1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
|
Delivery-date: Sun, 09 Feb 2025 16:15:57 -0800
Received: from mail-qv1-f63.google.com ([209.85.219.63])
by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(Exim 4.94.2)
(envelope-from <bitcoindev+bncBDL4XL646QOBBM4KUW6QMGQEM5B4OVA@googlegroups.com>)
id 1thHSu-0007ao-JT
for bitcoindev@gnusha.org; Sun, 09 Feb 2025 16:15:57 -0800
Received: by mail-qv1-f63.google.com with SMTP id 6a1803df08f44-6e4434d797fsf114901076d6.0
for <bitcoindev@gnusha.org>; Sun, 09 Feb 2025 16:15:56 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1739146550; cv=pass;
d=google.com; s=arc-20240605;
b=VKeJWfzWjk4lDCiFJA+PKDt5DwcFkr3YkSh5iRZdIq4M4rMxzhb9kefdBFLvFF1sDS
hKHd9QJggpPSiLIQO9PrI7TosA/5lBynns9kT32f1yO0RcL9TQPfKknSPISAhBEpjKvh
z76w9F8IrzYO3Fywqt1bYrw3PPtki0+vr6MmB+1evHs1pMsnTXFD7FTOz20XAF4tiDfR
hniMmWEiAPlHa/QQNCjXcGADpPaYzerZwV6PSHEYq1kCyIwZp7rnXGeVoUSWOfWk7Y4r
T/WcAURYnACTDqi1SfAWDlaEc1i5PshkQxucTC7Zoi/i/8CSwnOjgEV7eOAGuU0bbO6M
8fSA==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to:content-transfer-encoding
:mime-version:feedback-id:references:in-reply-to:message-id:subject
:cc:from:to:date:dkim-signature;
bh=q7U944WPoQnl4eyW6sthRq+7aIXzCfITQ4sujW9u018=;
fh=oFsvi6xrtyqRjxJMgeE2Fk2vtHu8hEVL5v5HLIjG5RU=;
b=lZ+lynk3zavuWuEhoY1tOYRjZmzlG7p0ZZeGfjaE5rZVAp3W3ztQnBJE40YnFUzuzZ
Jm4gRldG9Si1A4tQRjUwfxsS5ozB895nVYfeq15t0IJgnoaTT3DOvkZRbXqpN0qbt3IY
uZ0l2eA+3GdXFQEf+pigyp8l5S/PphjDDilnoNkpLuaz4x03onVmXh7H8xtEBW2jqqV9
1RycgKIiF6wKZJ2KkRjFyKJwS/FVZiUuJrOE23QXblxtyRFxbph49VkeDbThvKnwKN2i
JCIT3ugvbUJDVCeTkqXbqeO5Mfin1fpdl3duC/dAbLO2JraZGwhwSWnGC2a+oENu+Bcj
qZ+w==;
darn=gnusha.org
ARC-Authentication-Results: i=2; gmr-mx.google.com;
dkim=pass header.i=@protonmail.com header.s=protonmail3 header.b=K5ChcdS2;
spf=pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) smtp.mailfrom=darosior@protonmail.com;
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=protonmail.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=googlegroups.com; s=20230601; t=1739146550; x=1739751350; darn=gnusha.org;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to
:x-original-authentication-results:x-original-sender
:content-transfer-encoding:mime-version:feedback-id:references
:in-reply-to:message-id:subject:cc:from:to:date:from:to:cc:subject
:date:message-id:reply-to;
bh=q7U944WPoQnl4eyW6sthRq+7aIXzCfITQ4sujW9u018=;
b=ITlJN+ilZvcnky5J3jJU0S1+DVIKZZyFqgx6uEJSkuhkK4saJ3mHGRnsYg1cLQwXyQ
EkSGvHrh0Zek3m/x5IHHptD/WyVzU/uTOskhbwcLpga66ZBLtoPf117i7bT86aATDtT0
OxUCbe0gLSrWZU6GiA0juuCg6JnrLiTH9ig8DfvPIMahW7F6tA58ohwqCrEX9UgF99X8
IYlcmOW2PkFhxmFNRdTWW70QgBN/jQ96/UrvOXO2KlVZ2pt8BugW6rH7Kk9gX2yAvk4a
WV4mMI/vFMxyH4NrfhND8BpKmwVIuXK5Cbxe9qccH3pxJLI9jM3eqzoqNcLKLKbVDmbk
CiPw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1739146550; x=1739751350;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to
:x-original-authentication-results:x-original-sender
:content-transfer-encoding:mime-version:feedback-id:references
:in-reply-to:message-id:subject:cc:from:to:date:x-beenthere
:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=q7U944WPoQnl4eyW6sthRq+7aIXzCfITQ4sujW9u018=;
b=qOuobZHTEfNJnk7rrDokKLLMaNrU6N4A3pnojfiBg5AkzQJ7Lu22TCXY9Zk/JkaVWH
2MyWZ9PIllu/Atlf3fTWjYLNu61NcfkUhItPwUU5tjAEzLxGuvlNd2II2v5j2T4hNjNa
hUqPRq9Vg8RjfP+tNMDZNzlLPMRNdLQb40eQ51WvvaI7b4rghsHftkYYyxY+DFh4Rrxe
0SlpEoidRhY1qA7u5PSP15T6oE175dULWUD6EI33CkAN2jcUYWOz3T2uTI9ZlTvwRuOz
IFgDGz9C92eqRSBWpSzpjGKE24bFkze1yQZ09bAt8MOH/X+Vtgoo9XHQ+PnBFIAf++RU
RRpA==
X-Forwarded-Encrypted: i=2; AJvYcCXmfXeRPqzohI9GF14FEeAmGoxATCt5Ub+jvS4v2c2LXvsWKB/2SUqoVtWua8aLKvRWb9ezSS3Es9gQ@gnusha.org
X-Gm-Message-State: AOJu0YzPOjQZPYkFpnadqbsGDBBJBrSAwzkHV51OGxJj1ru2B/tnQ5w0
aCCqq55/Swbj2SS3+Bkz1o3mlrWiZvt0LZbk/uJ18YaXshHwh3Lv
X-Google-Smtp-Source: AGHT+IFegvC0Mrt64wbSXr2S3EUyHX7drsewN1yCkRKd73b5Jyb5iHJi8vb/OOhhR8NN9UQg/OIzLg==
X-Received: by 2002:ad4:5f89:0:b0:6d8:86c8:c29a with SMTP id 6a1803df08f44-6e4455edb1amr192000586d6.10.1739146550633;
Sun, 09 Feb 2025 16:15:50 -0800 (PST)
X-BeenThere: bitcoindev@googlegroups.com
Received: by 2002:ad4:5589:0:b0:6e1:b1f2:1cb with SMTP id 6a1803df08f44-6e4451bc662ls46164466d6.1.-pod-prod-04-us;
Sun, 09 Feb 2025 16:15:47 -0800 (PST)
X-Received: by 2002:a05:620a:2615:b0:7be:3cd7:dd95 with SMTP id af79cd13be357-7c047ba6b8bmr1681915685a.12.1739146547234;
Sun, 09 Feb 2025 16:15:47 -0800 (PST)
Received: by 2002:a05:600c:285:b0:434:a703:82d1 with SMTP id 5b1f17b1804b1-43924bcc5d2ms5e9;
Thu, 6 Feb 2025 14:03:57 -0800 (PST)
X-Received: by 2002:a05:6000:1a8a:b0:38a:a074:9f3c with SMTP id ffacd0b85a97d-38dc9118ebemr492794f8f.16.1738879435619;
Thu, 06 Feb 2025 14:03:55 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1738879435; cv=none;
d=google.com; s=arc-20240605;
b=ecuw/SebtWJlGmFjTob3Ywq82u8y1Sxz7iOTrWiDITSoo2NOCBYqMtnviUM8NwrvLK
J2ItjPtNu6ykKbZHL2M0M6gLxS3HPRY8gJVuLq2G2A2AKW0yQk+iIVwDIWxl8i2aG0TI
YkxlEmmf07GQZk9+LZl1tTvLdxoEDvCWh46j1FkTEyFfsa8FfCab77Sx6Z/w39hfMLQC
OJKrF7jyXN5FlRY5YPrKvWs/XUgFX7npyY1M9vv98+/xh23lPF/fRokRTu2GZICpN2sp
f3FyUWY8W2slJ+xgzRVdCGLyoBXxeVYW2c+1TzE9/M1zDcFmmQGlE8hOoQovauLzDZtO
0U6Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;
h=content-transfer-encoding:mime-version:feedback-id:references
:in-reply-to:message-id:subject:cc:from:to:date:dkim-signature;
bh=R6pxeTvQnVNR52y3epqiaqLLLRhSkP7rZhleoEKpTXI=;
fh=foaZ9w3C3c5ltuXRyLrsJcSZd5F+/L4e8AHpKYxjE8o=;
b=i4CXVUHb95F+9Vcbdq4aNBrXxGt2NHZ/AsWFxyYaUIfPbH0GNtNZMcMd0yjcffk/6y
vOr3jvUwXDDI3eKCjJ0+TB09Dp2eEFVadkl1mEjHNzWxaKdu9Fec00G/BT9plC2+YPH4
sAKWSnijRmq/rrs0duy4JhO8nfyTR0TfgWGsH1OQHhJDdx9MiSGdl33QQ7YQnFa0COXy
Rqaqxbd7Q3kYxKRarCIaiVBlVLwhi1ojtivAm5d6pnxHylbhUe/g0cobEYpqtv60lR7W
i4tEmpZC4Wlut+TXl1//LWyO0SGGG+Z7tkcxwqJ9OzhH6s+wROX2dtuJ+EKORhC3J+44
lwjQ==;
dara=google.com
ARC-Authentication-Results: i=1; gmr-mx.google.com;
dkim=pass header.i=@protonmail.com header.s=protonmail3 header.b=K5ChcdS2;
spf=pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) smtp.mailfrom=darosior@protonmail.com;
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=protonmail.com
Received: from mail-4316.protonmail.ch (mail-4316.protonmail.ch. [185.70.43.16])
by gmr-mx.google.com with ESMTPS id ffacd0b85a97d-38dbde30100si41853f8f.6.2025.02.06.14.03.55
for <bitcoindev@googlegroups.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Thu, 06 Feb 2025 14:03:55 -0800 (PST)
Received-SPF: pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) client-ip=185.70.43.16;
Date: Thu, 06 Feb 2025 22:03:52 +0000
To: Murch <murch@murch.one>
From: "'Antoine Poinsot' via Bitcoin Development Mailing List" <bitcoindev@googlegroups.com>
Cc: bitcoindev@googlegroups.com
Subject: Re: [bitcoindev] Update on the Great Consensus Cleanup Revival
Message-ID: <sVMWgaw3x0FIyTyIry8Dh-gOUBLoN-69P94Jf74rZUwZdgA5-08McH9sb1IV1oIQr8XKzCUk09F4RkoVwWscgfbsJI0TySEDhh3uy6Gbkag=@protonmail.com>
In-Reply-To: <ff82fe21-8e02-42df-8760-c3e358a12766@murch.one>
References: <jiyMlvTX8BnG71f75SqChQZxyhZDQ65kldcugeIDJVJsvK4hadCO3GT46xFc7_cUlWdmOCG0B_WIz0HAO5ZugqYTuX5qxnNLRBn3MopuATI=@protonmail.com> <ff82fe21-8e02-42df-8760-c3e358a12766@murch.one>
Feedback-ID: 7060259:user:proton
X-Pm-Message-ID: 9c7e7c63339b66b16fde4e77d44eadf54ececc0c
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Original-Sender: darosior@protonmail.com
X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass
header.i=@protonmail.com header.s=protonmail3 header.b=K5ChcdS2;
spf=pass (google.com: domain of darosior@protonmail.com designates
185.70.43.16 as permitted sender) smtp.mailfrom=darosior@protonmail.com;
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=protonmail.com
X-Original-From: Antoine Poinsot <darosior@protonmail.com>
Reply-To: Antoine Poinsot <darosior@protonmail.com>
Precedence: list
Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com
List-ID: <bitcoindev.googlegroups.com>
X-Google-Group-Id: 786775582512
List-Post: <https://groups.google.com/group/bitcoindev/post>, <mailto:bitcoindev@googlegroups.com>
List-Help: <https://groups.google.com/support/>, <mailto:bitcoindev+help@googlegroups.com>
List-Archive: <https://groups.google.com/group/bitcoindev
List-Subscribe: <https://groups.google.com/group/bitcoindev/subscribe>, <mailto:bitcoindev+subscribe@googlegroups.com>
List-Unsubscribe: <mailto:googlegroups-manage+786775582512+unsubscribe@googlegroups.com>,
<https://groups.google.com/group/bitcoindev/subscribe>
X-Spam-Score: -1.0 (-)
I laid out my reasoning for increasing the grace period to 7200 on the Cons=
ensus Cleanup Delving
thread [0]. TL;DR: there is marginal safety benefits to doing so and virtua=
lly no cost (it only
increases the worst case block rate from ~0.1% to ~0.65%). So on balance i =
concluded it was
preferable to err on the safe side.
I chose to go with mandating nLockTime be set in coinbase transactions to t=
he height of the block
they are included in minus 1 because it has marginal benefits in addition t=
o ensuring coinbase
transactions can't be duplicate (retrieving / proving the block height more=
efficiently), and the
feedback i got from miners both publicly [1] and privately was that none of=
the options presented
significantly more challenge for them.
Antoine
[0] https://delvingbitcoin.org/t/great-consensus-cleanup-revival/710/66
[1] https://groups.google.com/g/bitcoinminingdev/c/qyrPzU1WKSI/m/uzxS5jG0Aw=
AJ
On Thursday, February 6th, 2025 at 4:34 PM, Murch <murch@murch.one> wrote:
>=20
>=20
> Thank you for the update and your work on the Great Consensus Cleanup. I
> am looking forward to reading your BIP, and would hope that you could
> share here or in the BIP=E2=80=99s Rationale what convinced you to change=
the
> grace period from 600 seconds to 7200 seconds and how the nLockTime of
> height-1=E2=80=AFwon out.
>=20
> Cheers,
> Murch
>=20
> On 2025-02-05 13:09, 'Antoine Poinsot' via Bitcoin Development Mailing
> List wrote:
>=20
> > Hi everyone,
> >=20
> > A bit over a year ago i started working on revisiting the 2019 Great Co=
nsensus Cleanup proposal from
> > Matt Corallo [0]. His proposal included:
> > - making <=3D64 bytes transactions invalid to fix merkle tree weaknesse=
s;
> > - making non-pushonly scriptSigs, FindAndDelete matches, OP_CODESEPARAT=
OR and non-standard sighash
> > types fail script validation to mitigate the worst case block validatio=
n time;
> > - restrict the nTime field of the first block in each difficulty adjust=
ment interval to be no less
> > than 600 seconds lower than the previous block's;
> >=20
> > I set out to research the impact of each of the vulnerabilities this in=
tended to patch, the
> > alternative fixes possible for each and finally if there was any other =
protocol bug fix we'd want to
> > include if we went through the considerable effort of soft forking Bitc=
oin already.
> >=20
> > Later in March i shared some first findings on Delving [1] and advertiz=
ed the effort on this mailing
> > list [2]. I also created a companion thread on Delving, kept private, t=
o discuss the details of the
> > worst case block validation time [3]. As one would expect due to the la=
rger design space available
> > to fix this issue, this private thread is where most of the discussion =
would happen. Thank you to
> > everyone who contributed feedback, insights, ideas and argumented opini=
ons on the different issues
> > all along the process.
> >=20
> > Now i would like to update the broader Bitcoin development community on=
the outcome of this effort.
> > I believe a Consensus Cleanup proposal should include the following.
> > - A fix for vulnerabilities surrounding the use of timestamps in the di=
fficulty adjustment
> > algorithm. In particular, a fix for the timewarp attack with a 7200 sec=
onds grace period as well
> > as a fix for the Murch-Zawy attack [4] by making invalid any difficulty=
adjustment period with a
> > negative duration.
> > - A fix for long block validation times with a minimal "confiscation su=
rface", by introducing a
> > per-transaction limit on the number of legacy sigops in the inputs.
> > - A fix for merkle tree weaknesses by making transactions which seriali=
ze to exactly 64 bytes
> > invalid.
> > - A fix for duplicate transactions to supplement BIP34 in order to avoi=
d resuming unnecessary BIP30
> > validation in the future. This is achieved by mandating the nLockTime f=
ield of coinbase
> > transaction to be set to the height of their block minus 1.
> >=20
> > I have started drafting a BIP draft with the detailed specs for this.
> >=20
> > Antoine Poinsot
> >=20
> > [0] https://github.com/TheBlueMatt/bips/blob/7f9670b643b7c943a0cc6d2197=
d3eabe661050c2/bip-XXXX.mediawiki
> > [1] https://delvingbitcoin.org/t/great-consensus-cleanup-revival/710
> > [2] https://groups.google.com/g/bitcoindev/c/CAfm7D5ppjo/m/bYJ3BiOuAAAJ
> > [3] https://delvingbitcoin.org/t/worst-block-validation-time-inquiry/71=
1
> > [4] https://delvingbitcoin.org/t/zawy-s-alternating-timestamp-attack/10=
62#variant-on-zawys-attack-2
>=20
>=20
> --
> You received this message because you are subscribed to the Google Groups=
"Bitcoin Development Mailing List" group.
> To unsubscribe from this group and stop receiving emails from it, send an=
email to bitcoindev+unsubscribe@googlegroups.com.
> To view this discussion visit https://groups.google.com/d/msgid/bitcoinde=
v/ff82fe21-8e02-42df-8760-c3e358a12766%40murch.one.
--=20
You received this message because you are subscribed to the Google Groups "=
Bitcoin Development Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an e=
mail to bitcoindev+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/bitcoindev/=
sVMWgaw3x0FIyTyIry8Dh-gOUBLoN-69P94Jf74rZUwZdgA5-08McH9sb1IV1oIQr8XKzCUk09F=
4RkoVwWscgfbsJI0TySEDhh3uy6Gbkag%3D%40protonmail.com.
|
