--- Log opened Wed Mar 13 00:00:26 2024
00:00 -!- reardencode [~reardenco@shrugged.reardencode.com] has joined #bitcoin-core-pr-reviews
00:15 -!- abubakarsadiq [uid602234@id-602234.hampstead.irccloud.com] has joined #bitcoin-core-pr-reviews
00:28 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
00:36 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
00:45 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
00:46 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
01:08 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
01:14 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
01:29 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
01:38 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 255 seconds]
01:54 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
02:01 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 260 seconds]
02:03 -!- jonatack [~jonatack@user/jonatack] has quit [Ping timeout: 255 seconds]
02:04 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
02:04 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
02:04 -!- jonatack [~jonatack@user/jonatack] has joined #bitcoin-core-pr-reviews
02:13 -!- reardencode [~reardenco@shrugged.reardencode.com] has quit [Ping timeout: 255 seconds]
02:15 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
02:20 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
02:27 -!- b10c [~quassel@user/b10c] has quit [Quit: https://quassel-irc.org - Chat comfortably. Anywhere.]
02:29 -!- b10c [~quassel@static.33.106.217.95.clients.your-server.de] has joined #bitcoin-core-pr-reviews
02:29 -!- b10c [~quassel@user/b10c] has changed host
02:29 -!- b10c [~quassel@user/b10c] has quit [Client Quit]
02:30 -!- reardencode [~reardenco@shrugged.reardencode.com] has joined #bitcoin-core-pr-reviews
02:32 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
02:33 -!- b10c [~quassel@user/b10c] has joined #bitcoin-core-pr-reviews
02:38 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 255 seconds]
03:34 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
03:42 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 256 seconds]
03:48 -!- __gotcha1 [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
03:48 -!- vincenzopalazzo_ [~vincenzop@static.14.246.108.65.clients.your-server.de] has joined #bitcoin-core-pr-reviews
03:49 -!- vincenzopalazzo [~vincenzop@static.14.246.108.65.clients.your-server.de] has quit [Ping timeout: 252 seconds]
03:49 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Ping timeout: 252 seconds]
03:49 -!- __gotcha1 is now known as __gotcha
03:58 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
04:03 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
04:17 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
04:22 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 260 seconds]
04:35 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
04:40 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
04:52 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
04:56 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Remote host closed the connection]
04:56 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
04:58 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 272 seconds]
05:00 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
05:02 -!- cguida [~cguida@2806:2f0:55e1:f7b9:6084:b961:13bc:62e7] has quit [Ping timeout: 246 seconds]
05:37 -!- cguida [~cguida@apnlte.ht1.136.x.attmex.mx] has joined #bitcoin-core-pr-reviews
05:44 -!- cguida [~cguida@apnlte.ht1.136.x.attmex.mx] has quit [Ping timeout: 252 seconds]
06:05 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 240 seconds]
06:16 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
06:21 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
06:31 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
06:33 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Remote host closed the connection]
06:36 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
07:02 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Remote host closed the connection]
07:20 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
07:22 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Ping timeout: 268 seconds]
07:25 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
07:25 -!- cygnet3 [~cygnet3@185.65.134.166] has joined #bitcoin-core-pr-reviews
07:27 -!- pablomartin [~pablomart@193.160.246.250] has joined #bitcoin-core-pr-reviews
07:33 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Remote host closed the connection]
07:34 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
07:36 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Remote host closed the connection]
07:36 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
07:53 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
07:53 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
08:06 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
08:06 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
08:16 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
08:16 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
08:23 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Ping timeout: 268 seconds]
08:24 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
08:28 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
08:29 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
08:45 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Ping timeout: 252 seconds]
08:48 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
08:54 -!- mehounme [~mehounme@137.255.26.42] has joined #bitcoin-core-pr-reviews
08:56 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Remote host closed the connection]
09:16 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
09:41 -!- cygnet3 [~cygnet3@185.65.134.166] has quit [K-Lined]
09:57 -!- Guest42 [~Guest42@212.129.83.202] has joined #bitcoin-core-pr-reviews
09:58 -!- mehounme34 [~mehounme@137.255.26.42] has joined #bitcoin-core-pr-reviews
09:59 -!- monlovesmango [monlovesma@gateway/vpn/protonvpn/monlovesmango] has joined #bitcoin-core-pr-reviews
09:59 < reardencode> If I understand UTC correctly, it's nearly time to talk about #LNHANCE for bitcoin inquisition (OP_CHECKSIGFROMSTACK(VERIFY) and OP_INTERNALKEY) :)
09:59 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Remote host closed the connection]
10:00 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
10:00 < mehounme> Yes
10:01 < reardencode> #startmeeting
10:01 < reardencode> Hi!
10:01 < mehounme> Hello
10:01 < glozow> hi
10:01 < Guest42> hi
10:01 -!- cguida [~cguida@APNLTE.FD3.26.x.attmex.mx] has joined #bitcoin-core-pr-reviews
10:02 < monlovesmango> hey
10:02 < cguida> h
10:02 < cguida> hi
10:02 -!- Naiyoma [~Naiyoma@196.207.134.149] has joined #bitcoin-core-pr-reviews
10:02 < emzy> hi
10:02 < reardencode> Links: https://bitcoincore.reviews/bitcoin-inquisition-45 https://github.com/bitcoin-inquisition/bitcoin/pull/45
10:03 < reardencode> I'll go through the questions in the notes, but feel free to drop other questions or comments throughout.
10:03 < reardencode> Did you review the PR? Concept ACK, approach ACK, tested ACK, or NACK? What was your review approach?
10:04 < cguida> Didn't do an official review yet! Meaning to soon :)
10:04 < monlovesmango> reviewed but no opinion... here to learn mostly
10:05 < cguida> Probably Concept ACK from me
10:05 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 272 seconds]
10:05 < emzy> did no review, so no opinion.
10:06 < reardencode> Bonus question: Have you read the BIPs, or delving thread about this effort?
10:07 < Guest42> no
10:07 < monlovesmango> read bip 119 and delving thread
10:08 < reardencode> https://delvingbitcoin.org/t/lnhance-bips-and-implementation/376 https://github.com/bitcoin-inquisition/binana/blob/master/2024/BIN-2024-0003.md https://github.com/bitcoin-inquisition/binana/blob/master/2024/BIN-2024-0004.md for reference
10:08 < cguida> Yes, I've read those
10:08 < reardencode> 2. What does OP_CHECKSIGFROMSTACKVERIFY leave on the stack? OP_CHECKSIGFROMSTACK?
10:10 < cguida> VERIFY fails the script if the signature fails, otherwise leaves nothing, without VERIFY it pushes 1 for success and 0 for failure
10:10 < cguida> same as CHECKSIG
10:10 < reardencode> cguida: close - hint: CSFSV repurposes a OP_NOP and CSFS repurposes an OP_SUCCESS
10:12 < cguida> ah. CSFSV leaves the 3 inputs on the stack
10:13 < reardencode> right! I've actually found that in practical scripts this behavior can be useful since CSFS(V) are often used to authorize arguments to other ops, eg. a pubkey for delegation, so leaving items on the stack can be desirable.
10:13 < reardencode> 3. In what case can OP_CHECKSIGFROMSTACK fail and terminate script execution?
10:14 < reardencode> cguida already told us that CSFSV does for any invalid signature, but there is also a case that terminates script execution for CSFS
10:14 < cguida> If there are fewer than 3 items on the stack
10:15 < cguida> or if the pubkey is the wrong size
10:15 < reardencode> pubkey the wrong size is a NOP
10:15 < monlovesmango> wrong sig version?
10:15 < cguida> sorry, if the pubkey is size 0
10:15 < reardencode> monlovesmango: close - somewhat more general
10:16 < reardencode> cguida: you're right I didn't account for all cases in writing the question! 0 pubkey, and small stack also fail.
10:17 < monlovesmango> SCRIPT_VERIFY_DISCOURAGE_CHECKSIGFROMSTACK flag?
10:17 < cguida> the sig needs to be a valid bip340 sig
10:18 < reardencode> as monlovesmango alluded, the case I was thinking of is any non-empty invalid signature terminates execution immediately; only a 0-length signature pushes 0 to the stack and continues execution
10:18 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
10:18 < reardencode> This is the same behavior as OP_CHECKSIG in tapscript.
10:19 < reardencode> 4. What will cause OP_CHECKSIGFROMSTACK to succeed without checking the signature?
10:19 < cguida> ok so i was wrong that a 0 is pushed to the stack if sig validation fails?
10:19 < reardencode> cguida already mentioned this one - non-0, non-32-byte pubkeys succeed without doing any sig validation
10:20 < reardencode> cguida: yeah, somewhat surprising, but useful behavior to avoid malleability.
10:20 < cguida> I believe CHECKSIG pushes 0 to the stack for invalid sig, correct?
10:20 < cguida> so this is different from that?
10:21 < reardencode> Honestly, I forget the exact semantics for legacy/witnessv0 checksig. This behavior is copied from Tapscript checksig.
10:21 < cguida> gotcha
10:21 < reardencode> As I mentioned in the notes, I was originally going to make CSFS follow the semantics of other sigops in respective script types, but that pretty quickly showed itself to be a poor path both in code clarity, and in terms of making new things in bitcoin better than old things.
10:21 < cguida> CSFS will succeed if the pubkey is length not in (0,32)
10:22 < reardencode> ^^ yep
10:22 < monlovesmango> what line in code is "non-0, non-32-byte pubkeys succeed without doing any sig validation"?
10:22 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 260 seconds]
10:22 < reardencode> monlovesmango: interpreter.cpp:374 on the diff I'm looking at
10:23 < monlovesmango> thank you :)
10:23 < reardencode> 5. What length is the data argument to OP_CHECKSIGFROMSTACK(VERIFY)?
10:23 < reardencode> What length is the data argument to OP_CHECKSIGFROMSTACK(VERIFY)?
10:23 < reardencode> What length is the data argument to OP_CHECKSIGFROMSTACK(VERIFY)?
10:23 < reardencode> sorry, paste trouble.
10:24 < cguida> should be 0 to 520 bytes?
10:24 < reardencode> correct - there are no special limits applied to it beyond those enforced by script.
10:25 < cguida> +1
10:25 < reardencode> BIP340 mixes the message such that non-uniform messages or short messages do not compromise the signing protocol's unforgeability.
10:26 < reardencode> 6. How does OP_INTERNALKEY OP_CHECKSIG in Tapscript compare to key spend in weight?
10:27 < cguida> looks like it's 8 vBytes smaller?
10:27 < reardencode> in key spend, does the pubkey appear in the spend stack?
10:29 < cguida> ah right, this saves 32 bytes, because you don't need to input the pubkey
10:30 < reardencode> in a taproot key spend, the pubkey is taken from the scriptPubKey directly, so currently a tapscript single sig spend is 32 bytes + some overhead more costly. With OP_INTERNALKEY we can get rid of that extra 32 bytes, but we still have the overhead. So, what's the overhead?
10:31 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
10:31 < reardencode> 2 additional witness item lengths, 1 leading controlblock byte, 2 script opcodes. - 5 extra WU
10:32 < reardencode> (open to having missed something here, but I _think_ that's right)
10:32 < cguida> ok so 32 - 5 = 27?
10:32 < reardencode> keyspend looks like this: <sig>
10:33 < reardencode> script spend looks like this: <sig> <script> <controlblock>
10:33 < reardencode> without OP_INTERNALKEY, <script> is: <pubkey> OP_CHECKSIG. with OP_INTERNALKEY, it's OP_INTERNALKEY OP_CHECKSIG.
10:34 < reardencode> for a depth0 script, <controlblock> is: 0xc0<internalkey>
10:35 < cguida> ok so the script is 2 bytes vs 33 bytes, so 31 bytes smaller...
10:36 < reardencode> bah, no, I had this wrong, it's not 5.
10:36 < reardencode> so, compared to key spend, a depth0 1-sig script spend w/o INTERNALKEY costs 2 witness item lengths, plus a 33-byte script plus a 33-byte controlblock extra
10:36 < reardencode> with internalkey, we can cut out 32 of those bytes
10:37 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
10:37 < reardencode> so, compared to a key spend, the script spend using the inernalkay is 2 witness item lengths, plus a 2-byte script plus a 33-byte control block, so 37WU or 9.25vB more costly.
10:37 -!- brunoerg [~brunoerg@2804:14c:3bfb:11d:8caf:f8d7:25d9:2151] has quit [Ping timeout: 255 seconds]
10:38 < reardencode> well that was fun :-D
10:38 < monlovesmango> haha i'm going to have to go back and reread that a bunch of times
10:39 < reardencode> yeah, sorry for being wrong initially. moving on!
10:39 < cguida> yeah haha still noodling on this
10:39 < reardencode> 7. How can the Lightning Network be improved using OP_CHECKSIGFROMSTACK combined with OP_CHECKTEMPLATEVERIFY (BIP-119)?
10:39 < monlovesmango> enables eltoo?
10:39 < cguida> and PTLCs! and things that are arguably LN-adjacent like timeout trees!
10:40 < reardencode> ^^ exactly. cguida is working on PoCing ln-symmetry to compare with using SIGHASH_ANYPREVOUT for the same purpose
10:40 < cguida> :)
10:40 < reardencode> PTLCs are technically possible without CTV/CSFS, but the scripts are much simplified by having them.
10:40 < cguida> LN-symmetry is the new name for eltoo btw
10:41 < monlovesmango> gotcha thanks!
10:41 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
10:41 < cguida> Or I've also heard Symmetry Channels
10:41 < glozow> what would LN symmetry update/settle transactions look like this way?
10:42 < monlovesmango> agree both of those are less confusing than eltoo
10:43 < reardencode> glozow: https://delvingbitcoin.org/t/ln-symmetry-project-recap/359 - basically the same as with ANYPREVOUT, except instead of <sig> | <apo_pubkey> OP_CHECKSIG, we have <sig> <hash> | OP_CTV <pubkey> OP_CHECKSIGFROMSTACK
10:43 < cguida> CTV+CSFS essentially emulates APO
10:44 < reardencode> (that's for the update tx) for settle we just have <> | <hash> OP_CTV
10:45 < reardencode> (where with APO for settle we have <> | <sig> <apo_pubkey> OP_CHECKSIG
10:45 < reardencode> here you can see how APO almost emulates CTV as well
10:46 < reardencode> the differences between APO and CTV are subtle, CTV commits to n-inputs where APO does not, which only matters sometimes, and APO commits to annex (if present) but CTV does not.
10:47 < reardencode> WHich brings us to my next group of questions! :-D
10:47 < reardencode> 1. Why might a user of OP_CHECKSIGFROMSTACK(VERIFY) want to check multiple stack items?
10:47 < reardencode> (that is verify a single signature that commits to multiple stack items)
10:47 < monlovesmango> to validate multiple conditions?
10:48 < glozow> reardencode: thanks
10:48 < reardencode> monlovesmango: roughly, yeah - any more specific cases you can think of?
10:49 < cguida> To be able to commit to arb data on the blockchain without sticking it in the annex :p
10:49 < reardencode> glozow: :)
10:49 < reardencode> cguida: I'd consider that an anti-use-case, and one better served by other existing methods for doing the same.
10:49 < monlovesmango> err no just answering based on gut feelings...
10:50 < monlovesmango> what is the annex?
10:50 < glozow> have another side question - why did you decide to bundle these together? is the thought process that they should be activated together?
10:50 < reardencode> monlovesmango: a currently non-standard additional signed witness data item added in taproot
10:51 < reardencode> glozow: yeah, my thought process is that CTV alone offers only speculative use-cases, but CTV+IKEY+CSFS offers concrete known use-cases, as well as those speculative use-cases.
10:51 < cguida> fine, i guess "arb" data is not what is happening here
10:51 < cguida> but, extra data
10:52 < monlovesmango> is checking multiple items from stack what allows it to work with CTV?
10:53 < cguida> glozow: CTV+CSFS allows emulating APO, so it gets us most (all?) of the stuff APO gets us, plus all the stuff CTV gets us, while minimizing surface area
10:53 < reardencode> to dive in on monlovesmango's idea of committing to multiple things - consider an inheritence use-case - with CSFS on multiple items, you can commit to a locktime, and a pubkey OR template - in this way you don't have to define all possible inheritence scenarios up front, but can delegate to specific keys after specific locktime, or specific templates after other lock times all by 
10:53 < reardencode> pre-signing delegations with your 'main' key.
10:53 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
10:55 -!- Talkless [~Talkless@mail.dargis.net] has joined #bitcoin-core-pr-reviews
10:55 < reardencode> monlovesmango: it helps - the other specific case that has come up is something that instagibbs and cguida hit for LN-Symmetry, the need to commit to both the next update tx CTV hash, and force the reveal of the current update tx's settlement tx's CTV hash. In instagibbs prototype he used the annex with APO for that. CTV does not commit to the annex, but CSFS on multiple items would 
10:55 < reardencode> be equivalent.
10:55 < reardencode> 2. Is it generally secure to use OP_CAT to combine multiple items for use with CSFS?
10:55 < reardencode> (assuming that OP_CAT is also active, can it be used instead of having CSFS natively commit to multiple items)
10:56 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
10:56 < reardencode> consider this script: `<delkey> <locktime> || 2DUP CAT <pubkey> CSFS VERIFY CSV DROP CHECKSIG`
10:57 < reardencode> (there should also be 2 sigs in the stack there, oops)
10:59 < reardencode> in the interest of time, I'll just say: It's not secure, because an attacker could shift 1 byte from the locktime into the delkey on the stack and render the delegate key an always successful key for the CHECKSIG operation while still being valid for the CSFS (the same data is verified after the CAT)
10:59 < cguida> CAT strikes me as generally not secure haha :p
10:59 < reardencode> :-D
10:59 < reardencode> So, final question to think on after this: 3. Should OP_CHECKSIGFROMSTACK(VERIFY) be extended to natively support checking a signature against multiple stack items? (If so, untested code and BIN changes are available).
11:00 < reardencode> https://github.com/reardencode/bitcoin/commit/69cbe4fd7c64a64e019a3bfc7aa0ebda7f7ddcde https://github.com/reardencode/binana/commit/62856f404dceb0abb2cfc2c9a76b030a39120f79
11:00 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Remote host closed the connection]
11:00 < cguida> I feel like having CTV commit to the annex if present is the cleanest approach. But that's just my gut.
11:00 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
11:01 < reardencode> I think that'd be a great conversation to have - vector-CSFS vs. CAT vs. CTV-annex maybe something to discuss in a follow-up delving post
11:01 < reardencode> Thanks everyone for participating - I have a meeting right now, but happy to answer more questions async here or on other mediums!
11:02 < reardencode> #endmeeting
11:02 < cguida> Thanks reardencode!
11:02 < monlovesmango> thanks reardencode! love the energy and enthusiasm :)
11:02 -!- Guest42 [~Guest42@212.129.83.202] has quit [Quit: Client closed]
11:02 < mehounme> Thank you reardencode !
11:04 < reardencode> btw, here's the secure verseion of the insecure delegation script using vector-CSFS: <sig> <sig> <delkey> <locktime> || <pubkey> 2 CSFSV 2DROP CSV DROP SWAP DROP CHECKSIG
11:04 < glozow> thank you reardencode! :)
11:05 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Ping timeout: 268 seconds]
11:07 < emzy> thanks everyone.
11:09 -!- mehounme [~mehounme@137.255.26.42] has quit [Remote host closed the connection]
11:10 -!- grettke is now known as grettke_
11:17 -!- cguida [~cguida@APNLTE.FD3.26.x.attmex.mx] has quit [Ping timeout: 272 seconds]
11:24 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
11:25 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
11:25 -!- brunoerg [~brunoerg@179.191.241.0] has joined #bitcoin-core-pr-reviews
11:26 -!- monlovesmango [monlovesma@gateway/vpn/protonvpn/monlovesmango] has quit [Remote host closed the connection]
11:27 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
11:31 -!- mehounme34 [~mehounme@137.255.26.42] has quit [Quit: Client closed]
11:52 -!- Talkless [~Talkless@mail.dargis.net] has quit [Ping timeout: 268 seconds]
11:55 -!- cguida [~cguida@fixed-189-201-8-25.totalplay.net] has joined #bitcoin-core-pr-reviews
12:08 -!- monlovesmango [monlovesma@gateway/vpn/protonvpn/monlovesmango] has joined #bitcoin-core-pr-reviews
12:19 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Remote host closed the connection]
12:28 -!- cguida [~cguida@fixed-189-201-8-25.totalplay.net] has quit [Ping timeout: 268 seconds]
12:41 -!- Naiyoma [~Naiyoma@196.207.134.149] has quit [Quit: Client closed]
12:43 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has joined #bitcoin-core-pr-reviews
12:43 -!- monlovesmango [monlovesma@gateway/vpn/protonvpn/monlovesmango] has quit []
12:55 -!- grettke_ is now known as grettke
13:01 -!- brunoerg [~brunoerg@179.191.241.0] has quit [Remote host closed the connection]
13:03 -!- grettke is now known as grettke_
13:06 -!- brunoerg [~brunoerg@179.191.241.0] has joined #bitcoin-core-pr-reviews
13:09 -!- kevkevin [~kevkevin@2601:243:197e:8f10:1144:b419:2326:e2f1] has quit [Remote host closed the connection]
13:16 -!- brunoerg [~brunoerg@179.191.241.0] has quit [Ping timeout: 268 seconds]
13:22 -!- brunoerg [~brunoerg@179.191.241.0] has joined #bitcoin-core-pr-reviews
13:42 -!- reardencode [~reardenco@shrugged.reardencode.com] has quit [Ping timeout: 255 seconds]
13:43 -!- reardencode [~reardenco@shrugged.reardencode.com] has joined #bitcoin-core-pr-reviews
13:44 -!- brunoerg [~brunoerg@179.191.241.0] has quit [Remote host closed the connection]
13:49 -!- cguida [~cguida@fixed-189-201-9-83.totalplay.net] has joined #bitcoin-core-pr-reviews
13:50 -!- grettke_ [~grettke@065-026-198-174.biz.spectrum.com] has quit [Read error: Connection reset by peer]
13:50 -!- grettke [~grettke@065-026-198-174.biz.spectrum.com] has joined #bitcoin-core-pr-reviews
13:51 -!- grettke [~grettke@065-026-198-174.biz.spectrum.com] has quit [Read error: Connection reset by peer]
13:53 -!- grettke [~grettke@065-026-198-174.biz.spectrum.com] has joined #bitcoin-core-pr-reviews
14:09 -!- cguida [~cguida@fixed-189-201-9-83.totalplay.net] has quit [Remote host closed the connection]
14:12 -!- cguida [~cguida@APNLTE.FD3.33.x.attmex.mx] has joined #bitcoin-core-pr-reviews
14:45 -!- lbia [~lbia@user/lbia] has quit [Ping timeout: 260 seconds]
14:46 -!- lbia [~lbia@user/lbia] has joined #bitcoin-core-pr-reviews
15:01 -!- cguida [~cguida@APNLTE.FD3.33.x.attmex.mx] has quit [Ping timeout: 252 seconds]
15:03 -!- abubakarsadiq [uid602234@id-602234.hampstead.irccloud.com] has quit [Quit: Connection closed for inactivity]
15:07 -!- lbia [~lbia@user/lbia] has quit [Ping timeout: 268 seconds]
15:09 -!- lbia [~lbia@user/lbia] has joined #bitcoin-core-pr-reviews
17:05 -!- grettke [~grettke@065-026-198-174.biz.spectrum.com] has quit [Ping timeout: 260 seconds]
17:27 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
17:27 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
18:02 -!- __gotcha [~Thunderbi@85.234.221.48] has quit [Read error: Connection reset by peer]
18:02 -!- __gotcha [~Thunderbi@85.234.221.48] has joined #bitcoin-core-pr-reviews
18:06 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
18:20 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has quit [Read error: Connection reset by peer]
18:20 -!- grettke_ [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
18:28 -!- grettke_ [~grettke@070-092-234-250.res.spectrum.com] has quit [Ping timeout: 264 seconds]
18:29 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
18:36 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has quit [Read error: Connection reset by peer]
18:37 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
18:37 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has quit [Read error: Connection reset by peer]
18:38 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
19:59 -!- BUSY [~BUSY@user/busy] has quit [Read error: Connection reset by peer]
20:06 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has quit [Ping timeout: 272 seconds]
20:14 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
20:20 -!- grettke_ [~grettke@070-092-234-250.res.spectrum.com] has joined #bitcoin-core-pr-reviews
20:21 -!- grettke [~grettke@070-092-234-250.res.spectrum.com] has quit [Ping timeout: 268 seconds]
20:28 -!- grettke [~grettke@94.140.9.244] has joined #bitcoin-core-pr-reviews
20:29 -!- grettke_ [~grettke@070-092-234-250.res.spectrum.com] has quit [Ping timeout: 268 seconds]
20:39 -!- grettke [~grettke@94.140.9.244] has quit [Ping timeout: 252 seconds]
20:41 -!- grettke [~grettke@94.140.9.238] has joined #bitcoin-core-pr-reviews
20:53 -!- grettke [~grettke@94.140.9.238] has quit [Quit: grettke]
21:03 -!- grettke [~grettke@94.140.9.238] has joined #bitcoin-core-pr-reviews
21:12 -!- grettke [~grettke@94.140.9.238] has quit [Quit: grettke]
23:11 -!- lbia [~lbia@user/lbia] has quit [Quit: lbia]
--- Log closed Thu Mar 14 00:00:27 2024