From mboxrd@z Thu Jan 1 00:00:00 1970 Delivery-date: Sun, 09 Feb 2025 16:15:57 -0800 Received: from mail-qv1-f63.google.com ([209.85.219.63]) by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from ) id 1thHSu-0007ao-JT for bitcoindev@gnusha.org; Sun, 09 Feb 2025 16:15:57 -0800 Received: by mail-qv1-f63.google.com with SMTP id 6a1803df08f44-6e4434d797fsf114901076d6.0 for ; Sun, 09 Feb 2025 16:15:56 -0800 (PST) ARC-Seal: i=2; a=rsa-sha256; t=1739146550; cv=pass; d=google.com; s=arc-20240605; b=VKeJWfzWjk4lDCiFJA+PKDt5DwcFkr3YkSh5iRZdIq4M4rMxzhb9kefdBFLvFF1sDS hKHd9QJggpPSiLIQO9PrI7TosA/5lBynns9kT32f1yO0RcL9TQPfKknSPISAhBEpjKvh z76w9F8IrzYO3Fywqt1bYrw3PPtki0+vr6MmB+1evHs1pMsnTXFD7FTOz20XAF4tiDfR hniMmWEiAPlHa/QQNCjXcGADpPaYzerZwV6PSHEYq1kCyIwZp7rnXGeVoUSWOfWk7Y4r T/WcAURYnACTDqi1SfAWDlaEc1i5PshkQxucTC7Zoi/i/8CSwnOjgEV7eOAGuU0bbO6M 8fSA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to:content-transfer-encoding :mime-version:feedback-id:references:in-reply-to:message-id:subject :cc:from:to:date:dkim-signature; bh=q7U944WPoQnl4eyW6sthRq+7aIXzCfITQ4sujW9u018=; fh=oFsvi6xrtyqRjxJMgeE2Fk2vtHu8hEVL5v5HLIjG5RU=; b=lZ+lynk3zavuWuEhoY1tOYRjZmzlG7p0ZZeGfjaE5rZVAp3W3ztQnBJE40YnFUzuzZ Jm4gRldG9Si1A4tQRjUwfxsS5ozB895nVYfeq15t0IJgnoaTT3DOvkZRbXqpN0qbt3IY uZ0l2eA+3GdXFQEf+pigyp8l5S/PphjDDilnoNkpLuaz4x03onVmXh7H8xtEBW2jqqV9 1RycgKIiF6wKZJ2KkRjFyKJwS/FVZiUuJrOE23QXblxtyRFxbph49VkeDbThvKnwKN2i JCIT3ugvbUJDVCeTkqXbqeO5Mfin1fpdl3duC/dAbLO2JraZGwhwSWnGC2a+oENu+Bcj qZ+w==; darn=gnusha.org ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@protonmail.com header.s=protonmail3 header.b=K5ChcdS2; spf=pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) smtp.mailfrom=darosior@protonmail.com; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=protonmail.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20230601; t=1739146550; x=1739751350; darn=gnusha.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender :content-transfer-encoding:mime-version:feedback-id:references :in-reply-to:message-id:subject:cc:from:to:date:from:to:cc:subject :date:message-id:reply-to; bh=q7U944WPoQnl4eyW6sthRq+7aIXzCfITQ4sujW9u018=; b=ITlJN+ilZvcnky5J3jJU0S1+DVIKZZyFqgx6uEJSkuhkK4saJ3mHGRnsYg1cLQwXyQ EkSGvHrh0Zek3m/x5IHHptD/WyVzU/uTOskhbwcLpga66ZBLtoPf117i7bT86aATDtT0 OxUCbe0gLSrWZU6GiA0juuCg6JnrLiTH9ig8DfvPIMahW7F6tA58ohwqCrEX9UgF99X8 IYlcmOW2PkFhxmFNRdTWW70QgBN/jQ96/UrvOXO2KlVZ2pt8BugW6rH7Kk9gX2yAvk4a WV4mMI/vFMxyH4NrfhND8BpKmwVIuXK5Cbxe9qccH3pxJLI9jM3eqzoqNcLKLKbVDmbk CiPw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1739146550; x=1739751350; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:reply-to :x-original-authentication-results:x-original-sender :content-transfer-encoding:mime-version:feedback-id:references :in-reply-to:message-id:subject:cc:from:to:date:x-beenthere :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=q7U944WPoQnl4eyW6sthRq+7aIXzCfITQ4sujW9u018=; b=qOuobZHTEfNJnk7rrDokKLLMaNrU6N4A3pnojfiBg5AkzQJ7Lu22TCXY9Zk/JkaVWH 2MyWZ9PIllu/Atlf3fTWjYLNu61NcfkUhItPwUU5tjAEzLxGuvlNd2II2v5j2T4hNjNa hUqPRq9Vg8RjfP+tNMDZNzlLPMRNdLQb40eQ51WvvaI7b4rghsHftkYYyxY+DFh4Rrxe 0SlpEoidRhY1qA7u5PSP15T6oE175dULWUD6EI33CkAN2jcUYWOz3T2uTI9ZlTvwRuOz IFgDGz9C92eqRSBWpSzpjGKE24bFkze1yQZ09bAt8MOH/X+Vtgoo9XHQ+PnBFIAf++RU RRpA== X-Forwarded-Encrypted: i=2; AJvYcCXmfXeRPqzohI9GF14FEeAmGoxATCt5Ub+jvS4v2c2LXvsWKB/2SUqoVtWua8aLKvRWb9ezSS3Es9gQ@gnusha.org X-Gm-Message-State: AOJu0YzPOjQZPYkFpnadqbsGDBBJBrSAwzkHV51OGxJj1ru2B/tnQ5w0 aCCqq55/Swbj2SS3+Bkz1o3mlrWiZvt0LZbk/uJ18YaXshHwh3Lv X-Google-Smtp-Source: AGHT+IFegvC0Mrt64wbSXr2S3EUyHX7drsewN1yCkRKd73b5Jyb5iHJi8vb/OOhhR8NN9UQg/OIzLg== X-Received: by 2002:ad4:5f89:0:b0:6d8:86c8:c29a with SMTP id 6a1803df08f44-6e4455edb1amr192000586d6.10.1739146550633; Sun, 09 Feb 2025 16:15:50 -0800 (PST) X-BeenThere: bitcoindev@googlegroups.com Received: by 2002:ad4:5589:0:b0:6e1:b1f2:1cb with SMTP id 6a1803df08f44-6e4451bc662ls46164466d6.1.-pod-prod-04-us; Sun, 09 Feb 2025 16:15:47 -0800 (PST) X-Received: by 2002:a05:620a:2615:b0:7be:3cd7:dd95 with SMTP id af79cd13be357-7c047ba6b8bmr1681915685a.12.1739146547234; Sun, 09 Feb 2025 16:15:47 -0800 (PST) Received: by 2002:a05:600c:285:b0:434:a703:82d1 with SMTP id 5b1f17b1804b1-43924bcc5d2ms5e9; Thu, 6 Feb 2025 14:03:57 -0800 (PST) X-Received: by 2002:a05:6000:1a8a:b0:38a:a074:9f3c with SMTP id ffacd0b85a97d-38dc9118ebemr492794f8f.16.1738879435619; Thu, 06 Feb 2025 14:03:55 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1738879435; cv=none; d=google.com; s=arc-20240605; b=ecuw/SebtWJlGmFjTob3Ywq82u8y1Sxz7iOTrWiDITSoo2NOCBYqMtnviUM8NwrvLK J2ItjPtNu6ykKbZHL2M0M6gLxS3HPRY8gJVuLq2G2A2AKW0yQk+iIVwDIWxl8i2aG0TI YkxlEmmf07GQZk9+LZl1tTvLdxoEDvCWh46j1FkTEyFfsa8FfCab77Sx6Z/w39hfMLQC OJKrF7jyXN5FlRY5YPrKvWs/XUgFX7npyY1M9vv98+/xh23lPF/fRokRTu2GZICpN2sp f3FyUWY8W2slJ+xgzRVdCGLyoBXxeVYW2c+1TzE9/M1zDcFmmQGlE8hOoQovauLzDZtO 0U6Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=content-transfer-encoding:mime-version:feedback-id:references :in-reply-to:message-id:subject:cc:from:to:date:dkim-signature; bh=R6pxeTvQnVNR52y3epqiaqLLLRhSkP7rZhleoEKpTXI=; fh=foaZ9w3C3c5ltuXRyLrsJcSZd5F+/L4e8AHpKYxjE8o=; b=i4CXVUHb95F+9Vcbdq4aNBrXxGt2NHZ/AsWFxyYaUIfPbH0GNtNZMcMd0yjcffk/6y vOr3jvUwXDDI3eKCjJ0+TB09Dp2eEFVadkl1mEjHNzWxaKdu9Fec00G/BT9plC2+YPH4 sAKWSnijRmq/rrs0duy4JhO8nfyTR0TfgWGsH1OQHhJDdx9MiSGdl33QQ7YQnFa0COXy Rqaqxbd7Q3kYxKRarCIaiVBlVLwhi1ojtivAm5d6pnxHylbhUe/g0cobEYpqtv60lR7W i4tEmpZC4Wlut+TXl1//LWyO0SGGG+Z7tkcxwqJ9OzhH6s+wROX2dtuJ+EKORhC3J+44 lwjQ==; dara=google.com ARC-Authentication-Results: i=1; gmr-mx.google.com; dkim=pass header.i=@protonmail.com header.s=protonmail3 header.b=K5ChcdS2; spf=pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) smtp.mailfrom=darosior@protonmail.com; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=protonmail.com Received: from mail-4316.protonmail.ch (mail-4316.protonmail.ch. [185.70.43.16]) by gmr-mx.google.com with ESMTPS id ffacd0b85a97d-38dbde30100si41853f8f.6.2025.02.06.14.03.55 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 06 Feb 2025 14:03:55 -0800 (PST) Received-SPF: pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) client-ip=185.70.43.16; Date: Thu, 06 Feb 2025 22:03:52 +0000 To: Murch From: "'Antoine Poinsot' via Bitcoin Development Mailing List" Cc: bitcoindev@googlegroups.com Subject: Re: [bitcoindev] Update on the Great Consensus Cleanup Revival Message-ID: In-Reply-To: References: Feedback-ID: 7060259:user:proton X-Pm-Message-ID: 9c7e7c63339b66b16fde4e77d44eadf54ececc0c MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Original-Sender: darosior@protonmail.com X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@protonmail.com header.s=protonmail3 header.b=K5ChcdS2; spf=pass (google.com: domain of darosior@protonmail.com designates 185.70.43.16 as permitted sender) smtp.mailfrom=darosior@protonmail.com; dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=protonmail.com X-Original-From: Antoine Poinsot Reply-To: Antoine Poinsot Precedence: list Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com List-ID: X-Google-Group-Id: 786775582512 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , X-Spam-Score: -1.0 (-) I laid out my reasoning for increasing the grace period to 7200 on the Cons= ensus Cleanup Delving thread [0]. TL;DR: there is marginal safety benefits to doing so and virtua= lly no cost (it only increases the worst case block rate from ~0.1% to ~0.65%). So on balance i = concluded it was preferable to err on the safe side. I chose to go with mandating nLockTime be set in coinbase transactions to t= he height of the block they are included in minus 1 because it has marginal benefits in addition t= o ensuring coinbase transactions can't be duplicate (retrieving / proving the block height more= efficiently), and the feedback i got from miners both publicly [1] and privately was that none of= the options presented significantly more challenge for them. Antoine [0] https://delvingbitcoin.org/t/great-consensus-cleanup-revival/710/66 [1] https://groups.google.com/g/bitcoinminingdev/c/qyrPzU1WKSI/m/uzxS5jG0Aw= AJ On Thursday, February 6th, 2025 at 4:34 PM, Murch wrote: >=20 >=20 > Thank you for the update and your work on the Great Consensus Cleanup. I > am looking forward to reading your BIP, and would hope that you could > share here or in the BIP=E2=80=99s Rationale what convinced you to change= the > grace period from 600 seconds to 7200 seconds and how the nLockTime of > height-1=E2=80=AFwon out. >=20 > Cheers, > Murch >=20 > On 2025-02-05 13:09, 'Antoine Poinsot' via Bitcoin Development Mailing > List wrote: >=20 > > Hi everyone, > >=20 > > A bit over a year ago i started working on revisiting the 2019 Great Co= nsensus Cleanup proposal from > > Matt Corallo [0]. His proposal included: > > - making <=3D64 bytes transactions invalid to fix merkle tree weaknesse= s; > > - making non-pushonly scriptSigs, FindAndDelete matches, OP_CODESEPARAT= OR and non-standard sighash > > types fail script validation to mitigate the worst case block validatio= n time; > > - restrict the nTime field of the first block in each difficulty adjust= ment interval to be no less > > than 600 seconds lower than the previous block's; > >=20 > > I set out to research the impact of each of the vulnerabilities this in= tended to patch, the > > alternative fixes possible for each and finally if there was any other = protocol bug fix we'd want to > > include if we went through the considerable effort of soft forking Bitc= oin already. > >=20 > > Later in March i shared some first findings on Delving [1] and advertiz= ed the effort on this mailing > > list [2]. I also created a companion thread on Delving, kept private, t= o discuss the details of the > > worst case block validation time [3]. As one would expect due to the la= rger design space available > > to fix this issue, this private thread is where most of the discussion = would happen. Thank you to > > everyone who contributed feedback, insights, ideas and argumented opini= ons on the different issues > > all along the process. > >=20 > > Now i would like to update the broader Bitcoin development community on= the outcome of this effort. > > I believe a Consensus Cleanup proposal should include the following. > > - A fix for vulnerabilities surrounding the use of timestamps in the di= fficulty adjustment > > algorithm. In particular, a fix for the timewarp attack with a 7200 sec= onds grace period as well > > as a fix for the Murch-Zawy attack [4] by making invalid any difficulty= adjustment period with a > > negative duration. > > - A fix for long block validation times with a minimal "confiscation su= rface", by introducing a > > per-transaction limit on the number of legacy sigops in the inputs. > > - A fix for merkle tree weaknesses by making transactions which seriali= ze to exactly 64 bytes > > invalid. > > - A fix for duplicate transactions to supplement BIP34 in order to avoi= d resuming unnecessary BIP30 > > validation in the future. This is achieved by mandating the nLockTime f= ield of coinbase > > transaction to be set to the height of their block minus 1. > >=20 > > I have started drafting a BIP draft with the detailed specs for this. > >=20 > > Antoine Poinsot > >=20 > > [0] https://github.com/TheBlueMatt/bips/blob/7f9670b643b7c943a0cc6d2197= d3eabe661050c2/bip-XXXX.mediawiki > > [1] https://delvingbitcoin.org/t/great-consensus-cleanup-revival/710 > > [2] https://groups.google.com/g/bitcoindev/c/CAfm7D5ppjo/m/bYJ3BiOuAAAJ > > [3] https://delvingbitcoin.org/t/worst-block-validation-time-inquiry/71= 1 > > [4] https://delvingbitcoin.org/t/zawy-s-alternating-timestamp-attack/10= 62#variant-on-zawys-attack-2 >=20 >=20 > -- > You received this message because you are subscribed to the Google Groups= "Bitcoin Development Mailing List" group. > To unsubscribe from this group and stop receiving emails from it, send an= email to bitcoindev+unsubscribe@googlegroups.com. > To view this discussion visit https://groups.google.com/d/msgid/bitcoinde= v/ff82fe21-8e02-42df-8760-c3e358a12766%40murch.one. --=20 You received this message because you are subscribed to the Google Groups "= Bitcoin Development Mailing List" group. To unsubscribe from this group and stop receiving emails from it, send an e= mail to bitcoindev+unsubscribe@googlegroups.com. To view this discussion visit https://groups.google.com/d/msgid/bitcoindev/= sVMWgaw3x0FIyTyIry8Dh-gOUBLoN-69P94Jf74rZUwZdgA5-08McH9sb1IV1oIQr8XKzCUk09F= 4RkoVwWscgfbsJI0TySEDhh3uy6Gbkag%3D%40protonmail.com.