1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
|
Delivery-date: Mon, 28 Apr 2025 05:04:04 -0700
Received: from mail-qt1-f187.google.com ([209.85.160.187])
by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(Exim 4.94.2)
(envelope-from <bitcoindev+bncBAABBKG5XXAAMGQEIRATNLQ@googlegroups.com>)
id 1u9NDP-0000F2-8p
for bitcoindev@gnusha.org; Mon, 28 Apr 2025 05:04:03 -0700
Received: by mail-qt1-f187.google.com with SMTP id d75a77b69052e-47ae7dd6217sf107822991cf.3
for <bitcoindev@gnusha.org>; Mon, 28 Apr 2025 05:04:02 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1745841836; cv=pass;
d=google.com; s=arc-20240605;
b=JlXkiZfGIH8FoAeVOCLvGpyn+i7D835Na1tfWrNxmX+rUBrizF4YNubzKvffEbcd7X
ARlvTgu+ctCy2Bn7TQcxyKJq/modBtBGICVV/HvCWfhB8FWMPDMfvdKdmvjqV/ooHD7f
TE0S0swxJMYeRRVawAhLfA4vltOWHnCpXTqR1T4OLtKtY1+MjQBK6GztJ1o7cyd2BL5U
6iiWoQpW/Zfo6aSYq/pIJpuvEI44bYfMtfVSwgMpseeJqvbZN3teZ+mJhWeSc8TRpukL
KAIN76+AgZm0LPC6tqi7aoPCqZcCdrPZaOnmy5rmqzZSyax/uUqYm8zPHh2lUNR/42U1
whNg==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:to:date:message-id:subject
:mime-version:content-transfer-encoding:from:feedback-id:sender
:dkim-signature;
bh=1n5l8Tk4VOCF6BDhpoowlfNanTXPdKy002+iacCH7ec=;
fh=DmTnGuUCKHCbsqNlUecazq+FvOWvMAWeNwZbOkuSABk=;
b=joSSxh/oYkAbkm9sqt+R0gcAur7inEI1OIT03pE+tHa20YHa/jz04ps/Hi3I41W8k0
eIKxXymXZSnis0VgscNPeQJCCILCG9txsrCt5sSzjBSnJ3GTH/a+rXO9BDJKUyqNxtvL
vSzusbqW08Bh537mmDA6/XYxQRNgL25PS711HM/8+Kkp0DGSmX1/w0v9ISUkkE620+j/
xGOoiCt/wu1CPZpMieudxS50qI2rxju9otD7ALUU8cpTz52qm/13SiRJPzaQIS+VHiN1
Ri5/uYwjMbG0AptIGQ1YpLMCnfCkmaKFexMNyX2rKB2MPcNcF0+vNud51YZ7jvRZj66N
SxDg==;
darn=gnusha.org
ARC-Authentication-Results: i=2; gmr-mx.google.com;
dkim=pass header.i=@sprovoost.nl header.s=fm1 header.b=dhCp2Qn3;
dkim=pass header.i=@messagingengine.com header.s=fm3 header.b=lohynuOK;
spf=pass (google.com: domain of sjors@sprovoost.nl designates 103.168.172.147 as permitted sender) smtp.mailfrom=sjors@sprovoost.nl;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=sprovoost.nl
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=googlegroups.com; s=20230601; t=1745841836; x=1746446636; darn=gnusha.org;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:x-original-authentication-results
:x-original-sender:to:date:message-id:subject:mime-version
:content-transfer-encoding:from:feedback-id:sender:from:to:cc
:subject:date:message-id:reply-to;
bh=1n5l8Tk4VOCF6BDhpoowlfNanTXPdKy002+iacCH7ec=;
b=MJbTFUB6VEu4qdqAePpp6aGAJ1qR0w0AVxCAfxXmLzMctBKhozmtbBODnAnY0nkZjF
VWQ+yTtZ8tt+Z1svt5GC26xUB0zid1o0zMGIXytuLRfb4+86NyKzFao+X/OoK8Txbwfd
0/mryUAQsZMjUXpsFR9RuUYi9J08vDu/PshpXHgcPmcijCwZ2eIAZaXTmKu+z6yJu3M7
JZcd1JUrUjYTP76NNnl9Pt3HftQLZyDChex2CndQT3yI4YZuz+yTc6kxJ2wgndt0FU50
f5ZD849gQC81+ZmAxKhP8K9LiE5KBFQqioXaui034DtqON2kb/y/GWL6H6vhCumw5Yai
t+fQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1745841836; x=1746446636;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:x-original-authentication-results
:x-original-sender:to:date:message-id:subject:mime-version
:content-transfer-encoding:from:feedback-id:x-beenthere
:x-gm-message-state:sender:from:to:cc:subject:date:message-id
:reply-to;
bh=1n5l8Tk4VOCF6BDhpoowlfNanTXPdKy002+iacCH7ec=;
b=ESfooWfN4CE5+9Rsts6wz/7eHYi8ibgZ7i6wnlasLCk33ZVbs0z/vWpD748y8LLSqa
ddwIqZ4nqx1GLj2beCcTuKr5shIUhTzQSLVny985ekpXuGtpZCJEm8g30Vdoym7SOrbi
qOX67/Ih07KilKmprX47tnCC3TIhE1CyxTS3oOpCyuQbMFW6jj+Tgk7kFVmG8BbN4D4q
RNi+BIrgai3wxWbkYrvUPJr1sNV8+NcsnP7floUa7QFCFpHNroZCYext3v26RWrKLEyM
NkuDhVRJTCm6FgSVgX5DIAi/PtAmQ3qYetmoAzaamrISVMezt0xQDhB6j6bhWxNwL0JW
pI3Q==
Sender: bitcoindev@googlegroups.com
X-Forwarded-Encrypted: i=2; AJvYcCW/Gm3N72aCxTh1UuGeaw9SFh0+gCk23UigABNeUXL64zh8n9HYqfsXmZ8p7Dv7G7QLg+cpVTrNDet1@gnusha.org
X-Gm-Message-State: AOJu0Yy6PDgKnt6rzP4Nbj2zS3d1Qye5a7g66aa6rVUX/UgcRs3cB+a1
d7YF0r7dhueHEGBalwcDskL5f66e5bsCICt1cpFsOUPvtTOVtSOV
X-Google-Smtp-Source: AGHT+IG5CczQ+r/0iytldQ4zPo4z9XrZl6ehu4rH43rVn6rHxvayFMNnWa5ZaxLtPZtipv3JabriXQ==
X-Received: by 2002:a05:622a:3d0:b0:476:aa36:d67c with SMTP id d75a77b69052e-4801e8e241fmr188729591cf.49.1745841835804;
Mon, 28 Apr 2025 05:03:55 -0700 (PDT)
X-BeenThere: bitcoindev@googlegroups.com; h=AVT/gBEGQak4D4lpDDstofxC28fss0ai9bfKGWMpHln/8e0Tzg==
Received: by 2002:ac8:7f53:0:b0:476:69c5:ff0b with SMTP id d75a77b69052e-47e5af3419dls70770711cf.1.-pod-prod-09-us;
Mon, 28 Apr 2025 05:03:52 -0700 (PDT)
X-Received: by 2002:a05:620a:2954:b0:7c5:3c0a:ab78 with SMTP id af79cd13be357-7c9606fcadcmr1409791385a.14.1745841832720;
Mon, 28 Apr 2025 05:03:52 -0700 (PDT)
Received: by 2002:a05:620a:254e:b0:7c5:50d5:7703 with SMTP id af79cd13be357-7c960f1afa2ms85a;
Mon, 28 Apr 2025 04:34:37 -0700 (PDT)
X-Received: by 2002:ad4:4ea8:0:b0:6f2:a4cf:5fd7 with SMTP id 6a1803df08f44-6f4cba645abmr194492276d6.45.1745840076480;
Mon, 28 Apr 2025 04:34:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1745840076; cv=none;
d=google.com; s=arc-20240605;
b=FDhow3ubrBxq8nh5yTk1Kq57H0jd8DRH0cUw9MqjBSpHthX1g2BlZyZlnN2tV24x3s
lPMV5uT4ke7IgtdFpV/F8gLd2nc456bjZYMoexhaPubSDp4bVYzKYZjyKW5Z9aTirf55
SM6XSpEilOV2dvjTQY1/QTEKJmONREj7HQNZTNlPDqKduD0Dx3i1qmC8dmd28XmDgoAJ
4vhcI4mhmRA3u8wgYm4uTPiLGr39Fra6kYBUkP7Gj5T7m7vpNyg3sQ7WsLtQoRFwEWje
3bTAXOSSkTA9HBczcJliPpY6SQAjnQtTyTFaq/nY7btlUkEIRkaV+OkIh1EucMOsxQ7f
gyTA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;
h=to:date:message-id:subject:mime-version:content-transfer-encoding
:from:feedback-id:dkim-signature:dkim-signature;
bh=Ij2rP6Vx9asz1Dg9VTe4u3hlBl0wT7/dT/SKHqb0GN0=;
fh=DMP0F9ULS1guKiqimntQRCN8ZraraesEgQuVcn7F0Z0=;
b=WC8c0XLdAxrtvOeimtWX3ugyy2ObvUl4wtU88dAOAXX1okpz/qRUKJ2JtNHZGUAulm
zU7oy3I00lK62r9RCWmv5xP5adiXiaYxIrfajCXzKPs0uoC1v3e+j6QPK0HAb8Y7II40
y+bC43UHT+wZG8zVBed9qC2I0gATcEZnFKqXvPHociFq2kTJOO1F16lBfDi6zIeM6oxL
mnLHu1ukvj1PjUXv1XiqCflWIb2WQTKkTsQxK8uILV4IyTv7b4Bhx0wFesambP7nLocm
mAHM8RlTufSgazGb+FOc9B5S/3/6fzFtr+nVx0IE8XI/OFaPzDfTHspfFDl/6MM9d5GU
Vksg==;
dara=google.com
ARC-Authentication-Results: i=1; gmr-mx.google.com;
dkim=pass header.i=@sprovoost.nl header.s=fm1 header.b=dhCp2Qn3;
dkim=pass header.i=@messagingengine.com header.s=fm3 header.b=lohynuOK;
spf=pass (google.com: domain of sjors@sprovoost.nl designates 103.168.172.147 as permitted sender) smtp.mailfrom=sjors@sprovoost.nl;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=sprovoost.nl
Received: from fout-a4-smtp.messagingengine.com (fout-a4-smtp.messagingengine.com. [103.168.172.147])
by gmr-mx.google.com with ESMTPS id 6a1803df08f44-6f4e082c128si1101586d6.1.2025.04.28.04.34.36
for <bitcoindev@googlegroups.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Mon, 28 Apr 2025 04:34:36 -0700 (PDT)
Received-SPF: pass (google.com: domain of sjors@sprovoost.nl designates 103.168.172.147 as permitted sender) client-ip=103.168.172.147;
Received: from phl-compute-12.internal (phl-compute-12.phl.internal [10.202.2.52])
by mailfout.phl.internal (Postfix) with ESMTP id D2C9F1380869
for <bitcoindev@googlegroups.com>; Mon, 28 Apr 2025 07:34:35 -0400 (EDT)
Received: from phl-mailfrontend-02 ([10.202.2.163])
by phl-compute-12.internal (MEProxy); Mon, 28 Apr 2025 07:34:35 -0400
X-ME-Sender: <xms:y2cPaAH4Yw-46rlpkz0ttY5qcU8Ps7HA64EFTxLgRFTaaoYvqMecEg>
<xme:y2cPaJWaQyVpahjq0bijarFJCVDJZmheBH1puOgwghB2Z--nLsxL9GLS1mwaAuPCu
X-ApQDhszRIvS4cNA>
X-ME-Received: <xmr:y2cPaKIHZ0lSY2UlixigmVaaeFGdDwzFVpJOLEGuwWNeRos-vPptxG1DllmJSUGrlrE9>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefvddrtddtgddviedtkeegucetufdoteggodetrf
dotffvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgfnhhsuhgsshgtrhhisggv
pdfurfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttdenucesvcftvggtihhpih
gvnhhtshculddquddttddmnecujfgurhephfgtgfgguffkfffvofesthhqmhdthhdtvden
ucfhrhhomhepufhjohhrshcurfhrohhvohhoshhtuceoshhjohhrshesshhprhhovhhooh
hsthdrnhhlqeenucggtffrrghtthgvrhhnpeeklefgteffhfevteekgfeuvefhjeeuiedu
uedugfdvgfefjeffudeljeegkeetveenucffohhmrghinhepghhithhhuhgsrdgtohhmpd
hsthgrtghkvgigtghhrghnghgvrdgtohhmpdhsvggtuhhrihhthidrmhgunecuvehluhhs
thgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepshhjohhrshesshhprh
hovhhoohhsthdrnhhlpdhnsggprhgtphhtthhopedupdhmohguvgepshhmthhpohhuthdp
rhgtphhtthhopegsihhttghoihhnuggvvhesghhoohhglhgvghhrohhuphhsrdgtohhm
X-ME-Proxy: <xmx:y2cPaCE49ZvbZcPNr3P77TYwaGpZKs_eocGd5EO1tNGCVBKbLsZL0g>
<xmx:y2cPaGVQhlBtpALbcqLHy29a18K2Av8dIEb3iQKu6Wn0YWabV6GWJA>
<xmx:y2cPaFOVbSncnSWY_8pRcXSDbMOiwZVS97z-WW7HuBOhAFsRlk9byQ>
<xmx:y2cPaN238ix-33O2L8wJXrCRWHDcwKLjgTUSoUEmD_LqvCUAvevMIQ>
<xmx:y2cPaJcbPStXd4-EjhAufce9N6nskLzr-YdG5BVPhuRruLps0GV7yYsQ>
Feedback-ID: ie5e042df:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for
<bitcoindev@googlegroups.com>; Mon, 28 Apr 2025 07:34:35 -0400 (EDT)
From: Sjors Provoost <sjors@sprovoost.nl>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3826.500.181.1.5\))
Subject: [bitcoindev] Removing checkpoints in Bitcoin Core v30
Message-Id: <F8E9B25A-5198-4A5E-B3D7-9DAD6B709825@sprovoost.nl>
Date: Mon, 28 Apr 2025 13:34:23 +0200
To: Bitcoin Development Mailing List <bitcoindev@googlegroups.com>
X-Mailer: Apple Mail (2.3826.500.181.1.5)
X-Original-Sender: sjors@sprovoost.nl
X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass
header.i=@sprovoost.nl header.s=fm1 header.b=dhCp2Qn3; dkim=pass
header.i=@messagingengine.com header.s=fm3 header.b=lohynuOK; spf=pass
(google.com: domain of sjors@sprovoost.nl designates 103.168.172.147 as
permitted sender) smtp.mailfrom=sjors@sprovoost.nl; dmarc=pass (p=NONE
sp=NONE dis=NONE) header.from=sprovoost.nl
Precedence: list
Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com
List-ID: <bitcoindev.googlegroups.com>
X-Google-Group-Id: 786775582512
List-Post: <https://groups.google.com/group/bitcoindev/post>, <mailto:bitcoindev@googlegroups.com>
List-Help: <https://groups.google.com/support/>, <mailto:bitcoindev+help@googlegroups.com>
List-Archive: <https://groups.google.com/group/bitcoindev
List-Subscribe: <https://groups.google.com/group/bitcoindev/subscribe>, <mailto:bitcoindev+subscribe@googlegroups.com>
List-Unsubscribe: <mailto:googlegroups-manage+786775582512+unsubscribe@googlegroups.com>,
<https://groups.google.com/group/bitcoindev/subscribe>
X-Spam-Score: -0.8 (/)
Dear list,
I thought this was already communicated, but I can't find a thread.
A recent pull request was merged into Bitcoin Core that removes existing ch=
eckpoints and all related support code.[0] The current plan is for this cha=
nge to be part of v30 which should be released this fall.
Checkpoints are no longer needed in order to protect against low proof-of-w=
ork header spam attacks, thanks to the headers pre-sync functionality inclu=
ded since v24. [1]
The existing checkpoints no longer provide enough security against those at=
tacks. Adding new checkpoints is not desirable.
However, if someone is aware of another attack, please disclose it (ideally=
responsibly) so the change can be reverted. [2]
Since older versions of Bitcoin Core, as well as other Bitcoin implementati=
ons, still enforce the checkpoints, an extremely large reorg (attack by ali=
ens, NSA, etc) would split the network. This may already be the case due to=
the way some older soft forks have been grandfathered / buried in Bitcoin =
Core.[3]
I think many would consider Bitcoin a total loss in such a scenario and not=
worth salvaging - especially if the attacker didn't airdrop you any coins =
in the reorg. But it could be useful for someone to write a BIP that descri=
bes what happens in such a scenario. It could recommend ways to at least re=
gain consistency, and perhaps permanently apply some soft fork rules from g=
enesis (e.g. activate them if the last checkpoint header is absent).
Kind regards,
Sjors Provoost
[0] https://github.com/bitcoin/bitcoin/pull/31649
[1] https://bitcoin.stackexchange.com/a/121235/4948
[2] https://github.com/bitcoin/bitcoin/blob/master/SECURITY.md
[3] https://github.com/bitcoin/bips/blob/master/bip-0090.mediawiki
--=20
You received this message because you are subscribed to the Google Groups "=
Bitcoin Development Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an e=
mail to bitcoindev+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/bitcoindev/=
F8E9B25A-5198-4A5E-B3D7-9DAD6B709825%40sprovoost.nl.
|
