@Aljoscha good input. Thanks

So do I have to wrap these in an bipf buffer (of tatically known length, nonetheless)

Yes. One could have just directly concatenated the bytes of the values, it would save a few bytes, but since we would like to use bipf for content anyway I wanted to keep this uniform.

Or do I still have to check that they contain the only valid - i.e., completely pointless - byte pattern?

Yes. I would like that the values makes sense on their own. This format is not designed to be as minimal as possible. #tinyssb is a good example of pursuing that.

sequence: number for this message in the feed
Which data type is this? How is it encoded? "number" is not a bipf type.

Thanks that is good input, I have clarified that now.

timestamp: integer representing the UNIX epoch timestamp of message creation
This is a bipf int (32 bit) I assume?

That was a bug in the spec. Its encoding as a double. Fixed now. Thanks

Please specify what an implementation must do with unknown tags.

Good input.

Any change that allows other starting bytes would be a breaking change, i.e., a whole new format

Or a minor update to support a new hash

The content is a free form field. When unencrypted, it SHOULD be a bipf-encoded object.
Please specify what implementation must do when it is not a bipf-encoded object.

Good input.

@Aljoscha thanks for taking a look :)

Just because it hasn't been mentioned yet in this thread: what happens if I start appending to another person's log

I didn't mention that explicitly, but from the code linked you can see that all other things are checked except the signature of the other messages.

You can still easily (and quickly, compared to signature validation) verify that all messages have the same author

Do you mean checking the author field? Or that the signature was created by the said author without checking that the signature is actually correct?

Btw. this optimization is not documented in the spec. There is also the posibility to randomly selecting 1 message in each round and verifying that in full. Then verifying the messages after that one using the same method until you reach the end. It's probably best that each client doesn't follow the same rules. In any case these are just optimizations, you can still verify each message in full (which is what the benchmark does btw.).

Status: In review
By whom? For how long? Under which criteria? Don't tease the poor reader like that.

Like a good stew until it's finished :P Currently I don't expect this to change much so the spec will probably be finalized once we merge that DB2 PR.

The verification section is only local to each message. It should at the very least link to the specification for log verification (valid hash chain, single-author, etc). Which exists, right? =P

It links to bamboo so? :-)

An update on this.

The feed format now has an offical name: buttwoo :)

For bulk validation I decided to go with the solution Dominic mentioned by just validating the signature of the last message.

It supports subfeeds

There is a PR adding support for it to DB2 and EBT. Both are quite far and just need some box2 work before they can be merged.

I optimized BFE and URI2 recently and that gave a good boost.

Validate + add 15k messages to database

buttwoo large: 2.3s
buttwoo small: 2.15s
classic large: 3.5s
classic small: 2.1s

nice! I've been playing mtg over just normal webcam for a few years. Gonna try it this weekend. Thanks for the recommend @punkmonk.

https://github.com/arj03/ssb-exporter

An update on this is in order :)

After a bit of back and forth we settled on a name for a new concept in ssb-crut. Using nextStepData you can now pass in data to the transformation (what you do with each message of a tangle) that will not be part of the final state. We use this for adding types that makes it easier to reason about the different steps. The whole specification for fusion identity is now roughly 100 lines of code. This takes care of everything from schema validation to checking the logic of who is a member.

I also merged in the latest spec change so that things should be a lot clearer. We decided to focus on the basics for v1, so attestation and redirection is for future versions to spec. That being said, there is code for the current draft of those features in the JS module as well.

The last remaining bit is to come up with a proper way to encrypt things. That one is waiting for a larger db2 refactor to fall into place as part of the private groups work.

@gwil btw I build this module that could be interesting to you for set replication: https://github.com/arj03/ecmh-js

Append only has some nice properties. It's a lot easier to sync systems, because you only need 1 number for each feed, the latest sequence, this makes things like EBT really efficient. You could do something like a set sync instead, Aljoscha has worked on that. In any case, deleting data in a distributed system is a hard problem. If you do separate the content from the log as bamboo and buttwoo does, then you still get the nice properties of an append only system, without having to store the content potentially.

I enjoyed reading this blog post (from my rss reader :)) today, glad you posted here about it. I've had a similar experience where I have a vps and I thought, why not self-host a rss reader. So I installed miniflux on it and moved my rss subcriptions over from feedly. I'm only logged in on this laptop and this is a much better setup than before when I had it on my phone. I would check regularly if there was any news and once a day (max) is really plenty fine. The great thing about rss is that I don't check any of those sites as I know they will show up in my rss reader. I wish more news sites would support rss. In general would be nice with more slow media.

The version of ca-certificate was too old so could not torrent anymore :-)

And now for the reboot, wish me luck 🤞

I have an old machine in the basement that I use to watch movies on. Today I had to upgrade it for the first time in 4 years. Guess why?

Hi Philipp. Happy to answer any technical questions you might have related to this. Sounds like a good match :)

Similar to ssb-junkyard?

Sounds sensible

Sounds good

To answer my own question. In both cases, random sampling and bulk signatures, some of the individual signatures that you don't verify could be invalid. And they are part of the chain so you accepted some messages that another peer might not. There is a difference though, in the bulk signature case there is always a chain of signatures that correctly signs the whole chain.

hi @Dominic. Thanks for taking a look :)

I'm looking at the code - does it store the top level values as bipf arrays?

The layering makes it a bit easier to work with. The top layer (butt2 msg + content) is so we can easily send it over something like ebt. The bytes of butt2 msg is used to get the key and the bytes of encodedValue is used for signatures.

The important question: how does batch signing work?

You sign the concatenated bytes of the previous N hashes. That works as a signature of those messages. You chunk them into reasonable sizes in order for a debouncing validation to be able to queue up enough messages to use this optimization.

I think you could make a much simpler approach: since hashes preserve the uniqueness of the hashed data, it means signing the hash is as good as signing the data, and signing the hash of the hash (or the hash of data containing the hash) is also good enough. So therefore, every ssb message signs not just the message content but the whole chain of preceding messages. If you changed one bit in the first message the hashes of all subsequent messages would change.

If I understand you correctly, then why didn't we just check the signature of the latest message in classic ssb as well?

Thanks @Matt Lorentz, I was implementing most of the functionality and the implementation currently is 320 lines. You don't have bipf in go, so would have to implement it, but that is only 200 lines. See this PR where the code is tidied a bit. I know what cryptix did some refactors to support bendy butt which should make adding a new format a lot easier. We did similar things in db2 and ebt and it has really helped a lot.

I'd be happy to answer any questions you or @boreq might have. I think this format should be a really good fit for go and you should be able to get some really nice performance numbers, much better than JS probably.

Thanks for the suggestions @andrestaltz📱. I had to similar things in mind. For the layering something like onion, but that is already used by tor, so not a good option. And for something similar to butt2 I was thinking of shortening it to B2. Then SSB with butt2 would be S2 B2. Probably a bit too cute :) Buttwoo (with an extra o) has a nice ring to it when you say it out loud.

@moid the code is up now at https://github.com/arj03/ssb-butt2. Still some things missing, but getting there.

@Mix Android there are no lipmaa links 👺

And signing the msg keys for batch validation should be fine

I tested the size reduction and it appears that butt2 is roughly 80% the size of classic over the wire.

@moid each message signs itself just like current SSB feed format. What is different here is that you can optionally include signatures that spans a range. So lets say you get the first 100 messages from a feed and the author chose to also include signatures for every 25 messages. Then you can check the signatures on message with sequence 25 that covers seq 1-24 and then the signature on the message 25 itself. Similarly for sequence 50 you check sequence 26-49 and then the direct signature on message 50. That way you end up checking 8 signatures instead of 100. This is only for the signature part, you do all the normal checks on the other messages including checking backlinks etc.

We have this kind of debounced validation in db2 already so we should be able to leverage this for the above.

Some numbers from the prototype:

checking 1 feed of 7797 messages

db query: 934.799ms
validate classic js: 1.497s
validate classic rust (chunk size 100): 643.784ms
validate classic rust (chunk size all): 367.473ms

extract data: 57.453ms
single message validation: 713.28ms

next two are validation in bulk:
verify simple & hash: 61.372ms
verify signature: 61.289ms

encode butt2 to bipf for db: 78.488ms
encode classic to bipf for db: 211.728ms

I'm currrently tidying up the prototype and splitting out the code into a proper module that will hopefully be public within the next week.

Yep, the insurance industry has always had golden days in a low trust environment. It's been this way for thousand of years :)

SSB Butt2 feed format

First of all about the name, all the creative energy went into designing the format so I went with the default thing of just calling it butt2 :) Happy to entertain suggestions.

I have been working on a new format for some time now and have a working prototype to make sure that it performs as expected. The reason for a new format are many, but what really made this something we can actually roll out to existing clients was the work we did in the NGI pointer grant on meta feeds.

Instead of copy pasting the whole spec I'll just highlight some of the key points:

Butt2 is a new binary feed format for SSB. The goal is to be simple, easy to integrate into existing implementations, be backwards compatible with existing applications and lastly to be performant.

A benchmark of a prototype shows the time it takes to validate and convert for storing in a database to be reduced in half for single message validation. While bulk validation with a signature for every 25 messages takes roughly 1/7 the time of existing format. To put these numbers into perspective, on an Intel i7-10510U it takes 3 minutes and 20 seconds to validate and convert 1 million messages, while butt2 takes 28 seconds.

I have a pretty good idea of what is needed for this to work in ssb-db2, but would love to hear from other implementations.

@andrestaltz cft and I both have been working on new feed formats (with different constraints) and later exchanged ideas over email. So to answer your question: no.

Exciting, are shirts on their way?

Improve semantic delivery of old events to clients to ensure that when old nodes come online clients don’t see lots of old messages.

:-)

@Powersource (phone) no protection ;-)

You should try Rome). Especially Flowers From Exile, sooo good. Also Riverside, Porcupine Tree, Steven Wilson is quite nice.

Should also be a tad faster indexing :)

I'm trying to run this on a Raspberry Pi Zero2 W that should support 64bit and armv8. I tried flashing the image, but on startup I only see the colorful rainbow boot screen. It doesn't seem to want to boot.

I'd like to test :)

@Mix Android db2 has transaction support. The messages needs to fit into 1 block (so 65k), but otherwise it is atomic.

A quote from The Dawn of Everything that I have been thinking about lately:

What makes the Roman Law conception of property - the basis of almost all legal systems today - unique is that the responsibility to care and share is reduced to a minimum, or even eliminated entirely. In Roman Law there are three basic rights relating to possession: usus (the right to use), fructus (the right to enjoy the products of a property, for instance the fruit of a tree), and abusus (the right to damage or destroy). If one has only the first two rights this is referred to as usufruct, and is not considered true possession under the law. The defining feature of true legal property, then, is that one has the option of not taking care of it, or even destroying it at will.

We live in a world of deep fried consumerism.

Totally.

I think this comes back to setting expectations. The MIT license does this pretty well in that it's pretty hands off what people can do with it and doesn't set a lot of expectations. There is definitely the cultural expectations as you say and those can be hard to counter.

Yes to this. I also think there should be some kind of compensation and accountability built into this. If you compare this to a democracy then the people elected are fairly compensated for their time. And maintaining a commons, be that recreational areas a the city or a software project needs to have a track record in the community they serve for this to work.

soooooooooooooo looking forward to seeing this

Right, a very good subfeed candidate would be "profile" abouts. That would mean you could really quickly onboard someone as 500 feeds * ~5 about messages can be done in roughly 1-2 seconds. After that you could start getting what other data you might be interested in.

#strategy2022

For 2022 I want to support fellow butts:

• @mixmix on bringing ahau to ssb-db2. In general interested in seeing ssb-crut used more and helping fixing bugs
• supporting @andrestaltz with database compaction in ssb-db2
• provide support for @zelfs ButtCast adventures
• finish a v1 of fusion identities. Will need to get back to that one again together with @Mix Android

I'm quite interested in #peachcloud as well. I shut down my vps recently, so would love to have a pi running at home with rooms 2.0, maybe as a continuation on groupies.

@Frank I did also micro-benchmark async append only log (the lowest level of ssb-db2) here. Note those are from a while ago, before we decided that flume compat was not super interesting.

@Mix Android there are a few things wrong with about messages. One of them being that they don't indicate what they reference, so you have to have the referenced message in order to know what kind of about it is. Secondly lets say crut becomes a hugely popular way to build applications, then you are going to have a ton of about like messages. They could be from a number of different type of applications. Depending on the application, you might even have more of these "change" messages that normal messages. In any case it would be better to use specific app/update type of messages and put those in the subfeed related to app, than to put a lot of unrelated messages into the same feed.

yeah it seems like we will finally get some decent cards in a normal set again :)

check localStorage :-)

yeah sorry. I had to shutdown my vps.

This could be 2 types here right? One that would auto-follow similar to peer invites and another that allowed bypassing the firewall, maybe just for one session?

I imagine the overhead of this is much lower than SHS seeing as this is kernel space. It seem that it is possible to get the public key from wireguard for an open connection. This would allow one to use noauth instead of SHS and rely on wireguard for the encryption. This should also play quite nicely with network identity. Wireguard doesn't seem to do automatic NAT hole punching so tor hidden services still has its uses. In any case this is pretty cool. Thanks for sharing.

As for the offline aspect that mostly becomes a problem if you need to coordinate on something (typical example is coins and double spending). That is only one class of problems, it might be a lot more interesting to think about things without scarcity, think CI for software or anything related to simulations.

I love that idea @Rick Carlino Maybe instead of Solidity you would just run wasm. And it doesn't have to be limited to compute, could just as well be storage. In society we use trust as that lowers the cost of transactions (besides making things nicer overall). I think there is a huge potential in exploring that idea as a most crypto bro solutions go the other direction of minimal trust resulting in insane overhead.

Amazing! Posting from manyverse desktop :)

@Michael Lyle snapshots are a great idea. One of the things that previously has been hampering anyone working on this is the classic feed format has a limit of 8k. You could of course do them as blobs. One place where this would be quite natural is in crut. There is a ton of previous work on this topic in distributed version control systems.

Hello @Michael Lyle

One thing we have been working on during the ssb pointer grant was meta feeds which is a way to structure your feed into a hierarchy and attach metadata to different parts. This means you can do selective sync and things like ephemeral (sub)feeds. It also open up for the ability of different feed formats tailored at different use cases.

Aww you are too kind. I also have enjoyed working with you, your attention to detail in reviewing PRs is really phenomenal.

All good bugs have a name, I propose we name this one the Tu´bug.

Happy holidays 🎅

Gløgg & klejner at the office

You can find a recipe for the buns (klejner) if you want to make them at home. The ones in the picture were from the local bakery but the gløgg was homemade by a colleague.

Yeah housing prices is one that really gets me as well. It's not like people have a choice if they want a place to live in or not, and now it has become an investment opportunity for the rich. It didn't get any better when I read about some of the earlier examples where this has played out in EU.

I noticed this PR sitting idle that gets people to join by using a room instead of a pub. This points to https://github.com/ssbc/ssb-server/wiki/%23ssbrooms that might need a bit of updating now we have rooms2. I'm not a member of https://gitlab.com/ssbc/scuttlebutt.nz so I can't help merge these request.

Ping @Mix Android @mix.desktop @andrestaltz @cel

And if you have any questions, just shoot :)

@SoapDog (Macbook Air) note that the latest version of ssb-browser-core should be much closer to a vanilla sbot with db2. The only diff should be the singleton.

@Mix Android yes fusion identities is up next. I was just cleaning up a PR to jitdb to fix a bug in bipf, but that should be more or less ready. There is this PR: https://gitlab.com/ahau/lib/ssb-crut/-/merge_requests/16 I'd like to have reviewed. That would be good to have in before starting fusion as the plan is to do them using crut.

Wikipedia & top of github.com/ssbc updated with links to dev.scuttlebutt.nz :)

Yes, I'd like that. You have more information so can factor that in into things like blocking etc.

@andrestaltz📱 I don't know that much about these native bindings, I see you are making some progress in the issue you are linking. Maybe you can check what the overhead is for transferring data between Zig and node first. That way you have a baseline.

@mix.desktop It is, the only pain point was that SimpleSet doesn't seem to work with objects?

Ok crut is pretty sweet. I migrated the per group configuration and is now able to define rooms per private group:

@farewellutopia-dev I wonder what the requirements are. Is this a replacement just for < 5 MB blobs? I guess we want to know better who was sending what, instead of doing just flooding. But maybe that is separate from moving the bits around? Hyper has been integrated with the SSB eco system before, so that is one candidate. We don't need to use the whole peer discovery part, we already have that.

Anyway, keen to hear what you think the minimal requirements are?

One of the good things about the blobs protocol being so special is that it can be replaced with something else. The only thing the current messages do is reference a hash. Where you get that hash from doesn't really matter. So the more we can experiment with this the better. I'm also not super fond of the current blob protocol.

Seems like the last two bugfixes made a big difference so here we go.

Groupies

Groupies is a tech demo showcasing private groups for SSB running directly in the browser using ssb-browser-core with no installation required. The demo is a primitive chat application that uses meta feeds to split each group into their own feed for each node. This means that you will only store data for the groups you are a part of. Furthermore the classic follow/block paradigm is used for replication within a certain hop distance. Data is transferred between nodes via a rooms server. This is just meant as a tech demo, I don't plan to keep developing this. Use cabal if you want a offline-first chat application.

What I'm almost most happy about is that this uses ssb-browser-core 13 where I removed most of the stuff that made browser-core different from the normal ssb stack. It's also pretty snappy, give it a try :-)

@Luandro Pàtwy in due time, need to make sure it works properly first :)

@Mix Android indeed

#buttchat #private-groups

This is really exciting. Are there plans to support rooms as well on peachcloud?

Yes see fusion identity. I plan on working on that after I get private groups into a decent shape.

I'm thinking of reading it, although from the cover there seems some overlap with Against the grain by James C. Scott that I already read.

SSB DB2 2.7

I have just cut a new release of SSB DB2 after merging in support for box2 using ssb-db2-box2. This means we can now do private groups and encrypt bendy butt (meta feeds) messages. @mixmix has begun looking at what needs done in order to run ssb-tribes on top of db2 here. And I recently got it working in the browser as well. I took special care in db2 to make this as performant as possible by doing the minimum amount of work needed. This should scale pretty well even for a lot of groups.

Hold up… wonder how that will work with pubs… hmm, to discuss

One way this could work is to have 2 keys for a group. One for the replication peers and one for the participants. This way a pub or backup node could be in the replication peers (and see the metafeed message), but not in the participants (and decrypt the feed contents).

Absolutely, as for your specific question I'm a firm believer in consensus for small groups. I don't have specific material. I would say that, especially in the beginning, time spent there is really well spent. Also aligning interests is super important and consensus is one of the tools for that.

RE: design by committee. Can you be a bit more specific here? On the top of my head you might like Design of Design, The: Essays from a Computer Scientist by Fred Brooks.

Thought it would be good with an update on this. On a local machine with basically no latency, partial replication is roughly the same speed as full replication except it replicates only around 30% the number of messages. This is with indexes, so there 2x overhead in the number of messages. If this was a new feed format instead where contacts would be neatly put in their own feed under the metafeed, this would be roughly ½ the number of messages.

Why is this not faster? First of all this is a raw throughput test. So while full replication is just as fast, it consumes a lot more cpu and bandwidth. Partial replication on the other hand, for each feed, first needs to discover the metafeed. Download that, find the index feeds and replicate those. When we tested this in manyverse the app was quite use-able while doing an initial sync. Secondly this is on a local device, it would be very interesting to test this on wifi between a phone and a desktop computer or to use netem.

Overall I think this mostly works (90-95% there). It is very dependant on how many machines in the network start using metafeeds, which is why manyverse on the desktop will be a big deal.

From a local exhibition on modern day work

#graeber

Still deep in the netsim testing of the partial replication changes, it does look like there is light at the end of the tunnels, so we should have some numbers to share soon.

In other news, today I merged and released the ebt changes for partial replication as 8.0.0. Go is also getting similar ebt changes soon.

I updated the main site so that it now includes are the specs, videos and audits & research. Worth noting is Eileens dev UX report and @keks and Justins audit report on partial replication including a formal analysis of the fusion identity protocol using the Tamarin prover tool.

Yeah so in order to keep the same shape of things, encrypted messages are decrypted and returned as bipf so they can be read in-place as any other message. This is all handled in ssb-db2/indexes/private.js.

MAD SCIENCE!

@Mix Android

I wonder if this compresses so well is because of some of the same words being the multiple times (set, previous, ids). Basically a lot of this tangle stuff. So what I would try to do is to do the same for your full log.

Another question I have is how does this interact with db2?

The log is stored encrypted. In the case of this brotli, you would have to know that the feed is compressed, so you have to decompress first of all to validate. Then whenever you get it from the database you decompress as well. Because the compression time is so large, I don't think it makes sense to store it decompressed.

One thing you can do with meta feeds is that you can attach metadata to it, so you could say that this feed is compressed with brotli and the other end, if it supports it, could then chose to replicate and handle that feed accordingly.

yum yum 🍕 🤩

You could argue that for a single person with multiple devices the difference is probably not that big, but consider a fusion identity for a larger group, say the ngi pointer team, then these things becomes important.

@moid there definitely is overlap, I think the most important distinction is what guarantees they provide. Metafeeds, because you only have 1 writer, can have a simpler model to dictate what the truth is. Like if a feed is no longer used it can tombstone it. Fusion identities on the other hand are more complicated because you are dealing with multiple physical devices. We didn't want to end up with a leader, so instead we ended up with: if something happens the identity is gone and you have to create a new one. Because the identities are light (basically just a read/identity key), its not that big of a deal. The biggest problem is determining what the new fusion identity for that person is, this is where we have redirects and attestation.

• Added transaction support to ssb-db2 and async-append- only-log. What databases doesn't have transactions these days? 😏

• Wrestled a bit with ssb-ebt to shake out the (hopefully) last bugs. For the gory details on how promises might bite you in the 🍑

• Updated 8k-demo to the latest dependencies and made it a bit more stable with > 10+ connections. Lets see. This bullet point doesn't end with a emoji, so 🌼

The link to the repo ssb-migrate 😏

How do you keep of state of what has been applied? And does a migration need to be idempotent?

The main question I have, that I’m not clear on, is how partial replication changes validation of the messages. One can still validate the signatures of the messages but not the other properties. For example how does one know a feed it forked?

When doing partial replication using indexes it is true that you can't know for sure whether the author left out messages. We had a design that could help with that, but its complex. What you know for sure is that the author wrote the index and the indexed messages.

I see indexes as mainly something we use for classic main feeds. Going forward we now have: a way to introduce more feed formats and to split data into multiple feeds for different use cases, like contacts and specific applications (git, etc.). And these feeds will have the normal linked properties, might even have more properties when using something like bamboo.

As for the forking aspect that is in general a very hard problem to solve. I don't think the addition of metafeeds changes that very much. It was a problem for classic feeds and is still a problem. What I think might help this is when we get fusion identities implemented. Fusion identities means your never really have to share keys. Leaving the forked feed mainly a problem of backup. And in that case I think a proper: "save my feed & latest sequence(s)" + restore from that and only allow posting once you have all that data should be safe.

Finale month of the #ngipointer grant. The pieces are starting to fall into place.

Bendy butt, Meta feeds and index feeds are more or less complete. This means we are focusing on getting partial replication between nodes working with these building blocks. I just finished a quite big refactor of EBT to allow it to replicate other things than classic messages including bendy butt (in binary) and indexes. Next up is using replication scheduler to do the orchestration of what feeds needs to replicated how. And finally putting that into netsim for proper performance numbers.

While it might be a bit silent here, we are busy getting the last pieces in before the deadline. I can't think of a better group of people to be working together on this. Its so great to see the amount of teamwork happening behind the scenes.

Fixed the date ;)

@Timothy Bradley the fusion identity is not able to produce anything itself. When you send a PM to the identity, a reply will be from one of the feeds of the fusion identity. The question remains, what happens if you send a message to a fusion identity and later you get a message that is it now tombstoned. From a security perspective you should expect that all messages written to the fusion identity could be comprised, even earlier messages. Then again that is not that much different from another account being compromised. There is a bigger attack surface because you have more devices, on the other hand you actually have a mechanism for telling the world about that. And it doesn't have to be only a compromise, it could even be like this was my old identity, now I'm moving to this new identity.

Demoed the 8k demo an hour ago at #svendsolar

8K demo is an example SSB application running purely in the browser using ssb-browser-core. The aim of the application is to showcase some of the things we have been building during the ngi pointer grant.

8K demo works by allowing users to create their own applications and share these together with the data to other users connected to the same room. The name 8k comes from the message size limit, meaning applications can be no larger than 8192 bytes and demo refers to the golden demoscene days were packing a ton of stuff into a tiny file was an art in itself.

8K demo uses meta feeds to store information in different feeds. By doing so allowing for partial replication by selectively downloading the feeds of a peer you are interested in.

There are some sample applications here for inspiration of what can be build including a news app and mixtape built by @SoapDog

You can try it out here.

@Laatikainen ordered one buddy. Size M thx.

@Timothy Bradley the main problem is that once a key is compromised its very hard to do anything sensible. fusion identity would allow you to first say that the old key and new key are 1 identity and then later tombstone that identity and redirect to a new fusion identity only containing the new key. The good thing about this setup is that you can specify what happened in the redirect.

Ugh, so patchwork tells me it has been 2 months since the last update. Summertime took a good chunk of that. Was good spending time with family in the 🌞 🏖️

Anyway so what has been up. The last weekly meeting was more or less exactly 2 months before the deadline so with that in mind we decided to reduce the scope of the partial replication a bit in order to get something working properly instead of a ton of half-working code. This means we will be focused on only doing indexes for you own main feed. Another one of the motivations is that manyverse on the desktop has been moving steadily forward and with that, the need to index other peers feeds decreases quite a bit. Adding a new feed format is a ton of work, its pretty crazy actually. I have come to appreciate what can be build using meta feeds, not only for partial replication. The remaining tasks that we are working on in JS land is in this repo. The major tasks left are:

• finalize meta-feeds module including validation
• finalize bendy butt support in db2
• feed replicator (to use the indexes)
• netsim simulations of different scenarios for performance and cross platform testing
• example applications

I'm really happy that we can start sharing more code between ahau and #ssb-ngi-pointer. I recently refactored some of the code from ssb-tribes out into a separate module called ssb-private-group-keys and ssb-bfe spec has been getting a lot of attention to make sure if it something we can use in both projects. This means box2 support in db2 got a lot closer to becoming reality.

Lastly I'm working on a example application that will be showcased at #svendsolar 🦀 using meta feeds to build fun stuff that is not directly tied to the ssb social app use case. More on that later. Currently in ⌨️ 😼 mode.

Hey @Timothy Bradley what do you mean with insecure encryption? There will be a forward path for upgrading your main feed to another main feed. The main benefit being able to use another feed format.

Usages:

• Can mention a fusion identity and all members can use that as notification

😃

I think there are two things here:

• Should we use URI's for never things and try to limit @, $ and & for the classic format. This thread I think is a good example of why what would be a good idea :) I would like that the libraries we use like ssb-ref hides away this complexity if we do go down that route.

• How do we handle things that don't neatly fit into our message, feeds, blob world. Private groups, p.o. boxes and fusion identities come to mind. Right now a private group is a message type in TFK/BFE. What is a p.o. box even? It's not really an identity, it's more like a key pair. I was having a conversation today with keks where this came up and thinking about how we categorise them will help clarify and communicate what they are.

The one right below the sentence: The new meta feed can contain the following messages (described as bendy-butt bencode dictionaries)

@Powersource (phone) I don't think that will become a problem, like for indexes we have a sub meta feed. See this spec for an example of how one can structure a meta feed.

There was no secret meeting 👻 I have only ever communicated with Kyle over github. He took the initiative to check if we are complying with the different licenses.

I don't have any grand plans for browser core. Blob-files should be moved out of that repo anyway, so the licensing is not a big problem there. I think @Kyle Maas's Development Thoughts can better speak about ssb-browser-demo that he has spent a lot of time and energy on.

@happy0 I recently uncovered a race condition in ssb-ebt that has been lurking there the whole time. Try delaying the conn start a bit and see if that helps. Also are the two nodes following each other? -1 should mean it does not want to replicate a feed.

Thanks for starting this thread @mix.desktop

1. what licenses do you publish with for SSB work?

I have mainly been using Beerware license and LGPL.

1. why have you chosen what you’ve chosen?

The first FOSS software I did was only GPL. Over time I have seen that it matters more what relationship you have with users of you code than the actual license. Because of this I like Beerware because it at least tries to communicate that hey there is another person at the other end, not a corporation with minions churning out code. For the #ngipointer work everything has been LGPL because that seems like a good fit for libraries and is FOSS complient which was a requirement from the EU.

1. what experiences have you had as a result of license choices?

Recently I have run into a few situations where AGPL requires me or @Kyle Maas's Development Thoughts to change license or remove packages: rusty validate in db2, ssb-blob-files, gatherings. I have never really taken that seriously but sooner or later one has to.

I think for the software we are building here where there is a high degree of autonomy of peers built into the very design of the protocol makes it less likely that an extractive company would come along and built something on top of this.

What I value the most is that people working on this will be compensated fairly for the work they do so we don't end up in a extractive open source consumerism model. I think that has more to do with consistently delivering high quality that people or organisations value enough to support. The work you have been doing as well as manyverse are good examples of this.

@punkmonk correct to the last point. ssb-identities don't have any relationship between feeds (on purpose). Meta feeds is meant to be on a single computer to make it easy to split data for different purposes into multiple feeds. For that purpose you then don't need to use ssb-identities.

Yeah I like what @cblgh wrote. add should work fine for adding messages from any feed. That is the same way it works if you get a message over the network, like with EBT. The pub that you add the message to needs to have the latest messages, but that shouldn't be much of a problem considering the pubs would be highly connected and replicate messages often.

This because the old log still exists is because:

sbot.db2migrate && sbot.db2migrate.doesOldLogExist()

meaning you migrated the old log but then you need to make the switch to only use db2, you do this by moving away your old log. Not sure what profile you are using, if you still want to use stuff like patchwork which uses db1, then you should be able to use the same add method in db1.

Ran into this article by bunnie about Building a Curve25519 Hardware Accelerator. Seems to be used in Precursor. He is testing this against the curve25519 dalek #rust crate. Seems like that would make running SSB on that device a lot faster. Really interesting stuff and worth reading if you want to know more about ed25519. I learned a lot.

@Luandro Pàtwy @Hiure it seems there was a bit of activity in the repo and things are working better now?

Also here is a webpack config that I have used to compile browser core so we could test it with rusty wasm validation.

@Hiure try having a look at https://github.com/arj03/ssb-browser-example. I made a small example to get people started :)

Can I be the accountant then? ;-)

That is quite impressive. I love how little code this is overall.

Trying to debug this I see that the API can be much better, especially if there was a small example project one could fork. The problem was that the code expects a getSSB call to succeed before it will do the callback. This is best done with getSSBEventually. In browser-demo these are all over the place so I never saw this problem before.

So thanks for trying things out and reporting back.

Sidenote:

When I try to npm i the project npm gets angry and spits out this nice error :-)

npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! npm ERR! path /home/arj/dev/ssb-chess-browser/node_modules/ssb-chess

Might be related to a really old version of core-js that is pulled in by depnest, not sure.

Thanks for joining @moid @glyph and @cblgh, was lovely chatting with y'all.

Moving forward with bendy butt (the meta feed feed format). Thanks to test vectors from @cryptix we have the happy path of encoding and decoding covered. Been working an a module to use that so that it looks something like this:

sbot.metafeeds.getOrCreate((err, mf) => {
  // lets create a new chess feed
  mf.getOrCreateFeed('chess', 'classic', (err, feed) => {
    sbot.db.publishAs(feed, {
      type: 'chess-move',
      ...
    }, (err) => {
      if (err) console.error(err)  
    }))
  })
})

Still a long way before this can be used in production, at least we can persist these new messages in the database and get them out again. We have been talking about building small example applications to show how these things can be used to build things.

The work on bendy butt meant we had to come up with a spec for binary encoding SSB concepts. Lets a thousand butt formats bloom 🌷

As for replication, EBT has supported binary tranfers since version 8, and we have added some RPCs to be used together with meta feeds for partial replication.

Very much in flux all of this, thought I would share what I have been up to since the last update.

Donated to this and tor

One knows this is not a CS article when the conclusion is multiple pages long ;-)

Some tidbits and comments:

To the extent peer production has thrived, it has continued to rely on the corporate firm to supply (and capture) its economics. Rather than diminishing the stature of the firm, ...

Maybe not so surprising given firms has had at least a hundred years to perfect that skill.

Rather than continually adding restrictions, peer production licensing regimes might be rethought from the ground up to cultivate a deeper reciprocity.

Not sure if licensing is the issue here, but rather reciprocity between people. Neoliberalism overall has been very good at stockpiling wealth at the top of the pyramid at the expense of everyone else.

Thanks for hosting @cel

This is really amazing! Great work

#specsgalore

Sure, why not :)

Thanks for the recommend. I skimmed this when it was posted in Martins patreon newsletter. I'm not very deep in crypto so a bit hard to make any kind of judgements on the paper. @keks might find this interesting.

Welcome back @happy0 @Many Gordons! So glad seeing you active on SSB again. Feel bad about you feeling guilty. Would like to take you up on your offer of a game, but you know that I'm in the top 0.01% worst chess players in the world 😏

Seems like we will soon get a new SSB flavored card

Some updates on this. Had a call with our security audit team (@keks & justin) and we discussed using a special feed format for meta feeds. Meta feeds needs to be stable as it can outlive the main feed allowing feed rotation. By using a different feed format than ssb classic we open up the possibility of implementations with only binary feed formats. Also spec'ed a mini query language to be used for describing the contents of index feeds.

Biggest diff in using browser core is probably that it uses db2, so all queries are different.

working on it

If we were to think along those lines I think it is important to look at what people could steward that process. The obvious candidate for Go would be @cryptix but he will be working full time after the ngi grant. Maybe @cblgh has an interest after becoming go zen master with the ngi grant? Less clear about the rust situation. Maybe @piet? @glyph has been working on a rock solid validate implementation for the ngi grant.

✌️ 🌞 🍕 😃 😄 😏 🌶️

I'm loving everything about this thread. Great work @SoapDog (Macbook Air), patchfox is really unique.

• Started working on meta feeds in JS, just the messages, seed values etc. of the spec. Feels good to be coding again ⌨️ 😏
• Extracted the core of what @Mix Android and I have been working on over the last month for the fusion identity spec. Still some things to work out, but I feel it is getting into a good shape. Scoping this was quite important otherwise you can spec this thing forever.
• Supporting @cblgh on the network simulator and @glyph on rusty validation. I'm so happy working with them, not only are they excellent humans they also produce great code :)

Yeah start a ssb-server2 project sounds like a good idea. I like the idea you posted about using ssb-cli for the cmd interface. Then ssb-server2 would just be a collection of secret-stack modules. Since both #ssb-browser and manyverse is using db2 we took care to upgrade the different modules like ssb-friends, ssb-conn etc. Happy to help if you need any help or have questions.

Wonderful. Glad those old posts can still be of use. I'm betting adding images will be a lot easier as you are in the browser directly.

@punkmonk @punkmonk.phone

Should new work start from 15.3.0 or branch off of main?

Depends on what you mean with new work?

Patchbay OC also has some money. ping @mixmix @Mix Android. Maybe it would make sense to combine that somehow?

@abekonge.often yes. In essence there is a big difference in initial trust in those models.

@abekonge.often I like where you are going with this. I'm wondering if those two circles of connections and messages would be better build as two separate apps instead of trying to cram it into one.

Went to a demonstration a weekend or so ago. The demonstration was against a new highway that will run over a island outside the town I live in. It started with talks in the park and then we biked to the fairy that sails to the small island.

Was wonderful that it was an event where people of all ages were welcome, so we went there the whole family. After harassing drivers all over town by blocking the crossing roads (300 bikes does take a while to get through) we ended up on the other side for more talks and music. All in all very civil, no cops :-)

It's interesting to be alive at such a turning point in history. This is at the core of the climate crisis dilemma, should we continue as normal and destroy ever more nature by turning it into concrete? One way or another we have to adapt.

@abekonge.often SSB and hops maps very well to a mesh setting. And as Luandro said if you are on the same network then you should automatically start replication, so you don't really need pubs and I really love the idea that the social graph would map very well with the physical.

Then again it really depends on what you want to do with it, if you just want to do SSB (like patchwork) app where messages are async passed around the network and eventually end up where they need to then that should be pretty much work out of the box. If you on the other hand want to do something like being able to do an audio call through the mesh network using SSB tech on the transport layer, then that might also be possible. Something like sending binary data over EBT (which does a spanning tree in a network). Could be a very fun project ;-)

@Luandro Pàtwy db2 is just a database so in theory it should support bamboo as well. We didn't want to tackle bamboo in the first part because you still need to support the old format unless you go total greenfield, which for some applications might be a good idea, but was not our goal. That messages are stored in bipf is just an internal representation to make queries faster. I like bamboo very much and would love to use that as a feed format, meta feeds has a way to encode metadata about feeds including their format type.

Thanks for sharing. This is highly relevant to the fusion identity spec. cc @Mix Android

The secret of Scuttlebutt is in the soil

Another t-shirt design coming up? :)

@Luandro Pàtwy first to answer your question. SSB has always had the concept of OOO, meaning getting a message out of order. The message is valid in itself given that it is signed by the author. Interestingly if the messages themselves includes references to other messages that belong to the same subject (tangle), then you don't really need all the previous messages. This is what tangle sync is about. That is one form of partial replication. And if the messages are completely independent then getting them OOO style is completely fine.

Regarding message size I would probably look into bamboo and bamboo-rs that should work much better on lower powered devices. I believe @piet knows more about this.

I also remember that @cft had a fascinating talk on a related topic at the Basel meetup where one of his points if I remember correctly was that because the messages themselves include integrity, you don't really need it all the other layers of the stack to make sure that message are not corrupt, arrive in the right order etc. Can't find the slides now, but I'm sure he has something interesting to add here as well.

@KawaiiPunk you don't really need to install it. It doesn't use your main ssb folder, everything is running inside the browser. The easy way is that you go to the one hosted on my pub. You can also run it yourself so you can verify that nothing has been tampared with by checking out the latest version from github, doing a npm run build and then running a local http-server from dist/

SSB browser 5.5.0

Saw it was a few months since the last posts on #ssb-browser so thought I would write about what has changed. ssb-browser-core has made it to 10.0 with the latest release. Browser demo had 5 releases with these bigger changes mostly from @Kyle Maas's Development Thoughts:

• DHT support
• Add pt-BR translations (thanks @Luandro Pàtwy)
• Threads (like a forum) view
• Add full text search
• Show follow/unfollow in Profile and Notifications
• Display blog posts
• Groups filter for Public
• Show thread participants blocking you when you reply
• Synchronization progress bars
• Add offline mode

It also has some under the hood changes with new where() syntax in db2 and performance improvements in jitdb. Very happy to see @Timothy Bradley contributing some great PRs to some of the lower levels of the stack.

Wanted to put that version out there before we start working on proper partial replication.

Made a PR for JITDB that improves the performance of prefix indexes by up to 10x for queries like getting the latest 10 messages of this: and(author(x), type('type')). That query is now 15ms on my laptop running against a full (1.5e6 msgs) database.

Had a call with Mix about fusing together feedless identities with the work done in Ahau on identities. Very excited about this. Seems like we'll be moving forward with defining a proper spec. Notes from the meeting in case anyone is interested.

Thanks @Daan for doing this last release 🌅

Yesterday was a good day 🌞

Don't remember if I watched David Graebers talk on From Managerial Feudalism to the Revolt of the Caring Classes before, but I read the book a year or two ago. Good stuff, can recommend the video even for people that already read the book as it gives a broader perspective.

Also finished reading The Power of Partnership which deals with partnership on multiple levels, from partnership with yourself to your partner, to children (if you have any) to your local community and national level. It contrasts that model with a domination model. The book is not too long, can recommend.

@cel-desktop thanks for the write up about DID. I'm trying to understand how the system works, so bear with me ;-)

If I understand this correctly, the alsoKnownAs works the same way in as the solution I proposed in feedless identity in that it requires consensus, right? Also is the mechanism for revoking roughly the same?

A controller is expected to immediately revoke any verification method that is believed to be compromised.

@Timothy Bradley both meta feeds and feedless identity requires mutual consent in order to be linked.

@Mix Android I'll leave some comments here responded to your audio message before I forget.

• Tangle: it already is :) Might be a bit hard to see because the line is so long
• Authorization and private group membership:
  One thing I like about the solution above is that they behave very much like ordinary identities in that you reference them by the id. The ID can be compromised, but again this is not really that different from an ordinary feed. I would argue that we have a stronger model here because we have tombstones.
• virtual identity (cycling keys): I could maybe see the argument for being able to cycle keys, I'm just very afraid that going that down that road will lead to a lot of hard problems and edge cases. Like what happens if two people try to kick each other out? One thing that was important for me with this design was to keep it very simple to avoid these things. The question is if its too simple. I would argue that what we have here enables some very interesting use cases that people have been wanting for a very long time.

Very keen on having a call on this, but wanted to give you some more context first.

@moid right, I didn't explain that very well I see. The syntax for indexes would be like this:

{ type: 'metafeed/operation', operation: 'add', feedformat: 'classic', id: '@index1', query: 'and(type(contact),author(@main))' }

So it would be specified in the meta feed what the index covers.

Tangles are a bit of a special case. If you want to exchange that between two peers then I think a better option would be to use set replication. I did a small talk for our advisor meeting about tanglesync and also wrote down some thoughts here.

@mixmix @Mix Android would love your feedback on this :-)

Feedless identity

The idea for feedless identities and the name came out of a few conversations with Andre around meta feeds and how we can create a solution for same-as.

I should probably start by saying that same-as is something that a lot of different people have been trying to solve many times before. So with that in mind let me try and sketch anoter solution anyway ;-)

What we wanted was 3 things:

• An identity to refer to
• A member protocol including a way to deal with removing members
• A way to send private messages to all member of this identity

Feedless identity is a concept where multiple regular identities are linked together with a specific purpose, such as belonging to the same physical person (same-as). The identity will have keypair that is shared with the linked members. The reason it is called feedless is because, as the name implies, all messages related to the identity is posted on the feeds of the members of an feedless identity.

Each identity should have a feed containing messages related to feedless identities it is linked to. Each feedless identity works by consensus, meaning as long as all the members of an identity are mutually linked, the identity is considered valid. Any member of the identity can revoke the validity of an identity by creating a tombstone message.

To create a new feedless identity, a keypair is created and the identity is announced:

{ type: 'feedless/create', identity: '@id', name: 'arj' }

The identity can then be linked between identities:

{ type: 'feedless/link', identity: '@id', from: '@mf', to: '@othermf', tangles: { feedless: { root: '%abc', previous: '%abcd' } } }

Once @othermf posts a similar message, the identity is linked and the creator of the identity should send the private key of the identity to the new member. Messages of a feedless identity are tangled using the initial message as the root.

The identity can be extended with members by having all current members linking the new identity and the new identity linking back.

Any member can revoke the feedless identity by posting the following message:

{ type: 'feedless/tombstone', identity: '@id', tangles: { feedless: { root: '%abc', previous: '%abcd' } } }

Once another member sees this message they should also post a tombstone message, this is to make it harder for an adversary to try and keep the identity alive by withholding new messages after one of the identities has been compromised. It is up to the members to create a new feedless identity as the existing is now considered void and should not be used.

Lastly the name can be changed in a consensus fashion as well:

{ type: 'feedless/name', identity: '@id', name: 'arj', tangles: { feedless: { root: '%abc', previous: '%abcd' } } }

A new identity added to the feedless identity can merge these messages by including the name in the link message.

These feedless identities thus act as public groups. They work best for small groups where the members should be publicly known. For larger groups, private-groups should be considered instead.

It might also be possible to operate with identities where instead of full censensus only a quorum is needed. Imagine you have groups of groups, where instead of having each member of a feedless identity ack a link between the identity and another linked identity, you would only have say 2/3 of the members do that. Another thing to note about groups of groups is that in the consensus form they end up being the same as just a group of all the individual feeds.

Messages to the feedless identity should be posted as box2 messages. There is a large overlap between this and private groups implementation wise (keystore, reindexing etc).

@moid exactly. Where it might make sense to know the type up front is for index feeds. So that is very good feedback, thanks. Will have to think it over.

@moid you are correct that the applications feed is a meta feed with another feed format (bamboo). I'll change the name to feed format. Thanks for that feedback.

The example could have been clearer if a feedtype was added I agree, yes. I'm just wondering if we need to specify that up front or if it can be deduced from the content.

Did a bunch of work and thinking related to ssb meta feeds and wrote a post about it. I'm pretty happy about the current state and would welcome feedback before we start working on this next month.

SSB meta feeds

As part of our work on the #ngipointer grant, over the coming months we are going to explore a new concept in SSB called meta feeds. The main idea is to provide some more structure to the messages of a feed. We do this by creating multiple feeds with different purposes belonging to the same identity and linking these feeds in such a way that other peers can find the data they need. It is important to note that all of these feeds will be tied to the same device in the same way that feeds are today.

I highly recommend watching @andrestaltz talk on this topic from our advisor meetings. Also the latest version of the design document for meta feeds is located here.

Concepts

Meta feed

A meta feed is feed where the messages only describe other feeds. These messages can then also contain meta data about the feeds:

{ type: 'metafeed/operation', operation: 'add', feedtype: 'classic', purpose: 'main', id: '@main' }
{ type: 'metafeed/operation', operation: 'add', feedtype: 'bamboo', purpose: 'applications', id: '@applications' }

In the example above we have two messages, one linking to our existing main feed and one linking to another meta feed for application specific data. In this way we can build up a tree structure of feeds. It is important to note that because these meta feeds are just regular feeds, the messages can be encrypted and thus a whole subtree be hidden from outsiders.

These new feeds will be generated from a seed value, using something like this:

const seed = crypto.randomBytes(32)

const prk = hkdf.extract(lhash, hash_len, seed, salt)
const mf_info = "ssb-meta-feed-seed-v1:metafeed"
const mf_seed = hkdf.expand(hash, hash_len, prk, length, mf_info)
const mf_key = ssbKeys.generate("ed25519", mf_seed)

By saving this seed it is possible to recreate all the keys as the process deterministic. Not all feeds in a meta feed needs to be generated in this way though.

Content feed

A content feed is similar to existing feeds in that they just contain messages like posts, likes etc.

Index feed

An index feed is a special feed that is used to index other feeds just like in a database. One example of this would be the contact messages of your main feed. You can create a feed that only contains hash links to the original messages on another feed. We are going to introduce a new RPC replication mechanism that will efficiently be able to replicate these feeds. The purpose of these feeds is to enable partial replication by only that specific part of a larger feed.

Identity

Currently in SSB your identity is the same the public key for your feed. This key is also used for secret handshake to establish an authenticated and encrypted connection between two peers. Furthermore this identity is also encoded in messages such as contact messages.

We aim to use the id of the top meta feed as the identity of a peer going forward. For backwards compatibility secret handshake is probably still going to use the main feed identity for a foreseeable future, but new concepts such as trustnet that will be using specific feeds for the messages, will refer to this new identity.

Potential applications

A list of some concepts that could be implemented using the meta feeds:

• New feed formats
• Sub feeds for specific application, like git-ssb, so only clients
  that actually want these messages have to store them.
• Ephemeral messages by adding a lifetime to the metadata of a feed
  and having clients respect that.
• Allow lists, meaning you can specify what other feeds are allowed
  to get a certain feed
• Same-as using feedless identities. I'll be dedicating a separate
  post for this topic.

What we aim to build

This document describes the ideas in more detail, but I'll briefly highlight some ideas:

• Indexes
• Claims (indexes for other feeds) and audits using trustnet
• Feedless identities for public small groups

Our aim with this is to get the number of messages a client needs to download down to about 1/10 of the size, which should decrease the time a new user needs to wait substantially.

Backwards compatibility

We aim to keep as much backwards compatibility as possible with existing feeds so that existing client applications will continue to work. As meta feeds is a layer on top of existing feeds in a way it is natural to implement only new concepts using meta feeds. If it turns out to be a good idea and we have a better feed format then I think that would be the point where existing clients would need to be adapted.

Hej og velkommen :)

@glyph you will be greatly missed. If you want some help setting up #ssb-browser just get in touch. It might be easier to get running on the rpi4 as you just need a browser.

You might want to look at meta feeds. It can create a tree like structure that enable all kinds of nice things described in that document.

@Luandro Pàtwy sorry for the late repy. If it is something that will help I can try requesting a license.

Fantastic update @Luandro Pàtwy. The project sounds very interesting and like really fulfilling purposeful work.

Party in the bat-cave

@memo Yes you do. That is definitely a gotcha. Do you mind opening an issue for that?

Been working on getting meta feeds into shape. Still about 27% done, so lots of work to do on that one.

Other stuff:

• Helped Andre with getting the manyverse release ready
• Paired with @mixmix on private groups. We used ssb-fixtures (see this PR) to generate a bunch of groups and mesages in these and found a few different bugs. If you want to help getting private groups ready for prime time that is a very good place to start :)
• Worked on a faster sort in jitdb that has some nice improvements for queries like get me the latest 10 public posts for my whole database. Before it had to sort all the possible results before it could return the latest 10 based on timestamp. I tried a bunch of stuff including radix sort but nothing really helped until I thought, wait! Lemire must have thought about this problem before and yes of course he has. He even made a nice library that we could use.

Wow that house looks cozy.

@memo for mentions we have created a indexdb plugin that will index all the links. This means you can do something like:

db.query(
    and(mentions(feedId)),
    toCallback((err, results) => {
       // do it
    })
)

Example from the tests. You can also combine these kind of indexes with normal jitdb indexes like:

db.query(
  and(mentions(feedId), author(anotherfeedId)),
  toCallback((err, results) => {
       // do it  
  })
)

So all mentions of feedid by anotherfeedid.

@dinoworm 🐛 I very much agree to what you said here. I do think that we are moving in the right direction though. I had a ESC call this weekend and after that I wrote down some thoughts very much aligned with this thread and with Bundys burn out thread. The following list is just my random thoughts, so in no particular order.

Good things

• Working in crews over longer periods. Two recent examples of this: NGI pointer and ahau. There are several advantages to this. First of all working with lovely humans and a daily basis totally rocks. I've been really enjoying working with the rest of the NGI crew. I can see some of the same dynamics with ahau. Secondly this has allowed us to tackle some of the things that would have been impossible or lead to burn-out if done solo like private groups and db2. In the NGI pointer we will be tackling another of the gnarly bits in the JS stack, the dreaded triangle of death that is: ssb-friends, ssb-replicate and ssb-ebt.

• Manyverse donations has allowed Andre to keep working on manyverse for a long period being paid. This is really important I think and I think it's really important that we either set aside a certain % of the open collective SSBC money or even better create a new OC for whatever client we want to promote as the boring butt client.

• Paying people for the things we are about. The newsletter is a really important part of the community and the way @elavoie started this and later handed it over to @cblgh is something I think we should really inspire to. Also this is payed which is really important I think.

• Making a maintainable boring butt client. I've been fascinated to see how many people started contribution to oasis. It's really a testament to a really good foundation that @Christian Bundy has established. Also that we have had multiple people working on in. Both payed and not payed.

• ssb-js another one of @Christian Bundy great ideas. I think we need go through all the modules on ssbc and move them over and deprecate SSBC. Either that or clean up the people there and move a lot of stuff to ssb-unmaintained. ssb-junkyard was a great first step in cleanup up stuff.

• dev.scuttlebutt.nz is really great in that we finally have decent documentation and not only for js but also for rust and go. It complements the protocol guide well I think.

• https://scuttlebutt.nz/ is pretty great as well. Kudos to the people that made it. It could use and update though.

Amazing! Do you mind if I link to this from dev.scuttlebutt.nz? It has a section on jitdb and db2.

Sailing the high seas I see matey!

Dear mr firefox, I love that you use the expression chasing your own tail ;-)

@bobhaugen should be the one. If I remember correctly it was the but that would be anarchy! post I remember correctly. You might enjoy that if you havn't heard about Igalia before Bob.

Oh! Someone from Igalia, welcome. I heard about Igalia from Andy Wingo's blog a few years ago. Are you based in Spain?

Thiis call for mtg art

Archwing Dragon by Daarken

I'm with Zenna on this one. it feels wierd to pay for your sins with $. I wouldn't mind putting in some money each year to a box that can be used to help foster compassion in the community, but I don't think it should be payed out to people directly, it should be payed to maybe have people facilitate group meetings like the fairy rings.

I think the most important part is acknowledging when you have been wrong. I still remember I said something in a not very tone here in public about a ssb-server release that dominic did a very long time ago and that was really shitty to do. I still feel bad about it when I think back to it and I never think I told Dominic I was sorry for what I did. So yeah, more practice of saying sorry. I also think that these open spaces, like SSB is right now, might not be the right medium for these kind of things. This is why I'm very excited about tribes groups or whatever you want to call them. There is such an incredible difference between coding on SSB in "public" and doing it in the SSB grant where you talk to the other people regularly. Having calls, building up empathy etc.

@farewellutopia it just means you can't onboard against a normal ssb client. But after you are onboarded, then normal replication works fine against normal clients because that uses EBT. As said as proper solution is in the making, this is all just a hack I did to test the performance of this kind of approach.

@Luandro Pàtwy mobile is now fixed in latest master. I want to land a few more fixes and then do another release in the coming days.

The method:partialReplication,getFeed is because partial replication only works between nodes that support it. Meaning only my pub right now and then other browser demo clients. In about 2 months we'll be start on a proper implementation of partial replication that will also work in the go ssb server and other clients like manyverse.

@Luandro Pàtwy thank you very much. So heartwarming to hear ❤️

For ssb-room see this. Cryptix is are working on rooms 2 in go where web sockets should be enabled by default :)

mDNS: not sure if that ever made it into a web standard or not, I know they have been putting a lot of stuff in the browser including bluetooth.

private groups: Working on that, we ran into a problem with trying to generate a dataset that includes private groups. Currently we are quite busy trying to make the new database work in manyverse. Once that settles I'll cycle back to that. Basically it should be working, but we need proper full tests.

mobile: yeah, I sadly did not have time to fix that before the talk. Now that it done I'll get that working because I've been using the browser on my phone as well before.

SSB Browser 5.0.0

This is a rather big release. Most of this stuff was done by @Kyle Maas's Development Thoughts. It's be really good to see a new person come in an become so productive within such a short time. It wasn't more than a month ago that 4.0.0 was released and now we have another major release with more than 250 commits.

Some of the new things are ability to add reactions:

A group feature where you can put people into groups and easily see only messages from people in that group. This is saved in local storage because it is still being tested, but this is by far the feature that I'm most excited about

Better notifications (a feature from patchbay) where if someone writes a comment to a thread you wrote or commented in, it will show up.

Themes

Notes

New features/enhancements:

• New groups tab
• New Channels tab
• New Settings tab
• Themes
• Add ability to add reactions to posts
• Filter preferences on the Public tab are saved
• New filter for favorite channels
• New filter for channels to hide
• Public messages can now be posted to a channel
• Connections now shows peers by name
• New onboarding screen
• User-friendly Markdown editor
• Profile pages now have "Send Message" buttons
• Channels can now be replied to directly
• Internationalization support
• Japanese translation
• Pirate translation
• Allow for message titles in Public messages
• Autorefresh feature for Public messages
• Include replies to threads in Notifications
• Suggest profile names when typing @ in an editor
• When a user is blocked, we now delete their messages from the database
• When easily available, thread titles are displayed for reply messages
• We now use ssb-friends instead of the old custom profiles index

Bug fixes:

• Lots of performance optimizations from arj03
• Clicking Disconnect now forgets connections so they don't try to reconnect
• When changing pages, the page title is updated, making browser history useful for back/forward
• Update dependencies
• Multiple fixes for pagination
• Display error to user if they exceed message size limits, rather than just failing on the console
• Get rid of the chloride errors which always showed up on page load

Fixed an issue in epidemic broadcast trees that has been buggy me for a very long time, where if you loose your state, there was no way to make the other end acknowledge that and send you stuff again. Really nice to have @cryptix there to pair on a solution with.

Tried converting ssb-social-index and ssb-suggest to ssb-db2. Landed some PRs, sadly its not there yet. We worked on bunch on this about issue, the question is do you want the assigned names of the network or only self-assigned names? Maybe with the ability for yourself to assign names. Right now I'm back to a level index of self-assigned names in browser-core.

Worked on supported db2 in ssb-friends. That also turned into a untangle the dependencies between replicate and ssb-friends a bit, meaning you can use ssb-friends to only care about the graph stuff and not all the replication stuff. This way it is possible to run friends without the replication plugin as we do in browser-core.

@punkmonk I was wondering if they were decent or not. I drafted black and green last weekend and the power level in this series is really high. Makes for a nice draft experience :)

Fosdem will have 3 SSB talks :)

Ha, I actually saw that card, just not the creature type.

@enkiv2 if you want to know more about db2 I encourage you to look at ssb-db2 and jitdb. Also some examples of flume versus the new api. Happy to answer any questions you might have.

The inverted index for prefix indexes turned out to work great for some of our queries. This means that we got roughly 10-20x improvements on common queries (key, vote links etc). All of these are now < 1ms on a full database (1.5 million messages).

In general I'm not really a super fan of just saying run over tor and now you are safe. Like there are also things like exif stripping (also works in some clients) that needs to be considered, the UI in general needs to be focused on the security aspect. Private groups and rooms 2 (with privacy) would also fall into the category of good candidates for a security focused SSB client, so that was what I would focus on if I were to work more in that area.

Tor for scuttlebutt definitely works. There is even a page in the handbook about it. When I was working on patchbay there was a switch to only connect to tor pubs. That being said I havn't touched that for a while so it might or might not work atm ;-)

Everyone say hi to @Kyle. Kyle has been doing a ton of great stuff with #ssb-browser including adding reactions to posts, themes, pirate speak etc.

I keep forgetting to update this dev diary ;-)

Been busy preparing a talk for fosdem. Turns out obs studo is a pretty nice program for recording talks :)

Did a bunch of fixes to async flumelog and db2. Testing EBT in go against the browser, really happy to see that coming along. Spent quite a while yesterday trying to create an inverted index for prefix indexes. Seems to work pretty well with vote queries.

Also started porting ssb-about and ssb-suggest over to db2. Getting some help finish that from Kyle who has been doing a ton of work on ssb browser. More on that later.

Already fixed it seems

@Cy from ssb-db2:

SSB-DB2 is a new database for secure-scuttlebutt, it is meant as a replacement for ssb-db. The main reason for creating a new database is to be able to rework some of the existing decisions without having to be 100% backwards compatible. The main reasons are:

• Performance, the database stores data in bipf
• Replace flume with jitdb and specialized indexes
• Run in the browser
• Work well with partial replication

So getting it working in oasis will require some work. We are currently working on porting manyverse over to the new database. Once that is done it should be easier for other applications to be ported because stuff like ssb-friends, ssb-suggest etc. all works.

Yes, it uses https://github.com/ssbc/ssb-friend-pub.

@abekonge.often I ordered it from nanobike.de. There was a shop in Copenhagen that also had the same bike, but it was 250 euros more, and it had to be shipped anyway so went with the cheaper option.

@Solène yes internal gears for minimal maintenance. I had a racing bike that lasted about 2 years driving in snow and all kinds of weather ;-)

There are not very many belt bikes on the marked. I had to get it shipped. First ride was smooth, very much like driving a normal bike with a new chain.

Decided to treat myself to a Christmas present that arrived today 😃 A Cube traveler exc. I bike to work almost every day of the year so having a bike with minimal maintenance is a must. The old was had worked well, but after 15 years or so it was showing its age. I'll be donating to that one to a local bike fixer that donates the proceeds to a homeless place next door.

The belt drive

Remote go before:

full feeds: 2.797s
partial feeds: 30.752s

Remote go after:

full feeds: 1.891s
partial feeds: 19.352s

🚀

what happens when you run out of storage space

Currently it will just fail to write anything new ;-) It does partial replication so the storage requirement is not as big as a normal client. As part of the grant we will be trying to tackling the problem of infinite growth that the current log structure dictates. That part will start in 3 months time roughly, but will be spec'ed over the next couple of months. It might end up using something like meta feeds. But that is still to be determined :)

blob storage

Yeah so blobs are different than the log, as it is in a normal ssb client as well. The existing blobs library is very fs dependant so I couldn't use that. Instead I wrote a small module that uses the same blobs protocol but stores the data using the same polyraf library. The core library has a parameter where you can say that you only want to download and store blobs under a certain size. It will then stream larger blobs so they don't take up space. Another approach would be use something like the blobs purge library.

That is a nice writeup. The new interface looks a bit like templates from c++?

which browser API is used (indexedDB?)

All of this is built on top of async-append-only-log, this in turn uses polyraf, which is a wrapper around random-access-storage family of libraries so that it works both in the browser and in node with the same api. In the browser it will use random-access-web which for firefox will use indexeddb but for chrome will use a special faster backend.

how is the private key stored

It's stored in localstorage.

The architecture in ssb-browser-core now looks like this:

Boxes represent modules, some internal to browser-core and some external. Ellipses in gray represents overall areas and are thus not modules.

Been a while since i update this thread. I spent the last couple of weeks ironing out bugs in ssb-db2, async-append-only-log and atomically-universal so that it should now be ready for production use.

A new year a new release of #ssb-browser. As part of the #ngipointer grant, over the christmas holiday I spent some time getting ssb-browser-core and ssb-browser-demo updated to use ssb-db2 and the latest jitdb. I'm really happy with the results from the perspective of an application developer as the new jitdb syntax is a lot easier to write and understand. Visually from the end users perspective there is no change in this release.

Wtf. Sad to hear. Would be interested in hearing how the chair is once you receive the correct one ;-)

I recently bought a new seat for my Herman Miller chair at work. The old was worn down but the chair was perfectly fine, so now it can hopefully last another 7-10 years :-)

Exactly it is @punkmonk. That is great news.

@test monkey

I really like the reactions from #manyverse. I found that @cel-desktop does some funky digs, so converted them to this :-)

ugh, this forking in patchwork is a bit counter intuitive. Anyway @punkmonk

is this where the current offset is detected at startup (so we don’t start at 0 again)?

Yes

is the encoding handled by bipf.encode() instead?

Exactly, we do it like this because we want to selectively decode parts of the message in different places instead of everything. This is one of the reason why the performance is a lot better than ssb-db.

Amazing. Where is this? Northern Sweden?

@punkmonk exactly. Also see this. I would try putting in 4GB into async-append-only-log first and from there try to use it in jitdb.

@punkmonk there are some uint32 limits in jitdb mainly because they are smaller in size so the indexes are smaller. But there is also some grow functionality, so it might not be too hard to add some logic to automatically convert to uint64 once it reaches a certain size. If you are interested in taking this on I'd be happy to help.

@gmarcos87 https://github.com/mixmix/ssb-tribes/issues/29

This is really exciting, great milestone (all the mixes) @mix.desktop @mixmix @Mix Android !

I feel one of the problems for not using more feeds is that we have no good way to reason about how multiple feeds belong together. For the #ngipointer grant we have been thinking about exploring the idea of meta feeds, meaning feeds that contain other feeds.