Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Specify requirements for Valid and Deterministic Encodings #57

Merged
merged 14 commits into from
Feb 16, 2023
Merged

Specify requirements for Valid and Deterministic Encodings #57

Changes from 8 commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
924ce21
Specify requirements for Valid and Deterministic
fxamacker Feb 13, 2023
dad2873
Replace "ABRIDGED DRAFT" with "DRAFT"
fxamacker Feb 13, 2023
d36c400
Add section for Cadence Types and Values Encoding
fxamacker Feb 14, 2023
089430d
CCF encodings must comply specs in CDDL section
fxamacker Feb 14, 2023
7cdffaa
Mention all parameter lists MUST be unique
fxamacker Feb 14, 2023
5a40137
Add "Elements of" for clarification
fxamacker Feb 14, 2023
dbf7b30
Added restriction for restricted-type-value
fxamacker Feb 14, 2023
2d6dcb8
Clarify sorting related to restricted type
fxamacker Feb 14, 2023
fe8f4f5
Separate unrelated bullet points and generalize
fxamacker Feb 15, 2023
92d8082
Capitalize some sentences in bullet points
fxamacker Feb 15, 2023
3eb9ded
Add example of protocol determinism requirements
fxamacker Feb 16, 2023
b91bda2
Clarify when not to use `inline-type-and-value`
fxamacker Feb 16, 2023
80777dc
Clarify examples for omitting type info
fxamacker Feb 16, 2023
166bd6f
Bump date and revision
fxamacker Feb 16, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
93 changes: 89 additions & 4 deletions ccf_specs.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
# DRAFT - Cadence Compact Format (CCF)

Author: Faye Amacker
Status: ABRIDGED DRAFT
Date: Feb 10, 2023
Revision: 20230210a
Status: DRAFT
Date: Feb 14, 2023
Revision: 20230214a

## Abstract

Expand All @@ -17,7 +17,7 @@ CCF obsoletes [JSON-Cadence Data Interchange Format](https://developers.flow.com

## Status of this Document

This document is an ABRIDGED DRAFT. To simplify initial review of the most important aspects, some verbose content was initially left out. Omitted content relies on prior revision not changing and is being added after each set of prior revisions is reviewed.
This document is a DRAFT.

## Copyright Notice

Expand Down Expand Up @@ -161,6 +161,91 @@ This specification uses CDDL notation to express CBOR data items:
- `[* Foo]`: zero or more Foo in CBOR array
- `#6.nnn(type)`: CBOR tag with tag number nnn and content type of "type".

## Serialization Considerations

CCF is a data format that uses a subset of CBOR with additional requirements for validity and deterministic encoding.

### Cadence Types and Values Encoding

[Cadence values have types](https://developers.flow.com/cadence/language/values-and-types). For example:
- `true` has the type `Bool`
- `"hello"` has the type `String`
- `let aos: [String] = ["hello", "world"]` declares `aos` of type `[String]`.
- `let aoa: [AnyStruct] = ["hello", true]` declares `aoa` of type `[AnyStruct]`.

CCF encoding decouples value encoding from type encoding. For example:
- Cadence booleans is encoded as a tuple of type and value: the `Bool` type and its value.
- Cadence strings is encoded as a tuple of type and value: the `String` type and its value.

For compactness, CCF encoding skips type encoding when type can be inferred.

As one example, the type of each element in `[String]` can be inferred to have type `String`. Given this, CCF encodings of `[String]` can skip encoding each element's type of `String`. Instead, CCF encodes `[String]` as a tuple like this: `[String]` type and a value representing a list of element values. This avoids redundantly encoding each element's type.

If type cannot be inferred, it must be encoded as part of a tuple representing a type and its value. For example, the type of each element in `[AnyStruct]` cannot be inferred. The type `AnyStruct` is the top type of all non-resource types and array elements can be of heterogenous types. In this case, `[AnyStruct]` is encoded as a tuple like this: `[AnyStruct]` type and a value being a list of tuples representing each element's type and value.
turbolent marked this conversation as resolved.
Show resolved Hide resolved

### Valid CCF Encoding Requirements

A CCF encoding is valid if it complies with "Valid CCF Encoding Requirements".

Encoders MUST produce valid CCF encodings from valid input items. Encoders are not required to check for invalid input items (e.g. invalid UTF-8 strings, duplicate dictionary keys, etc.) Applications MUST NOT provide invalid items to encoders.

Decoders MUST reject CCF encodings that are not valid unless otherwise specified in this section.

A CCF encoding complies with "Valid CCF Encoding Requirements" if it complies with the following restrictions:

- CBOR data items MUST be well-formed and valid as defined in RFC 8949. E.g. CBOR text strings MUST contain valid UTF-8. As an exception, RFC 8949 requirements for CBOR maps are not applicable because CCF does not use CBOR maps.

- CCF encodings must comply with specifications in "CCF Specified in CDDL Notation" section of this document.

- `composite-type.id` MUST be unique in `ccf-typedef-message` or `ccf-typedef-and-value-message`.

- `composite-type.cadence-type-id` MUST be unique in `ccf-typedef-message` or `ccf-typedef-and-value-message`.

- `field-name` MUST be unique in `composite-type`.

- `type-ref.id` MUST refer to `composite-type.id`.

- `composite-type-value.id` MUST be unique in the same `composite-type-value` data item.

- `type-value-ref.id` MUST refer to `composite-type-value.id` in the same `composite-type-value` data item.

- all parameter lists MUST be unique in `composite-type-value`.
- `name` MUST be unique in `composite-type-value.fields`.
- `identifier` MUST be unique in `composite-type-value.initializers`.
fxamacker marked this conversation as resolved.
Show resolved Hide resolved

- elements MUST be unique in `restricted-type` or `restricted-type-value`.

- keys MUST be unique in `dict-value`. Decoders are not always required to check for duplicate dictionary keys. In some cases, checking for duplicate dictionary key is not necessary or it may be delegated to the application.
fxamacker marked this conversation as resolved.
Show resolved Hide resolved

### Deterministic CCF Encoding Requirements

A CCF encoding is deterministic if it satisfies the "Deterministic CCF Encoding Requirements".

Encoders SHOULD emit CCF encodings that are deterministic. CCF-based protocols MUST specify when encoders are required to emit deterministic CCF encodings.

fxamacker marked this conversation as resolved.
Show resolved Hide resolved
Decoders SHOULD check CCF encodings to determine whether they are deterministic encodings. CCF-based protocols MUST specify when decoders are required to check for deterministic encodings and how to handle nondeterministic encodings.
fxamacker marked this conversation as resolved.
Show resolved Hide resolved

A CCF encoding satisfies the "Deterministic CCF Encoding Requirements" if it satisfies the following restrictions:

- CCF encodings MUST satisfy "Valid CCF Encoding Requirements" defined in this document.

- CCF encodings MUST satisfy "Core Deterministic Encoding Requirements" defined in RFC 8948 Section 4.2.1. As an exception, RFC 8949 requirements for CBOR maps are not applicable because CCF does not use CBOR maps.

- `composite-type.id` in `ccf-typedef-and-value-message` MUST be identical to its zero-based index in `composite-typedef`.

- `composite-type-value.id` MUST be identical to the zero-based encoding order `type-value`.

- `inline-type-and-value` MUST NOT be used when type can be inferred.

- The following data items MUST be sorted using bytewise lexicographic order of their deterministic encodings:
turbolent marked this conversation as resolved.
Show resolved Hide resolved
- type definitions MUST be sorted by `cadence-type-id` in `composite-typedef`.
fxamacker marked this conversation as resolved.
Show resolved Hide resolved
- `dict-value` key-value pairs MUST be sorted by key.
- `composite-type.fields` MUST be sorted by `name`
- `composite-type-value.fields` MUST be sorted by `name`.
- `composite-type-value.initializers` MUST be sorted by `identifier`.
- `restricted-type.restrictions` MUST be sorted by restriction's `cadence-type-id`.
- `restricted-type-value.restrictions` MUST be sorted by restriction's `cadence-type-id`.

## Security Considerations

CBOR security considerations are described in [Section 10 of RFC 8949 (CBOR)](https://www.rfc-editor.org/rfc/rfc8949.html#name-security-considerations).
Expand Down