Received: from sog-mx-4.v43.ch3.sourceforge.com ([172.29.43.194] helo=mx.sourceforge.net) by sfs-ml-4.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1YsW57-00027m-N0 for bitcoin-development@lists.sourceforge.net; Wed, 13 May 2015 12:48:13 +0000 Received-SPF: pass (sog-mx-4.v43.ch3.sourceforge.com: domain of gmail.com designates 209.85.217.169 as permitted sender) client-ip=209.85.217.169; envelope-from=decker.christian@gmail.com; helo=mail-lb0-f169.google.com; Received: from mail-lb0-f169.google.com ([209.85.217.169]) by sog-mx-4.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1YsW55-0006HT-NH for bitcoin-development@lists.sourceforge.net; Wed, 13 May 2015 12:48:13 +0000 Received: by lbbqq2 with SMTP id qq2so28558500lbb.3 for ; Wed, 13 May 2015 05:48:05 -0700 (PDT) X-Received: by 10.152.164.233 with SMTP id yt9mr12065541lab.58.1431521285340; Wed, 13 May 2015 05:48:05 -0700 (PDT) MIME-Version: 1.0 From: Christian Decker Date: Wed, 13 May 2015 12:48:04 +0000 Message-ID: To: Bitcoin Development Content-Type: multipart/alternative; boundary=001a1133b066b3846d0515f60523 X-Spam-Score: -0.6 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (decker.christian[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record 1.0 HTML_MESSAGE BODY: HTML included in message -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature X-Headers-End: 1YsW55-0006HT-NH Subject: [Bitcoin-development] [BIP] Normalized Transaction IDs X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 May 2015 12:48:13 -0000 --001a1133b066b3846d0515f60523 Content-Type: text/plain; charset=UTF-8 Hi All, I'd like to propose a BIP to normalize transaction IDs in order to address transaction malleability and facilitate higher level protocols. The normalized transaction ID is an alias used in parallel to the current (legacy) transaction IDs to address outputs in transactions. It is calculated by removing (zeroing) the scriptSig before computing the hash, which ensures that only data whose integrity is also guaranteed by the signatures influences the hash. Thus if anything causes the normalized ID to change it automatically invalidates the signature. When validating a client supporting this BIP would use both the normalized tx ID as well as the legacy tx ID when validating transactions. The detailed writeup can be found here: https://github.com/cdecker/bips/blob/normalized-txid/bip-00nn.mediawiki. @gmaxwell: I'd like to request a BIP number, unless there is something really wrong with the proposal. In addition to being a simple alternative that solves transaction malleability it also hugely simplifies higher level protocols. We can now use template transactions upon which sequences of transactions can be built before signing them. I hesitated quite a while to propose it since it does require a hardfork (old clients would not find the prevTx identified by the normalized transaction ID and deem the spending transaction invalid), but it seems that hardforks are no longer the dreaded boogeyman nobody talks about. I left out the details of how the hardfork is to be done, as it does not really matter and we may have a good mechanism to apply a bunch of hardforks concurrently in the future. I'm sure it'll take time to implement and upgrade, but I think it would be a nice addition to the functionality and would solve a long standing problem :-) Please let me know what you think, the proposal is definitely not set in stone at this point and I'm sure we can improve it further. Regards, Christian --001a1133b066b3846d0515f60523 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
Hi All,

I'd like to propose a= BIP to normalize transaction IDs in order to address transaction malleabil= ity and facilitate higher level protocols.

The normalize= d transaction ID is an alias used in parallel to the current (legacy) trans= action IDs to address outputs in transactions. It is calculated by removing= (zeroing) the scriptSig before computing the hash, which ensures that only= data whose integrity is also guaranteed by the signatures influences the h= ash. Thus if anything causes the normalized ID to change it automatically i= nvalidates the signature. When validating a client supporting this BIP woul= d use both the normalized tx ID as well as the legacy tx ID when validating= transactions.


@gmaxwell: I'd like to re= quest a BIP number, unless there is something really wrong with the proposa= l.

In addition to being a simple alternative that = solves transaction malleability it also hugely simplifies higher level prot= ocols. We can now use template transactions upon which sequences of transac= tions can be built before signing them.

I hesitate= d quite a while to propose it since it does require a hardfork (old clients= would not find the prevTx identified by the normalized transaction ID and = deem the spending transaction invalid), but it seems that hardforks are no = longer the dreaded boogeyman nobody talks about.
I left out the d= etails of how the hardfork is to be done, as it does not really matter and = we may have a good mechanism to apply a bunch of hardforks concurrently in = the future.

I'm sure it'll take time to im= plement and upgrade, but I think it would be a nice addition to the functio= nality and would solve a long standing problem :-)

Please let me know what you think, the proposal is definitely not set in s= tone at this point and I'm sure we can improve it further.
Regards,
Christian
--001a1133b066b3846d0515f60523--