tendermint/docs/specification/new-spec/README.md

# Tendermint Specification

This is a markdown specification of the Tendermint blockchain.
It defines the base data structures, how they are validated,
and how they are communicated over the network.

XXX: this spec is a work in progress and not yet complete - see github
[isses](https://github.com/tendermint/tendermint/issues) and
[pull requests](https://github.com/tendermint/tendermint/pulls)
for more details.

If you find discrepancies between the spec and the code that
do not have an associated issue or pull request on github,
please submit them to our [bug bounty](https://tendermint.com/security)!

## Contents

### Data Structures

- [Overview](#overview)
- [Encoding and Digests](encoding.md)
- [Blockchain](blockchain.md)
- [State](state.md)

### P2P and Network Protocols

- [The Base P2P Layer](p2p/README.md): multiplex the protocols ("reactors") on authenticated and encrypted TCP conns
- [Peer Exchange (PEX)](pex/README.md): gossip known peer addresses so peers can find eachother
- [Block Sync](block_sync/README.md): gossip blocks so peers can catch up quickly
- [Consensus](consensus/README.md): gossip votes and block parts so new blocks can be committed
- [Mempool](mempool/README.md): gossip transactions so they get included in blocks
- [Evidence](evidence/README.md): TODO

### More
- [Light Client](light_client/README.md): TODO
- [Persistence](persistence/README.md): TODO

## Overview

Tendermint provides Byzantine Fault Tolerant State Machine Replication using
hash-linked batches of transactions. Such transaction batches are called "blocks".
Hence Tendermint defines a "blockchain".

Each block in Tendermint has a unique index - its Height.
A block at `Height == H` can only be committed *after* the
block at `Height == H-1`.
Each block is committed by a known set of weighted Validators.
Membership and weighting within this set may change over time.
Tendermint guarantees the safety and liveness of the blockchain
so long as less than 1/3 of the total weight of the Validator set
is malicious.

A commit in Tendermint is a set of signed messages from more than 2/3 of
the total weight of the current Validator set. Validators take turns proposing
blocks and voting on them. Once enough votes are received, the block is considered
committed. These votes are included in the *next* block as proof that the previous block
was committed - they cannot be included in the current block, as that block has already been
created.

Once a block is committed, it can be executed against an application.
The application returns results for each of the transactions in the block.
The application can also return changes to be made to the validator set,
as well as a cryptographic digest of its latest state.

Tendermint is designed to enable efficient verification and authentication
of the latest state of the blockchain. To achieve this, it embeds
cryptographic commitments to certain information in the block "header".
This information includes the contents of the block (eg. the transactions),
the validator set committing the block, as well as the various results returned by the application.
Note, however, that block execution only occurs *after* a block is committed.
Thus, application results can only be included in the *next* block.

Also note that information like the transaction results and the validator set are never
directly included in the block - only their cryptographic digests (Merkle roots) are.
Hence, verification of a block requires a separate data structure to store this information.
We call this the `State`. Block verification also requires access to the previous block.
state 2017-12-26 18:43:03 -05:00			`# Tendermint Specification`

			`This is a markdown specification of the Tendermint blockchain.`
docs consolidation 2018-01-21 18:19:38 -05:00			`It defines the base data structures, how they are validated,`
			`and how they are communicated over the network.`
state 2017-12-26 18:43:03 -05:00
add warnings about new spec 2018-01-19 17:51:09 -05:00			`XXX: this spec is a work in progress and not yet complete - see github`
			`[isses](https://github.com/tendermint/tendermint/issues) and`
			`[pull requests](https://github.com/tendermint/tendermint/pulls)`
			`for more details.`

			`If you find discrepancies between the spec and the code that`
			`do not have an associated issue or pull request on github,`
			`please submit them to our [bug bounty](https://tendermint.com/security)!`
state 2017-12-26 18:43:03 -05:00
add warnings about new spec 2018-01-19 17:51:09 -05:00			`## Contents`

docs consolidation 2018-01-21 18:19:38 -05:00			`### Data Structures`

add warnings about new spec 2018-01-19 17:51:09 -05:00			`- [Overview](#overview)`
state 2017-12-26 18:43:03 -05:00			`- [Encoding and Digests](encoding.md)`
			`- [Blockchain](blockchain.md)`
			`- [State](state.md)`
docs consolidation 2018-01-21 18:19:38 -05:00
			`### P2P and Network Protocols`

			`- [The Base P2P Layer](p2p/README.md): multiplex the protocols ("reactors") on authenticated and encrypted TCP conns`
			`- [Peer Exchange (PEX)](pex/README.md): gossip known peer addresses so peers can find eachother`
			`- [Block Sync](block_sync/README.md): gossip blocks so peers can catch up quickly`
			`- [Consensus](consensus/README.md): gossip votes and block parts so new blocks can be committed`
			`- [Mempool](mempool/README.md): gossip transactions so they get included in blocks`
			`- [Evidence](evidence/README.md): TODO`

			`### More`
			`- [Light Client](light_client/README.md): TODO`
			`- [Persistence](persistence/README.md): TODO`
state 2017-12-26 18:43:03 -05:00
spec: fixes from review 2017-12-27 15:14:49 -05:00			`## Overview`

			`Tendermint provides Byzantine Fault Tolerant State Machine Replication using`
			`hash-linked batches of transactions. Such transaction batches are called "blocks".`
			`Hence Tendermint defines a "blockchain".`

			`Each block in Tendermint has a unique index - its Height.`
			A block at `Height == H` can only be committed after the
			block at `Height == H-1`.
			`Each block is committed by a known set of weighted Validators.`
			`Membership and weighting within this set may change over time.`
			`Tendermint guarantees the safety and liveness of the blockchain`
			`so long as less than 1/3 of the total weight of the Validator set`
			`is malicious.`

			`A commit in Tendermint is a set of signed messages from more than 2/3 of`
			`the total weight of the current Validator set. Validators take turns proposing`
			`blocks and voting on them. Once enough votes are received, the block is considered`
			`committed. These votes are included in the next block as proof that the previous block`
			`was committed - they cannot be included in the current block, as that block has already been`
			`created.`

			`Once a block is committed, it can be executed against an application.`
			`The application returns results for each of the transactions in the block.`
			`The application can also return changes to be made to the validator set,`
			`as well as a cryptographic digest of its latest state.`

			`Tendermint is designed to enable efficient verification and authentication`
			`of the latest state of the blockchain. To achieve this, it embeds`
			`cryptographic commitments to certain information in the block "header".`
			`This information includes the contents of the block (eg. the transactions),`
			`the validator set committing the block, as well as the various results returned by the application.`
			`Note, however, that block execution only occurs after a block is committed.`
			`Thus, application results can only be included in the next block.`

			`Also note that information like the transaction results and the validator set are never`
			`directly included in the block - only their cryptographic digests (Merkle roots) are.`
			`Hence, verification of a block requires a separate data structure to store this information.`
			We call this the `State`. Block verification also requires access to the previous block.