommended. Actually running pip install py-libp2p-tcp from inside the process (e.g. via subprocess or an in-process installer) is possible but raises security, environment, and reproducibility concerns. Standard practice is to install dependencies before running the app (e.g. at deploy time or in a container image). If "optional auto-install" were ever supported, it would be an explicit opt-in and clearly documented.

Steps:

1. Core (py-libp2p):
   • No imports of TCP, Noise, TLS, Mplex, Yamux, QUIC in libp2p/__init__.py and no default registration in transport_registry (or make default registration pluggable via entry points (so installed packages like py-libp2p-tcp are discovered at runtime) or a function that “batteries” package calls).
   • new_swarm / new_host accept sec_opt, muxer_opt, and transport (or transport registry already populated); if not provided, document “install py-libp2p[defaults] or py-libp2p-tcp, etc., and register transports”.
2. Optional “batteries-included” extra or package (e.g. py-libp2p[defaults] or py-libp2p-defaults):
   • Depends on core and on the implementation packages (or bundles them). On import, registers transports/security/muxers with the core so new_swarm() “just works” for users who install the extra.
3. Backward compatibility: For a transition period, core can still ship with default implementations but emit a deprecation warning if they are used without explicit registration from an extra; or keep defaults in core but clearly separated (e.g. libp2p/transports/defaults/ that is optional to import).

Deliverables: Clear split between “core = interfaces + orchestration” and “implementations = pip-installable extras or separate packages”; libp2p-bluetooth-style packages can register without touching core.

Risk: Medium–high. Affects install experience, docs, and backward compatibility; should be planned with maintainers and users.

---

5. Summary Table

Phase	Description	Risk	Depends on
1	Capability-based checks (replace QUIC isinstance)	Low	—
2	@requires_connection(...) for protocols	Low	—
3	@after_connection(...) for ordering	Low	—
4	Resolver (pull-based stack building)	Medium	1, 2, 3
5	ProvidesTransport / ProvidesConnection discovery	Medium	4
6	Packaging (defaults in extras/separate packages)	Medium–High	1 (optional)

Phases 1–3 are incremental alignment with the proposal and can be done independently. Phase 4 is the main behavioural change (pull model). Phases 5 and 6 are optional or follow-on.

---

6. Files to Touch (Indicative)

• Phase 1: libp2p/abc.py (or new capabilities module), libp2p/network/swarm.py, libp2p/host/basic_host.py, libp2p/custom_types.py, libp2p/transport/quic/transport.py, libp2p/transport/quic/connection.py (add capabilities).
• Phase 2–3: New module (e.g. libp2p/protocol_requirements.py or in abc.py), libp2p/host/basic_host.py (optional enforcement), libp2p/transport/upgrader.py (ordering).
• Phase 4: New libp2p/resolver.py (or under libp2p/network/), libp2p/network/swarm.py, libp2p/host/basic_host.py.
• Phase 5: libp2p/abc.py, resolver and registries.
• Phase 6: libp2p/__init__.py, libp2p/transport/transport_registry.py, pyproject.toml / setup.py, optional new package(s).

---

7. References

• Issue #395 — Restructuring py-libp2p
• Discussion #1204 — Modularity, interfaces, developer experience
• IO.md in this folder (summary of Transport/Connection/Protocol and pull model)