--- Log opened Tue Oct 23 00:00:45 2018
03:22 -!- klot [~klot@188.113.58.239] has joined #secp256k1
03:23 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
03:24 -!- klot [~klot@188.113.58.239] has joined #secp256k1
03:25 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
03:25 -!- klot [~klot@188.113.58.239] has joined #secp256k1
03:26 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
03:27 -!- klot [~klot@188.113.58.239] has joined #secp256k1
04:57 -!- ken2812221 [~ken281222@110.50.135.178] has joined #secp256k1
05:49 -!- ken2812221 [~ken281222@110.50.135.178] has quit [Quit: Leaving]
06:06 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
06:07 -!- klot [~klot@188.113.58.239] has joined #secp256k1
06:08 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
06:08 -!- klot [~klot@188.113.58.239] has joined #secp256k1
07:29 < nickler> Agreed that calling the serializers "unsafe" and allowing to build systems that are safe under some assumptions on top is the way to go
07:31 < nickler> But we should still pedantically enforce the state machine and I think the new api does that nicely (we still need to go through some edge cases)
07:37 < nsh> not going through edge cases of state machines gives you libssh type bugs :)
07:40 < andytoshi> lol, i wouldn't call "What if the adversary just starts at "protocol succeeded"" an edge case :)
07:43 < nsh> true but it does involve a state machine getting confused. how it passed elementary unit testing is ofc beyond me
08:01 < andytoshi> unit testing in C is horrible, i'll assume that it had no unit tests
08:12  * nsh nods
08:32 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:34 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:36 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:36 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:37 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:38 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:39 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:39 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:40 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:41 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:42 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:42 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:43 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:44 -!- klot [~klot@188.113.58.239] has joined #secp256k1
08:45 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
08:45 -!- klot [~klot@188.113.58.239] has joined #secp256k1
09:14 -!- sipa [~pw@gateway/tor-sasl/sipa1024] has quit [Ping timeout: 256 seconds]
09:24 -!- sipa [~pw@gateway/tor-sasl/sipa1024] has joined #secp256k1
10:08 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:09 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:10 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:11 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:12 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:12 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:13 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:14 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:15 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:15 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:16 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:17 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:18 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:18 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:19 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:20 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:21 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:21 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:22 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:23 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:24 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:24 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:25 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:26 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:27 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:27 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:28 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:29 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:30 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:30 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:31 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:32 -!- klot [~klot@188.113.58.239] has joined #secp256k1
10:33 -!- klot [~klot@188.113.58.239] has quit [Remote host closed the connection]
10:33 -!- klot [~klot@188.113.58.239] has joined #secp256k1
12:11 -!- klot [~klot@188.113.58.239] has quit [Read error: Connection reset by peer]
12:11 -!- klot [~klot@188.113.58.239] has joined #secp256k1
12:15 -!- reallll [~belcher@unaffiliated/belcher] has joined #secp256k1
12:16 -!- klot [~klot@188.113.58.239] has quit [Read error: Connection reset by peer]
12:19 -!- belcher_ [~belcher@unaffiliated/belcher] has quit [Ping timeout: 264 seconds]
12:28 -!- reallll is now known as belcher_
12:38 -!- ddustin [40470882@gateway/web/freenode/ip.64.71.8.130] has joined #secp256k1
12:39 < ddustin> How would I go about reducing the size of the precompute table?
12:44 < ddustin> I found this PR that was never merged: https://github.com/bitcoin-core/secp256k1/pull/337
12:46 < nsh> why do you want to reduce it? embedded constraints?
12:53 < ddustin> nsh: Yeah
12:54 < nsh> cc andytoshi
12:54 < sipa> ddustin: there is a more recent PR that reduces the size of certain tables without performance loss
12:55 < sipa> ddustin: you can change the WINDOW constants in src/ecmult_impl.h for now
12:55 < sipa> the "WINDOW_A 5" and "WINDOW_G 16" lines are the relevant ones
12:57 < ddustin> Ah that's great thanks
12:57 < sipa> oh, those are only relevant for verification
12:58 < sipa> the signing table isn't configurable in size
12:58 < sipa> but it will be reduced by #546
12:59 < ddustin> Ah I was wondering yeah. secp256k1_ecmult_gen_context_build seems to allocate an amount not controlled by any macro valeus
12:59 < ddustin> How big is the verifying table?
13:00 < sipa> 1.375 MiB
13:01 < sipa> (when WINDOW_G is 16)
13:04 < ddustin> Wow
13:40 < ddustin> Is there a way to just disable the lookup table for signing completely?
13:44 < sipa> no
13:45 < nsh> (also any simple/hacky solution to removing precomputation is liable open up side-channel vulnerabilities, and that's probably worth considering)
13:45 < nsh> liable *to
13:56 < gmaxwell> ddustin: no, and that would just be stupid, it can be made pretty much arbritarily small.
13:57 < gmaxwell> ddustin: what is your size target?
14:15 < ddustin> <50KB would be great
14:15 < ddustin> gmaxwell ^
14:35 < sipa> i think the current signing table is 80 kb
14:40 < gmaxwell> The table can be changed to 32kb with a couple lines changed.
14:41 < gmaxwell> make the table entries 2 bits instead of 4 bits.
14:47 < ddustin> gmaxwell: Ah that would be sweet
14:48 < ddustin> I copied the steps more or less from here: https://github.com/bitcoin-core/secp256k1/pull/337/commits/abcaa73da568b6d67a382b05619567e582c99ca5
14:49 < ddustin> It seemed to work, at least it compiled, but after running tests the signature verifications were failing
15:20 -!- ddustin [40470882@gateway/web/freenode/ip.64.71.8.130] has quit [Quit: Page closed]
15:20 -!- ddustin [40470882@gateway/web/freenode/ip.64.71.8.130] has joined #secp256k1
15:35 -!- deusexbeer [~deusexbee@093-092-177-219-dynamic-pool-adsl.wbt.ru] has joined #secp256k1
16:33 -!- deusexbeer [~deusexbee@093-092-177-219-dynamic-pool-adsl.wbt.ru] has quit [Quit: Konversation terminated!]
17:05 -!- ken2812221 [~ken281222@110.50.135.178] has joined #secp256k1
18:23 -!- deusexbeer [~deusexbee@093-092-177-219-dynamic-pool-adsl.wbt.ru] has joined #secp256k1
19:22 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has quit [Excess Flood]
19:22 -!- luke-jr [~luke-jr@unaffiliated/luke-jr] has joined #secp256k1
19:23 -!- ken2812221 [~ken281222@110.50.135.178] has quit [Ping timeout: 244 seconds]
19:52 -!- ddustin [40470882@gateway/web/freenode/ip.64.71.8.130] has quit [Ping timeout: 256 seconds]
22:05 -!- maaku [~maaku@173.234.25.100] has quit [Quit: ZNC - https://znc.in]
22:08 -!- maaku [~maaku@173.234.25.100] has joined #secp256k1
23:59 -!- ken2812221 [~ken281222@110.50.135.178] has joined #secp256k1
--- Log closed Wed Oct 24 00:00:46 2018