'%3e%3crect%20x='109.185'%20y='253.397'%20width='350.859'%20height='857.656'%20fill='white'/%3e%3cpath%20d='M274.77%20708.572H233.194V888.205H286.632C302.651%20888.205%20314.635%20883.711%20322.461%20875.088C330.287%20866.465%20334.322%20851.404%20334.322%20830.149V779.138C334.322%20752.539%20329.797%20734.2%20320.382%20723.997C310.966%20713.795%20295.681%20708.451%20274.77%20708.451V708.572Z'%20fill='%23FF5C00'/%3e%3cpath%20d='M310.966%20610.558C320.015%20601.206%20324.539%20585.295%20324.539%20563.19V530.518C324.539%20490.559%20308.887%20470.519%20277.705%20470.033H232.949V624.768H269.512C287.977%20624.768%20302.039%20619.91%20311.088%20610.436L310.966%20610.558Z'%20fill='%23FF5C00'/%3e%3cpath%20d='M277.582%200C124.362%200%200%20123.399%200%20275.704V1069.3C0%201221.48%20124.239%201345%20277.582%201345C430.803%201345%20555.165%201221.6%20555.165%201069.3V275.704C555.165%20123.52%20430.926%200%20277.582%200ZM426.523%20833.064C426.523%20878.367%20414.539%20912.739%20390.817%20936.423C375.898%20951.241%20356.7%20961.322%20333.221%20966.909V987.677C333.221%201002.5%20320.993%201014.64%20306.075%201014.64C291.156%201014.64%20278.805%201002.5%20278.805%20987.677V971.888H232.949V987.677C232.949%201002.5%20220.721%201014.64%20205.803%201014.64C190.884%201014.64%20178.655%201002.5%20178.655%20987.677V971.888H170.218C150.53%20971.888%20140.625%20962.05%20140.625%20942.496V415.743C140.625%20396.188%20150.53%20386.35%20170.218%20386.35H178.655V357.201C178.655%20342.383%20190.884%20330.238%20205.803%20330.238C220.721%20330.238%20232.949%20342.383%20232.949%20357.201V386.35H278.805V357.201C278.805%20342.383%20291.034%20330.238%20306.075%20330.238C321.115%20330.238%20333.221%20342.383%20333.221%20357.201V388.78C333.221%20389.994%20332.977%20391.087%20332.855%20392.18C354.499%20397.524%20371.863%20406.512%20384.703%20419.386C406.469%20441.491%20417.597%20475.377%20417.597%20521.045V544.364C417.597%20604.363%20397.42%20642.743%20357.556%20659.14V660.719C403.656%20676.265%20426.646%20717.074%20426.646%20782.782V833.064H426.523Z'%20fill='%23FF5C00'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1_174'%3e%3crect%20width='555'%20height='1345'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
- The candidate block
- The Merkle tree: summarizing a large set of transactions
- Block header
You've now understood how a Bitcoin transaction works, and the role of the blockchain. However, before we look in more detail at how proof-of-work works, there's still one essential step that the miner must perform: the construction of a candidate block. Let's find out together what a candidate block is and how the miner constructs it, before embarking on the search for a valid proof.
The candidate block
Miners have to build their blocks themselves before trying to mine them. Each miner, in turn, constructs what is known as a candidate block from the transactions pending in his mempool. Building a candidate block therefore consists of:
- choose which transactions to include;
- organize these transactions in a way that is compatible with Bitcoin rules;
- produce the block's metadata, stored in its header.
The choice of transactions follows a simple economic logic: a block has a capacity limited by the Bitcoin protocol, so the miner seeks to maximize what he earns for this space. He selects as a priority the transactions offering the highest fees relative to the space they occupy in the block (this is known as the "fee rate", expressed in sats/vB). The details of fees will be dealt with later; just remember the idea of sorting by space efficiency.
A Bitcoin block therefore consists of two main parts:
- a list of transactions;
- a block header, which serves, in a way, as the block's identity card.
The header is essential, as it is used as the basis for the proof-of-work: in Bitcoin, you don't mine an entire block directly; you mine only the header of a block, which summarizes the information needed to link the block to the chain and commit its contents. To enable the header to represent all transactions, Bitcoin uses a cryptographic tool: the Merkle tree.
The Merkle tree: summarizing a large set of transactions
Listing all the transactions in the header would be impossible: a block can contain thousands of transactions, while the header has a fixed size (80 bytes). The solution is therefore to calculate a unique hash that depends on all the transactions in the block: this is the Merkle root.
The principle is as follows:
- the cryptographic fingerprint (hash) of each transaction is calculated;
- these hashes are paired, concatenated, and then hashed again to form a new layer of hashes;
- this process is repeated until a single final hash is obtained: the Merkle root.
So, if a single transaction changes, even by a single bit, the result is a modification of its fingerprint, which propagates to the Merkle root. This root is included in the block header. So modifying a past transaction means modifying the block header in which it is included, and therefore the block footprint, and then the link with subsequent blocks.
Since SegWit, we've separated the signatures from the rest. So, in reality, there are 2 Merkle trees nested within each block. This separation has consequences for the way we count the size of a block and for certain cryptographic commitments, but the basic idea remains the same: the header must commit, in a compact way, all the contents of the block.
Block header
The block header is 80 bytes long and contains exactly 6 fields. It is these six elements that will be hashed when searching for a proof of work (see next chapter):
-
The version (
version): This indicates which rules or update signals the block adheres to. It serves as a mechanism for maintaining protocol compatibility and evolution. -
Previous block hash (
previousblockhash): This is the hash of the previous block's header. This is what links the blocks together. Without this field, we'd have independent blocks. By including the hash of the previous block's header, we obtain a chain, where each new block builds on the previous one. -
Merkle root (
merkleroot): This is the fingerprint of all the transactions in the block (via the Merkle tree). It links the header to the content: if the miner modifies the selection or order of transactions, the root changes. -
Time stamp: This is a timestamp (Unix time) chosen by the miner (with validity constraints), which must indicate when the block was mined. It doesn't have to be perfectly accurate to the second, but it must meet certain conditions to remain acceptable to the network.
-
Encoded difficulty target (
nbits): This field encodes the current difficulty target. We'll go into more detail in the chapter on difficulty, but remember that this parameter is part of the header. -
Nonce (
nonce): This is a value that the miner can freely modify. It serves as an adjustable variable during proof-of-work. I'll explain its role in more detail in the next chapter, but it's important to understand that the nonce is part of the block header and is designed to allow successive attempts.
To make this easier to visualize, here's an example of a block header in hexadecimal format (80 bytes):
00e0ff3f5ffe3b0d9247dc437e18edc19252e4517cee941752d501000000000000000000206b de3a10826e2acb2f28fba70463601c789293d0c9c4348d7a0d06711e97c0bcb13a64b2e00517 43f09a40
Here is a field-by-field breakdown:
version: 00e0ff3f previousblockhash: 5ffe3b0d9247dc437e18edc19252e4517cee941752d501000000000000000000 merkleroot: 206bde3a10826e2acb2f28fba70463601c789293d0c9c4348d7a0d06711e97c0 time: bcb13a64 nbits: b2e00517 nonce: 43f09a40
This candidate block header, constructed by the miner, forms the basis of their work. When searching for a valid proof-of-work, it's not the entire list of transactions that is directly hashed in a loop, but rather this 80-byte block, which contains everything needed to link the block to the past and commit its contents, while also including the parameters necessary for the mining mechanism, which we'll explore in the next chapter.
Quiz
Quiz1/5
min1012.2
What economic criterion guides a miner's choice of transactions?