2014-12-21.log

--- Day changed Sun Dec 21 2014
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards00:05
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:541b:74cd:deda:b1fb] has quit [Ping timeout: 258 seconds]00:09
-!- bifforoni [~zorin@bzq-84-108-84-113.cablep.bezeqint.net] has quit [Quit: Leaving]00:09
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 255 seconds]00:13
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards00:14
-!- zooko [~user@68.233.149.129] has quit [Ping timeout: 245 seconds]00:16
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Read error: Connection reset by peer]00:19
-!- adam3us1 [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards00:33
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Read error: Connection reset by peer]00:33
-!- paveljanik [~paveljani@79-98-72-216.sys-data.com] has joined #bitcoin-wizards00:34
-!- paveljanik [~paveljani@79-98-72-216.sys-data.com] has quit [Changing host]00:35
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards00:35
-!- Guyver2 [~Guyver2@guyver2.xs4all.nl] has joined #bitcoin-wizards00:43
-!- fanquake [~anonymous@unaffiliated/fanquake] has quit [Quit: fanquake]00:47
-!- gribble [~gribble@unaffiliated/nanotube/bot/gribble] has quit [Remote host closed the connection]00:54
-!- gribble [~gribble@unaffiliated/nanotube/bot/gribble] has joined #bitcoin-wizards00:59
-!- Guest34222 [~omni@ip68-4-111-228.oc.oc.cox.net] has quit [Remote host closed the connection]01:03
-!- andy-logbot [~bitcoin--@wpsoftware.net] has quit [Remote host closed the connection]01:05
-!- andy-logbot [~bitcoin--@wpsoftware.net] has joined #bitcoin-wizards01:05
* andy-logbot is logging01:05
-!- omni [~omni@ip68-4-111-228.oc.oc.cox.net] has joined #bitcoin-wizards01:07
-!- omni is now known as Guest8895201:07
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards01:18
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]01:18
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards01:18
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards01:18
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Remote host closed the connection]01:21
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards01:21
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]01:26
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Ping timeout: 245 seconds]01:34
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards01:40
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has joined #bitcoin-wizards01:43
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards01:45
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards01:47
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has quit [Remote host closed the connection]01:52
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Remote host closed the connection]01:56
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Ping timeout: 240 seconds]01:56
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards01:56
-!- Profreid [~Profreitt@179.43.160.130] has joined #bitcoin-wizards01:57
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has joined #bitcoin-wizards01:59
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]02:01
-!- coiner [~linker@1.52.191.73] has joined #bitcoin-wizards02:01
-!- bit2017 [~linker@183.80.130.202] has quit [Ping timeout: 240 seconds]02:02
-!- d1ggy__ [~d1ggy@dslb-092-077-200-110.092.077.pools.vodafone-ip.de] has quit [Quit: Leaving]02:07
-!- Guyver2 [~Guyver2@guyver2.xs4all.nl] has quit [Remote host closed the connection]02:10
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards02:16
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 250 seconds]02:27
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has quit [Remote host closed the connection]02:29
-!- gues [~gues@cpe-66-68-54-206.austin.res.rr.com] has joined #bitcoin-wizards02:41
-!- adam3us1 [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]02:49
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]02:59
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards02:59
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]03:00
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards03:00
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has joined #bitcoin-wizards03:00
-!- bit2017 [~linker@1.52.232.127] has joined #bitcoin-wizards03:02
-!- coiner [~linker@1.52.191.73] has quit [Ping timeout: 256 seconds]03:02
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]03:02
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards03:03
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]03:03
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards03:03
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards03:09
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]03:13
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards03:14
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 244 seconds]03:19
-!- hearn [~mike@84-75-198-85.dclient.hispeed.ch] has joined #bitcoin-wizards03:19
-!- Quanttek [~quassel@2a02:8108:d00:870:f196:2939:7da3:9784] has quit [Ping timeout: 258 seconds]03:22
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards03:24
-!- nullbyte [WW@gateway/vpn/mullvad/x-riwvyyawirthgeai] has joined #bitcoin-wizards03:28
-!- nullbyte [WW@gateway/vpn/mullvad/x-riwvyyawirthgeai] has quit [Changing host]03:28
-!- nullbyte [WW@unaffiliated/loteriety] has joined #bitcoin-wizards03:28
-!- nullbyte [WW@unaffiliated/loteriety] has quit [Changing host]03:28
-!- nullbyte [WW@gateway/vpn/mullvad/x-riwvyyawirthgeai] has joined #bitcoin-wizards03:28
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has quit [Read error: Connection reset by peer]03:31
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has joined #bitcoin-wizards03:32
wumpusmoxie, moxie, moxie, why you don't have a multiply instruction with 64-bit result, sec256k1 is horribly inefficient with all the calls to __muldi303:35
-!- coiner [~linker@1.53.1.20] has joined #bitcoin-wizards03:36
-!- bit2017 [~linker@1.52.232.127] has quit [Ping timeout: 255 seconds]03:36
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]03:37
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards03:38
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 244 seconds]03:42
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]03:43
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards03:45
sipawumpus: ow, yweah, expected...03:45
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards03:46
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards03:47
wumpusalso gcc generates code with conditional jumps in it for e.g. secp256k1_fe_mul_inner, for some reason, even though it should have no control flow. But gcc generating bad code for an experimental arch would be excusable, the lack of that instruction is worse :/03:49
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]03:49
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Ping timeout: 240 seconds]03:50
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Remote host closed the connection]03:50
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards03:51
nshwumpus, what code are you referring to?03:52
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards03:52
wumpusfield_20x13_impl.h  ;-)03:53
nshty03:53
wumpusno just kidding, I'm referring to the code that moxie-moxiebox-gcc makes of secp256k103:53
nshah03:53
nshcan conditional jumps in ECC multiplication lead to side channel weaknesses?03:54
nsh(timing attacks)03:55
wumpusyes, hence all the work put into making operations constant time03:55
* nsh nods03:55
nshpresumably moxie processor is still up for revision03:56
nshbut dunno how you'd do that. split the result over two registers?03:56
sipathat's what happens on x8603:57
nshk03:57
-!- Rynomster [~quassel@unaffiliated/rynomster] has quit [Quit: No Ping reply in 180 seconds.]03:58
wumpusmaybe Anthony would be open to the suggestion, on the other hand by now there are even hardware implementations, so the ship may have sailed. It is meant as a minimal architecture and multiply is expensive to implement.03:58
-!- nullbyte [WW@gateway/vpn/mullvad/x-riwvyyawirthgeai] has quit [Ping timeout: 258 seconds]03:59
* nsh nods03:59
maakunever heard of a processor that didn't offer a double-width result multiply04:00
maakudoes it have a divmod?04:00
wumpusno, just separate div and mod IIRC04:00
maakuyuck04:01
-!- SDCDev [~quassel@unaffiliated/sdcdev] has joined #bitcoin-wizards04:01
-!- nullbyte [WW@unaffiliated/loteriety] has joined #bitcoin-wizards04:01
-!- nullbyte [WW@unaffiliated/loteriety] has quit [Changing host]04:01
-!- nullbyte [WW@gateway/vpn/mullvad/x-pvbpgwbeavikbhkf] has joined #bitcoin-wizards04:01
-!- fanquake [~anonymous@unaffiliated/fanquake] has joined #bitcoin-wizards04:03
-!- Profreid [~Profreitt@179.43.160.130] has quit [Quit: Profreid]04:05
wumpuspowerpc has no double-width result multiply either, but at least separate mullw and mulhwu instructions04:12
-!- Quanttek [~quassel@ip1f12ec5a.dynamic.kabel-deutschland.de] has joined #bitcoin-wizards04:20
-!- Quanttek_ [~quassel@2a02:8108:d00:870:f196:2939:7da3:9784] has joined #bitcoin-wizards04:22
-!- coiner [~linker@1.53.1.20] has quit [Ping timeout: 245 seconds]04:23
wumpusmips does have double-width result for multiplication,  its multiply result goes into special low/hi registers, loaded by mflo/mfhi04:23
wumpussparc on the other hand didn't use to have a multiply instruction at all, but it specific lower-level instructions to implement multiply04:25
-!- coiner [~linker@1.54.182.225] has joined #bitcoin-wizards04:25
-!- Quanttek [~quassel@ip1f12ec5a.dynamic.kabel-deutschland.de] has quit [Ping timeout: 250 seconds]04:26
wumpusthe end result would be 64 bit, though04:28
wumpusso yes, moxie is the odd duck out here04:28
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a4ca:21ae:e01:7f70] has joined #bitcoin-wizards04:33
-!- Profreid [~Profreitt@93.115.87.78] has joined #bitcoin-wizards04:46
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards04:47
-!- vmatekole [~vmatekole@e179117115.adsl.alicedsl.de] has joined #bitcoin-wizards04:50
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Ping timeout: 240 seconds]04:50
-!- coiner [~linker@1.54.182.225] has quit [Ping timeout: 245 seconds]05:00
-!- coiner [~linker@1.54.75.168] has joined #bitcoin-wizards05:05
-!- hearn [~mike@84-75-198-85.dclient.hispeed.ch] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]05:07
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Remote host closed the connection]05:07
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards05:08
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards05:08
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]05:13
-!- Shiftos [~shiftos@gateway/tor-sasl/shiftos] has quit [Remote host closed the connection]05:15
-!- Shiftos [~shiftos@gateway/tor-sasl/shiftos] has joined #bitcoin-wizards05:15
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards05:19
nshany recommended books on distributed systems?05:22
nsh(with strong theory, preferably)05:22
* wumpus ponders a woxie architecture with secp256k1_ecdsa_verify instruction05:25
nsh"woxie"++05:30
nshhow are moxie instructions implemented/described?05:31
nshin some formal gate logic model or something higher?05:31
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Ping timeout: 250 seconds]05:36
nshor is this the closest to a formal definition? https://chromium.googlesource.com/chromiumos/third_party/gcc/+/toolchain-minor-verified/gcc/config/moxie/moxie.c05:38
nsh(nope)05:38
sipawumpus: ha05:39
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards05:40
Elielnsh: just out of interest, have you ever looked at reduceron?05:44
nshnope05:44
* nsh checks out05:44
nshoh, haskell on FPGA05:45
Elielbasically, yes. Although, I suspect there are other languages it'd be a good fit for too.05:45
* nsh nods05:46
nshyou'd think google would have done a bit of work on von Neumann widening architectures for all their mapreduce stuff05:46
sipawumpus: just ec mult instructions would probably be more flexible05:46
wumpusnsh: there are some FPGA implementations, https://github.com/atgreen/moxie-cores05:47
nshty05:47
wumpusnsh: I'm sure they have, all of the large SV companies are busy with Intel and custom silicon, but what they're doing is probably a secret05:47
* nsh nods05:48
wumpussipa: that sounds like  a good idea, a ec coprocessor05:48
Elielah, looks like the development is ongoing :) https://github.com/tommythorn/Reduceron05:49
wumpuswhoa! Anthony replied, the lack of double-width multiplication result is an oversight and he's considering ways to add it to future a future revision05:50
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]05:51
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards05:51
nshoh, cool05:53
-!- wallet421 [~wallet42@g226188066.adsl.alicedsl.de] has joined #bitcoin-wizards05:55
-!- wallet421 [~wallet42@g226188066.adsl.alicedsl.de] has quit [Changing host]05:55
-!- wallet421 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards05:55
-!- wallet42 is now known as Guest3531805:55
-!- Guest35318 [~wallet42@unaffiliated/wallet42] has quit [Killed (hitchcock.freenode.net (Nickname regained by services))]05:55
-!- wallet421 is now known as wallet4205:55
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 240 seconds]05:55
-!- fanquake [~anonymous@unaffiliated/fanquake] has quit [Quit: fanquake]05:57
-!- grandmaster [dansmith3@knows.the.cops.are.investigat.in] has joined #bitcoin-wizards06:07
-!- moa_ [67f7c179@gateway/web/freenode/ip.103.247.193.121] has joined #bitcoin-wizards06:12
-!- moa_ [67f7c179@gateway/web/freenode/ip.103.247.193.121] has quit [Quit: Page closed]06:17
-!- atgreen [~user@CPE687f74122463-CM84948c2e0610.cpe.net.cable.rogers.com] has joined #bitcoin-wizards06:18
kanzurehttps://github.com/Tribler/dispersy "The elastic database system. A database designed for P2P-like scenarios, where potentially millions of computers send database updates around."06:32
-!- moa [~kiwigb@opentransactions/dev/moa] has joined #bitcoin-wizards06:33
-!- prepost [rs232@gateway/vpn/mullvad/x-yzbnufnrcrgxrjar] has quit [Ping timeout: 245 seconds]06:34
nshkanzure, any (noncode) description?06:36
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]06:36
kanzureno06:37
kanzurei am still reading code06:37
nshsome jibberjabber here: https://github.com/Tribler/tribler/wiki06:38
kanzurethey do not like docstrings06:38
* nsh smiles06:38
kanzureah they have some docstrings. just not everywhere. hrm.06:39
kanzure"and reputation-management. All these features are implemented in a completely distributed manner, not relying on any centralized component..." hm.. wasn't reputation one of those things that doesn't work without centralization.06:40
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards06:40
kanzurehere are some papers they claim describes their reputation mechanism:06:41
kanzurehttp://www.asci.tudelft.nl/media/proceedings_asci_conference_2010/asci2010_submission_14.pdf06:41
kanzurehttp://www.pds.twi.tudelft.nl/~pouwelse/A_network_science_perspective_of_a_distributed_reputation_mechanism.pdf06:41
kanzureer.... "Finally, a non-random structure means that the network is vulnerable to targeted strategic attacks on highly connected nodes. If an attacker provides the highly connected nodes with a contaminated content, then the content is spread very fast in the network. This is a concern that should be taken into account in future designs."06:42
moakanzure: distributed reputation is interesting proposition ... socially we already recognise such a concept, aka popularity, digitally it comes back to 'who' is voting06:44
nsh(a well-resourced attacker can always use partitioning to create heavy hub nodes, which makes this worse)06:44
kanzurepopularity is actually a corruption of that06:44
moawell popularity can be corrupted by centralised manipulation, misinformation, etc too ...06:45
moare-centralised06:45
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Quit: Leaving.]06:47
moasometimes the majority can be dishonest, misinformed, have incentive structure perverted, etc06:48
-!- wallet42 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards06:49
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Client Quit]06:50
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards06:52
-!- zooko [~user@68.233.149.129] has joined #bitcoin-wizards06:53
-!- user7779078 [~user77790@193.138.219.233] has joined #bitcoin-wizards06:53
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Ping timeout: 256 seconds]06:55
-!- moa [~kiwigb@opentransactions/dev/moa] has quit [Quit: Leaving.]06:59
-!- wallet42 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards07:09
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has quit [Ping timeout: 240 seconds]07:15
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards07:18
-!- hashtagg [~hashtagg_@CPE-69-23-213-3.wi.res.rr.com] has quit [Quit: Leaving]07:22
-!- hashtagg [~hashtagg_@CPE-69-23-213-3.wi.res.rr.com] has joined #bitcoin-wizards07:22
-!- hashtagg [~hashtagg_@CPE-69-23-213-3.wi.res.rr.com] has quit [Read error: Connection reset by peer]07:25
-!- hashtagg [~hashtagg_@CPE-69-23-213-3.wi.res.rr.com] has joined #bitcoin-wizards07:25
-!- waxwing_ [waxwing@gateway/vpn/mullvad/x-wsopsyoivysnfflu] has quit [Ping timeout: 272 seconds]07:28
-!- waxwing_ [~waxwing@62.205.214.125] has joined #bitcoin-wizards07:33
-!- koshii_ [~0@c-68-58-151-30.hsd1.in.comcast.net] has quit [Quit: leaving]07:34
-!- nullbyte [WW@gateway/vpn/mullvad/x-pvbpgwbeavikbhkf] has quit [Ping timeout: 245 seconds]07:50
-!- koshii [~0@c-68-58-151-30.hsd1.in.comcast.net] has joined #bitcoin-wizards07:54
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards07:58
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]08:10
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards08:10
-!- user7779_ [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards08:17
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Ping timeout: 252 seconds]08:17
-!- user7779078 [~user77790@193.138.219.233] has quit [Read error: Connection reset by peer]08:18
-!- user777__ [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards08:32
-!- user7779_ [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Ping timeout: 256 seconds]08:32
-!- user7779_ [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards08:34
-!- user777__ [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Ping timeout: 245 seconds]08:36
-!- atgreen [~user@CPE687f74122463-CM84948c2e0610.cpe.net.cable.rogers.com] has quit [Ping timeout: 252 seconds]09:05
-!- user7779_ [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Remote host closed the connection]09:08
-!- nuke1989 [~nuke@46-161-92.adsl.cyta.gr] has joined #bitcoin-wizards09:09
-!- bitjedi [~QuaCryptI@108.53.250.221] has joined #bitcoin-wizards09:12
-!- bitjedi [~QuaCryptI@108.53.250.221] has quit [Changing host]09:12
-!- bitjedi [~QuaCryptI@unaffiliated/bitjedi] has joined #bitcoin-wizards09:12
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards09:12
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]09:18
-!- user7779_ [user777907@gateway/vpn/mullvad/x-zfpccxawwifvjgvb] has joined #bitcoin-wizards09:27
-!- zooko [~user@68.233.149.129] has quit [Read error: Connection reset by peer]09:27
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Ping timeout: 240 seconds]09:28
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards09:51
-!- Guyver2 [~Guyver2@guyver2.xs4all.nl] has joined #bitcoin-wizards09:54
-!- user7779_ [user777907@gateway/vpn/mullvad/x-zfpccxawwifvjgvb] has quit [Remote host closed the connection]10:00
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards10:00
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has quit [Quit: Leaving]10:04
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Ping timeout: 255 seconds]10:05
-!- koshii [~0@c-68-58-151-30.hsd1.in.comcast.net] has quit [Ping timeout: 244 seconds]10:05
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards10:06
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards10:10
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Ping timeout: 240 seconds]10:13
-!- gues [~gues@cpe-66-68-54-206.austin.res.rr.com] has quit [Ping timeout: 245 seconds]10:19
-!- gues [~gues@cpe-66-68-54-206.austin.res.rr.com] has joined #bitcoin-wizards10:19
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 265 seconds]10:20
* Eliel wonders if it'd work that when there are two or more transactions spending the same input(s), The transactions are mined in a special doublespend transaction that takes only the inputs that have been double spent and to spend that transaction, you need to be able to satisfy every txout script in all txouts that either transaction had.10:26
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Remote host closed the connection]10:26
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards10:27
Luke-JrEliel: interesting10:28
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]10:29
Elielah no, you can defeat that by deliberately making an infinitesimal input to doublespend. You'd need to include all inputs.10:32
Elieland that sounds risky.10:32
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has joined #bitcoin-wizards10:32
Luke-Jr?10:40
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has joined #bitcoin-wizards10:40
Luke-JrEliel: I don't see the risk10:42
-!- waxwing_ [~waxwing@62.205.214.125] has quit [Quit: Leaving]10:42
Elielwell, consider for example coinjoin transaction.10:43
Elielone participant wants to DoS the coinjoin process and does a double spend the moment it's being done.10:44
-!- waxwing_ [~waxwing@62.205.214.125] has joined #bitcoin-wizards10:44
Elieleveryone suddenly needs to jump through hoops to get their coins and it won't work if the cause of the problem won't cooperate10:45
Luke-Jrah, right :/10:45
dgenr8Eliel: but either of the original txes is still valid by itself10:46
Elielumm, no, each of them has at least one of their inputs already spent.10:47
Luke-Jrdgenr8: no, Eliel was suggesting a rule that if you can prove TxA and TxB are double spends, you can claim all of their inputs in a new UTXO which can only be spent by a transaction producing all the outputs of TxA and TxB10:47
Luke-Jrso the original UTXOs would be destroyed, and the new UTXO would have a covenant10:48
Luke-JrEliel: this could also screw up incentives, since now you can combine UTXOs without a fee potentially XD10:49
-!- koshii [~0@c-68-58-151-30.hsd1.in.comcast.net] has joined #bitcoin-wizards10:51
dgenr8...can only be spend by satisfying all the outputs of TxA and TxB.  As Eliel said, all the inputs would need to be included.10:53
dgenr8this new thing itself would be in a race against the original spends10:54
-!- lclc is now known as lclc_bnc10:54
-!- jtimon_ [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards11:00
-!- bit2017 [~linker@1.54.73.86] has joined #bitcoin-wizards11:01
-!- coiner [~linker@1.54.75.168] has quit [Ping timeout: 265 seconds]11:03
-!- iambernie [~bernie@82-169-230-87.ip.telfort.nl] has joined #bitcoin-wizards11:03
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Ping timeout: 245 seconds]11:03
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards11:07
Elieldgenr8: in a way, yes. However, any node with either of the original spends would move to mining this when they see the other spend. So it would have quite the advantage.11:08
Elielit'd drastically reduce the chance that a double spend succeeds.11:08
ElielThe only point would be to make it unprofitable to even attempt to double spend.11:10
dgenr8if miners behaved that way, double-spends after a few seconds would not succeed today11:10
-!- jtimon_ [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Ping timeout: 265 seconds]11:11
-!- jtimon_ [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards11:11
Luke-JrEliel: it doesn't make it unprofitable, though11:12
Luke-JrEliel: worst case you pay who you paid. which was always a probability11:12
ElielLuke-Jr: well, the logical course of action for any merchant in this situation is to take the loss unless the double spender agrees to pay them a little extra for the trouble.11:15
Luke-JrEliel: ?11:15
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Ping timeout: 250 seconds]11:15
Eliela merchant should be financially able to take a loss of a single order but someone who needs to double spend is most likely not too rich.11:16
Elielend result -> double spends not profitable -> very few double spends.11:17
Luke-JrEliel: petertodd's scortched earth thing does that too11:17
petertoddLuke-Jr: lol, I was just about to say...11:17
ElielI might have missed that one :)11:17
petertoddLuke-Jr: though credit goes to jdillon, not me11:17
Luke-JrEliel: use CPFP to take your own transaction and respend 100% of it as fees11:18
Luke-JrEliel: miners then prefer your version with the huge fee they can claim11:18
petertoddor this version without CPFP: http://www.mail-archive.com/bitcoin-development@lists.sourceforge.net/msg05211.html11:18
dgenr8even if the proof tx resulted in everything being burned, payment is only one side of the tx.  double-spender's goal is to get something valuable in the real world11:18
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards11:19
Luke-Jrdgenr8: double-spender's goal is to get something valuable in the real world *at no cost*11:19
Luke-Jrdgenr8: in this case, he has to pay the full price11:20
Luke-Jrno different than if he had made the purchase legitimately11:20
dgenr8yeah, that's right11:20
petertoddLuke-Jr: and with the k-overpaying version, you can make them pay more than full price if they double-spend: http://www.mail-archive.com/bitcoin-development@lists.sourceforge.net/msg05211.html11:20
Elielwell, in a sane court, the attempt to double spend should be regarded as intent to defraud. Having to do more attempts to get any benefit will reduce the total profit a single scammer can make before getting caught11:20
dgenr8petertodd: your prediction about nlocktime use shaking out the bugs system-wide seems to have been accurate11:22
petertodddgenr8: sigh, unfortunately...11:23
Luke-JrI was surprised by that. I'm pretty sure I've purchased via Coinbase before11:23
-!- jtimon_ [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Ping timeout: 255 seconds]11:23
Luke-Jr(and I've been using petertodd's patch there for years)11:23
petertoddLuke-Jr: they seem to have re-broke; also if the tx is lucky enough to get mined you don't see the problem11:23
Luke-Jrbuuuuut… I may have poked Coinbase staff to get it through11:23
Luke-JrI forget11:23
petertoddahh, well there you go11:24
gmaxwellLuke-Jr: the earlier version of the page was inoperable.11:24
Luke-Jrgmaxwell: ?11:24
gmaxwellLuke-Jr: there was an earlier version of the patch for a while that didn't set the seq number.11:24
Luke-Jroh, lol11:24
petertoddseems coblee is of the opinion that reimplementing Bitcoin Core in production is a good idea too :(11:25
petertoddgmaxwell: hahaha, oh I'd forgotten I'd fucked up that, stupid11:26
op_mulpetertodd: do we have a bitcoin company that doesn't test in production?11:27
petertoddop_mul: heh, quoting coblee: "I wasn't at Coinbase when the decision was made to implement Bitcoin Ruby, so I can't comment on why we did that. This whole Bitcoin thing is an experimentation."11:28
op_mulpetertodd: seems what they really wanted is a bitcoin node that is powered by burning VC money.11:29
op_mulnot confirming fast enough! shovel in more hundreds!11:30
petertoddop_mul: ...and they weren't willing to use the tried and true method of a steam engine11:30
gmaxwell"N reasons why the spooks love Tribler" https://lists.torproject.org/pipermail/tor-dev/2014-December/007999.html  fun examples of fractally broken cryptography outside of bitcoin.11:31
petertoddyou know, when you consider the probabilities, it takes either good luck or effort to write crypto that broken11:32
-!- jtimon_ [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards11:32
petertoddthe obvious thing these days is to use one of the easy libraries with sane defaults...11:32
op_mulECB mode ;-;11:33
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Remote host closed the connection]11:33
petertoddyou literally can figure out that's a bad idea by skimming the wikipedia page...11:34
petertoddthere's like, pretty picturs and everything :/11:34
op_multhey've hit on all the big ones11:35
op_mulwrong AES mode, bad random, static IV11:35
petertoddnah, they did miss one: they didn't call it TxOut11:35
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Ping timeout: 250 seconds]11:36
petertodd(ok, so that joke'd be funnier if they were a bitcoin wallet...)11:36
op_mulI do like that they called it StrongRandom, very similar to SecureRandom that has plagued Bitcoin.11:37
Elielpetertodd: by the way, you can always require a certain minimum of total inputs if you want to accomplish the total k effect in what I proposed. It also doesn't suffer from the problem that the payee could decide to burn your coins even without a double spend.11:37
-!- Profreid_ [~Profreitt@46.19.139.174] has joined #bitcoin-wizards11:38
petertoddEliel: well, once you start assuming scripting language changes the sky's the limit...11:38
Elielwell, true, this is a hard fork change.11:40
petertoddEliel: no, soft-fork change, it's just something you'd have to opt-into at the wallet level, IMO a much better idea than changing everything11:40
-!- Profreid [~Profreitt@93.115.87.78] has quit [Ping timeout: 240 seconds]11:40
-!- Profreid_ is now known as Profreid11:40
op_mulmight as well add in OP_CORN (this node dispenses hot melted butter)11:41
petertoddop_mul: with respect to the consensus provability of OP_CORN, we already have that, it's called OP_NOP1, 2, 3, ...11:41
gmaxwellEliel: double spending is not always intent to defraud. For example, you might have just been a doofus with multiple copies of the same wallet.11:43
op_mulpetertodd: maybe we need to find a way to have proof of lipid. I quite like the mental image of system admins rushing to stem the flood of butter pouring out of their server racks every time somebody uses it in a transaction.11:43
Elielgmaxwell: yes, that defense works... as long as you don't repeat it.11:43
dgenr8in these proof txes, outputs would appear to sum to greater than inputs, even aside from fees.  if they are spendable that has a downstream impact11:43
op_mulpetertodd: you can go further too, OP_TIMISM might be fun.11:45
petertoddop_mul: OP_TIMISM?11:45
petertoddgmaxwell: perfect example: http://respends.thinlink.com/ <- most of the double spends have zero or trivial fee increases11:46
op_mulpetertodd: you'll get it eventually.11:47
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards11:47
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards11:51
-!- Guest88952 [~omni@ip68-4-111-228.oc.oc.cox.net] has quit [Remote host closed the connection]11:51
dgenr8op_mul: maybe he finds it opprobrious11:52
op_muldgenr8: when really it's the OP_POSITE11:53
petertodd...that took me way too long...11:57
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards11:58
btcdrakstahp! with the opcode joke!! >.<11:58
petertoddOP_ACITY, OP_AL, OP_AQUE, OP_CODE, OP_EN, OP_ENNESS, OP_ERAND, OP_ERATE...11:59
petertodd...OP_US11:59
op_mulpetertodd: now you get it!12:00
-!- bitjedi_ [~QuaCryptI@108.53.250.221] has joined #bitcoin-wizards12:00
btcdrakdefinitely too much OP_IATES12:02
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Ping timeout: 240 seconds]12:02
-!- jtimon_ [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Read error: Connection reset by peer]12:03
-!- bitjedi [~QuaCryptI@unaffiliated/bitjedi] has quit [Ping timeout: 240 seconds]12:04
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards12:04
-!- bitjedi_ is now known as bitjedi12:04
-!- bitjedi [~QuaCryptI@108.53.250.221] has quit [Changing host]12:04
-!- bitjedi [~QuaCryptI@unaffiliated/bitjedi] has joined #bitcoin-wizards12:04
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has quit [Read error: Connection reset by peer]12:08
-!- jtimon [~quassel@159.pool85-59-61.dynamic.orange.es] has joined #bitcoin-wizards12:08
-!- soundx_ [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards12:20
-!- Shiftos [~shiftos@gateway/tor-sasl/shiftos] has quit [Remote host closed the connection]12:22
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]12:22
-!- op_mul [~op_mul@2a03:b0c0:2:d0::1:6001] has quit [Quit: leaving]12:24
kanzure.title https://news.ycombinator.com/item?id=878031312:27
yoleauxTribler "decentralized BitTorrent" software's crypto is completely broken | Hacker News12:27
kanzureah... this explains their weirdo handwaving about security in their "consensus" protocol.12:27
petertoddthe great thing about the Tor consensus protocol is you can meet it at conferences in person12:28
-!- faraka [49cc4c7f@gateway/web/freenode/ip.73.204.76.127] has joined #bitcoin-wizards12:28
kanzure""Take that book Applied Cryptography that's on your bookshelf and burn it. Do that as a commitment to really learning crypto. But absolutely don't read it. If you don't read it, you have nothing to unlearn, so you're much better off.""12:29
kanzurepetertodd: i'm not familiar with what tor consensus is12:29
petertoddkanzure: it's a majority of ~10 or something trusted people basically12:29
kanzurewhat is there to agree about?12:29
farakahow does ripple consensus work?12:30
kanzureit doesn't12:30
petertoddkanzure: what are and are not valid Tor routers that you should use12:30
kanzurepetertodd: thanks12:30
farakacoultn't ripple have implemented proof of stake as a way to mint tokens?12:30
petertoddkanzure: Tor is *not* a decentralized system, it's a highly centralized distributed system carefully designed to minimize legal and operational risks and ensure no one person can compromise you12:31
kanzurepetertodd: i have been reading tor source code lately, wanting something like python-bitcoinlib for tor, or some other way to split out non-tor-specific things, etc.12:31
kanzure(just in the interest of curiosity, primarily)12:31
petertoddkanzure: yeah, IIRC there is a python Tor library12:32
petertoddisis: ^12:32
kanzurethe tor developers mentioned a disinterest in every having anything approximating a shared library or any library with an api12:32
petertoddyeah, I dunno the politics behind that (or even if that's true)12:32
kanzurehmm i don't have the link, so let's assume it's not true for the moment12:32
petertoddthere is a java library among other things12:32
kanzureah maybe https://trac.torproject.org/projects/tor/ticket/1967#comment:2 but i am still reading12:33
petertoddhaha, I've heard stories about "bee"12:33
kanzure"You're not the first and you won't be the last to suggest it - You're simply the most annoying"12:33
petertoddor I should say "bee!!!!"12:33
petertoddkanzure: the explanation of "encourage people to use the socks mechanism" doesn't surprise me much12:35
kanzurefaraka: ripple could have just avoided implementing a consensus protocol like that and used a signing system to publish their ledger12:36
farakawould a signing system be equally fast?12:36
farakado you mean multisignatures?12:36
petertoddkanzure: I thought ripple basically *was* a signing system, but with a bunch of hand-waving and misdirection?12:37
kanzurepetertodd: yes, but faraka doesn't know that12:37
kanzurepetertodd: apparently faraka also doesn't know what a centralized solution looks like12:37
farakayou are right kanzure12:37
kanzurepetertodd: so here's one guess... maybe people just genuinely aren't aware of the possibility of centralized implementations, and so they fixate on the marketing they have been exposed to regarding decentralized consensus. maybe we just need to make centralized concepts more obvious?12:38
kanzure(insert various explanations here like "well it's just a blackbox to most users")12:38
petertoddkanzure: shitty marketting - e.g. "federated" sidechains :)12:38
-!- gonedrk [~gonedrk@d40a6497.rev.stofanet.dk] has joined #bitcoin-wizards12:38
petertoddkanzure: would certainly help to have some best-of-breed implementation of that stuff... I'm working on one myself12:39
kanzuresomeone is going to crack this problem and then suddenly people are going to be really excited about central limit order books at paypal or something :)12:39
kanzurejust because they didn't know about it previously12:39
gmaxwellpetertodd: well, I thought it was just a lack of awareness. But in talking to more people, at least the people building stuff they certantly see what they're doing as a (perhaps cargo-cult-grade) regulatory dodge. Makes convincing them to be frank much harder.12:40
petertoddgmaxwell: of course, can you blame them? ethereum likes to call ether "paying for computer services"...12:41
gmaxwellUnfortunately many of the same people have also been having private mettings with regulator people, and so they have all this 'secret' knoweldge, and so anything anyone else says is worthless.12:41
adam3uspetertodd: fuel or gas or something? etherfuel!12:42
gmaxwellSo you can't even have a conversation to feel out the boundaries and determine if there is a more frank presentation that still ticks the boxes.12:42
petertoddgmaxwell: which has me in a funny position, having *also* talked to those regulators/bankers, and not giving a damn how I describe it12:42
kanzurehmm, how much do you think it's them attempting a regulatory dodge versus people (especially users) just being genuinely unaware of centralized ledgers being possible?12:43
gmaxwellkanzure: I think the users don't know its possible. Or in particular don't know that middleground security is possible.12:43
-!- moa [~kiwigb@opentransactions/dev/moa] has joined #bitcoin-wizards12:43
petertoddkanzure: you realise, even *within banking* there's a certain amount of desire to deny that secure centralized ledgers are possible12:43
kanzureis it wrong of me to suggest people should be going for that middleground when they have a broken consensus attempt12:44
gmaxwelle.g. middleground =  more secure than TRUST MAGICAL TUX TO BEHAVE PERFECTLY CORRECT AND HONESTLY WITH NO ABILITY TO REVIEW12:44
petertoddgmaxwell: so, what's the extreme of that position?12:44
kanzuresure i certainly realize there are incentives to avoid centralized ledgers12:44
petertoddkanzure: see, I'm saying that there are incentives to make centralized ledgers *insecure* even within conventional finance12:45
kanzureusers don't know that either way12:45
gmaxwellyea conventional finance demands capabilities which are basically incompatible with security. The whole regulatory and security framework of conventional finance basically demands unbounded reversability.12:46
petertoddyeah, and the smartest regulators get that security lets you bypass the need for identity12:46
petertoddgmaxwell: also, note that "unbounded reversability" is also coupled with a desire to make it possible for that reversibility to be *secret*12:46
gmaxwellIt doesn't help that while it's very very clear that middleground security is technically possible but the legal enviroment around it is less clear than the technology.  Of course, there are plenty of parties who are happy to make fully centeralized non-secure systems, and ignore or manage the legal risks, but thats where they're focusing their spend: on the politics, and not on making the tech f12:47
petertoddgmaxwell: if it was just unbounded reversability that could be accomodated12:47
gmaxwellundimentally more sound.12:47
kanzurewouldn't you just publish blocks from your central ledger and therefore make reversals more obvious?12:47
petertoddkanzure: that's the thing: banking ledgers are nearly always 100% not secured by any form of cryptography at all12:48
moabut laws and guns12:48
petertoddkanzure: I mean, hell, I was being told about a financial institution maintaining hundreds of millions of dollars worth of accounts literally on an excel spreadsheet - that was the master record12:48
kanzurewell, i certainly don't mean to say that existing bank ledgers should just be dumped on the interwebs12:48
kanzurether'es probably lots of "dirty laundry" on those ledgers (just from stupid implementation quirks)12:48
kanzurei would count a spreadsheet as an "implementation quirk" hehe12:49
nshremember that stupid implementation quirk in 2008... good times....12:49
-!- waxwing_ [~waxwing@62.205.214.125] has quit [Ping timeout: 272 seconds]12:49
kanzureyes nsh discovere that the federal reserve kept its ledger in drupal12:49
kanzurensh++12:49
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has joined #bitcoin-wizards12:50
petertoddkanzure: pen and paper would seriously make me feel better12:50
nsh(my semiserious point is that if you try to apply any infrastructure, no matter how advised, that makes it more difficult to magic wealth out of the system, you'd going to run into resistance)12:50
nsh*how well-advised12:50
nsh*you're12:50
nsh(and magicking wealth here is commensurate with distributing risk for the purposes of maximising leverage)12:51
petertoddnsh: it's not that level of conspiracy stuff - you literally have to be able to accomodate courts ordering you to remove things off your ledgers in secret, among many other crazy requirements12:51
nshheh12:51
nshgood point12:51
kanzureseems to me like users that recognize that (which, by the way, i doubt they do), should be banding together around "allowing good implementations of centralized ledgers to exist" or "making lots of good centralized ledgers with fallbacks" instead of "trying to corrupt bitcoin with broken consensus implementations"12:51
petertoddkanzure: fact is, this stuff works well enough 99% of the time...12:51
kanzureso, here's a thought12:52
kanzureokay so they are using it as a regulatory dodge, fine12:52
kanzurelet's say there's even a demand for that12:52
moansh it was actually aug 07 2007 that the credit markets initially seized up ... it took  a year of denial that the ledgers had stopped function before it made it into mainstream12:52
kanzureif their protocols are bsaically just centralized anyway and broken and such,12:52
kanzurewhy not just make random crappy code generators that don't involve "consensus theories"12:52
kanzureand then they can make up whatever broken web of lies they please?12:53
nshmoa++12:53
petertodd++moa12:53
petertoddkanzure: heh, you mean excel spreadsheets?12:53
kanzureer, ledgers can continue to function even during times of market downturns, especially when your assets stop paying interest12:53
kanzurepetertodd: hehe sure12:53
kanzurepetertodd: "decentralized proof of stake... in a spreadsheet"12:54
moakind of a 'fork' happened in their protocol, once branch was using mark-to-market the other mark-to-model12:54
-!- user7779078 [~user77790@c-73-1-104-107.hsd1.fl.comcast.net] has quit [Ping timeout: 245 seconds]12:54
-!- user7779078 [user777907@gateway/vpn/mullvad/x-awbceaovihginmbm] has joined #bitcoin-wizards12:55
* dgenr8 notes that bitcoin pays more interest than the swiss franc at -.25%12:56
kanzurepetertodd: the point being (of that idea) to just redirect all of that regulatory-dodging away from producing things marketed that end up wasting your time (claims about security, consensus, etc.)12:56
gmaxwellpetertodd: it's a bit circular there, in that courts are going to demand you do whatever you can do.  It doesn't follow that if you couldn't courts would still demand it, and we have a rich tradition of taking actions specifically to tie our hands for integrity reasons.  (E.g it's a reason companies have data retention policies that make them not retain data they're not required to retain past so12:57
gmaxwellme threshold... limits the costs created by discovery)12:57
-!- waxwing_ [waxwing@gateway/vpn/mullvad/x-xpvatopenkfairhk] has joined #bitcoin-wizards13:01
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards13:05
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 245 seconds]13:09
-!- faraka [49cc4c7f@gateway/web/freenode/ip.73.204.76.127] has quit [Ping timeout: 246 seconds]13:17
-!- hashtag_ [~hashtag@CPE-69-23-213-3.wi.res.rr.com] has quit [Ping timeout: 240 seconds]13:20
-!- siraj [~siraj@c-71-198-214-186.hsd1.ca.comcast.net] has joined #bitcoin-wizards13:21
siraji like the idea of stellar but not the implementation - has anyone envisioned a more trustless version of stellar?13:22
adam3ussiraj: yeah its called bitcoin13:23
adam3ussiraj: maybe a better question what is it you like about it better than bitcoin?13:24
petertoddgmaxwell: well, the impression I get talking to these people is that it's not at all clear courts won't demand the impossible with regard to finance13:24
petertoddgmaxwell: which basically means "it's not impossible to change your systems"13:25
adam3uspetertodd: maybe you heard there is or was a law somewhere that said pi = 313:25
petertoddadam3us: this is worse than that, because going from a secure ledger to an insecure one isn't exactly unthinkable13:26
sirajadam3us: I'm working on an escrow service and want as many customers as possible. As such, I want to accept as many different currencies as possible. I want to have one balance that all currencies can be sent to. Stellar appeals to my need by promising that. Without it, I'd have to have multiple balances.13:26
kanzureyou are only accepting the stellar currency, in that context13:27
petertoddsiraj: and since you want to accept multiple currencies, you're going to involve third party trust anyway so... ever thought of using paypal?13:28
adam3ussiraj: maybe people dont want to be exposed to stellar exchange risk13:28
kanzureanyway, this seems off-topic, you should consider asking #bitcoin13:29
sirajkanzure: the stellar currency and the accompanying 'gateway' system that acts as a decentralized exchange between all currencies. Bitcoin needs a system of decentralized exchange.13:29
kanzurethat's not decentralized. they just call it decentralized.13:29
sirajkanzure: true13:30
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards13:38
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has quit [Ping timeout: 258 seconds]13:39
-!- dgenr8 [~dgenr8@unaffiliated/dgenr8] has quit [Quit: Leaving]13:59
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has joined #bitcoin-wizards14:02
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards14:03
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has quit [Remote host closed the connection]14:06
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has joined #bitcoin-wizards14:06
-!- vmatekole [~vmatekole@e179117115.adsl.alicedsl.de] has quit [Remote host closed the connection]14:08
-!- adam3us [~Adium@host-92-19-9-109.as13285.net] has quit [Quit: Leaving.]14:09
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Quit: Leaving.]14:09
-!- zooko [~user@68.233.149.129] has joined #bitcoin-wizards14:28
-!- siervo [uid49244@gateway/web/irccloud.com/x-amrqalqeaibcuosj] has joined #bitcoin-wizards14:30
-!- siervo [uid49244@gateway/web/irccloud.com/x-amrqalqeaibcuosj] has quit [Client Quit]14:30
-!- super3 [~Thunderbi@96-32-185-118.dhcp.gwnt.ga.charter.com] has joined #bitcoin-wizards14:38
-!- beamlaser [49cc4c7f@gateway/web/freenode/ip.73.204.76.127] has joined #bitcoin-wizards14:39
-!- beamlaser [49cc4c7f@gateway/web/freenode/ip.73.204.76.127] has quit [Client Quit]14:39
-!- beamlaser [49cc4c7f@gateway/web/freenode/ip.73.204.76.127] has joined #bitcoin-wizards14:39
-!- austinhill [~Adium@198.254.233.78] has joined #bitcoin-wizards14:44
-!- belcher [~belcher-s@unaffiliated/belcher] has joined #bitcoin-wizards14:45
-!- austinhill [~Adium@198.254.233.78] has quit [Client Quit]14:48
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has quit [Quit: This computer has gone to sleep]14:55
-!- Profreid [~Profreitt@46.19.139.174] has quit [Quit: Profreid]15:08
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Quit: Be back later ...]15:11
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Remote host closed the connection]15:28
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards15:29
-!- BigBitz_ is now known as BigBitz15:32
-!- austinhill [~Adium@198.254.233.78] has joined #bitcoin-wizards15:38
-!- austinhill [~Adium@198.254.233.78] has left #bitcoin-wizards []15:40
-!- user7779078 [user777907@gateway/vpn/mullvad/x-awbceaovihginmbm] has quit []15:44
-!- Guyver2 [~Guyver2@guyver2.xs4all.nl] has quit [Remote host closed the connection]15:53
-!- wallet42 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards15:53
-!- copumpkin [~copumpkin@unaffiliated/copumpkin] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]15:57
beamlaserwhat's the word on factom?15:59
petertoddbeamlaser: I've got a half-finished writeup on it16:00
-!- Shiftos [~shiftos@gateway/tor-sasl/shiftos] has joined #bitcoin-wizards16:00
petertoddbeamlaser: tl;dr: is it's a centralized system, in that the centralization point can at best DoS you; at worst put you in a position where you're unable to prove you're honest16:01
petertoddbeamlaser: seems to me to be an attempt to shoehorn a "appcoin" into something that'd work better without one16:01
beamlaseri thought it was decentralized using a dht and a quasi blockchain16:02
petertoddyeah, but who signs that blockchain?16:02
petertoddat best that'll be a proof-of-stake system, which is a centralization point where none is needed16:02
beamlaseryou are right, is there a better way to implement it?16:03
petertoddthere's other issues, like how it appears to be using "linear" blocks when it should be using merkelized binary prefix trees to commit to facts16:03
petertoddbeamlaser: yeah, basically let people run their own factom chains, controlled by them, and directly publish the hashes of those chains in the blockchain - no third parties requried16:03
petertoddif you need scalability, pick a third party and/or get together with other people who need factom that you trust and work together to build that chain16:04
petertoddany one person in the "subchain" can DoS attack the whole thing, but at least you get to pick who you trust16:04
wallet42hi what is the earliest estimate OP_CHECKLOCKTIMEVERIFY could be live?16:05
petertoddwallet42: yesterday on viacoin testnet, lol. few weeks for viacoin maybe? absolute minimum of months for bitcoin?16:05
beamlaserinteresting i might pick it up then peter todd.16:05
petertoddwallet42: may want to have more than just CLTV in that softfork too - see earlier #bitcoin-dev discussion re: greenaddress16:06
petertoddbeamlaser: pick it up as in work on the problem?16:06
beamlaseryep16:08
wallet42the proposal doesnt seem to be very controversial?16:08
beamlaseri will post my progress here16:09
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards16:12
petertoddbeamlaser: cool - you may end up duplicating other's work, but at worse you'll learn a lot :)16:12
petertoddwallet42: nope, OTOH not many (any?) have implemented apps against it, so the design might not be right yet16:12
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]16:17
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 272 seconds]16:17
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards16:18
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]16:18
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards16:18
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has quit [Remote host closed the connection]16:20
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has joined #bitcoin-wizards16:21
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 245 seconds]16:22
-!- beamlaser [49cc4c7f@gateway/web/freenode/ip.73.204.76.127] has quit [Ping timeout: 246 seconds]16:26
-!- bitjedi [~QuaCryptI@unaffiliated/bitjedi] has quit [Ping timeout: 258 seconds]16:32
-!- bitjedi [~QuaCryptI@108.53.250.221] has joined #bitcoin-wizards16:33
-!- bitjedi [~QuaCryptI@108.53.250.221] has quit [Changing host]16:33
-!- bitjedi [~QuaCryptI@unaffiliated/bitjedi] has joined #bitcoin-wizards16:33
-!- bitjedi [~QuaCryptI@unaffiliated/bitjedi] has quit [Remote host closed the connection]16:33
-!- paperbot [~paperbot@unaffiliated/kanzure/bot/paperbot] has quit [Remote host closed the connection]16:33
-!- vmatekole [~vmatekole@e179117115.adsl.alicedsl.de] has joined #bitcoin-wizards16:34
-!- vmatekole [~vmatekole@e179117115.adsl.alicedsl.de] has quit [Remote host closed the connection]16:37
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]16:39
-!- atgreen [~user@CPE687f74122463-CM84948c2e0610.cpe.net.cable.rogers.com] has joined #bitcoin-wizards16:47
-!- Shiftos [~shiftos@gateway/tor-sasl/shiftos] has quit [Remote host closed the connection]16:48
-!- Shiftos [~shiftos@gateway/tor-sasl/shiftos] has joined #bitcoin-wizards16:48
-!- soundx_ [~soundx@gateway/tor-sasl/soundx] has quit [Remote host closed the connection]16:50
-!- Quanttek_ [~quassel@2a02:8108:d00:870:f196:2939:7da3:9784] has quit [Ping timeout: 272 seconds]17:04
-!- belcher [~belcher-s@unaffiliated/belcher] has quit [Quit: Leaving]17:05
-!- siervo [uid49244@gateway/web/irccloud.com/x-enttqruvtnyyuyua] has joined #bitcoin-wizards17:12
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards17:13
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 264 seconds]17:17
-!- siervo [uid49244@gateway/web/irccloud.com/x-enttqruvtnyyuyua] has quit []17:22
-!- siervo [uid49244@gateway/web/irccloud.com/x-nazllhkoxzpiutpv] has joined #bitcoin-wizards17:40
-!- hashtag_ [~hashtag@69.23.213.3] has joined #bitcoin-wizards17:45
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Ping timeout: 240 seconds]17:52
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards18:14
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards18:15
-!- NewLiberty_ [~NewLibert@2602:304:cff8:1580:a4ca:21ae:e01:7f70] has joined #bitcoin-wizards18:16
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Ping timeout: 264 seconds]18:17
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 272 seconds]18:19
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a4ca:21ae:e01:7f70] has quit [Ping timeout: 258 seconds]18:19
-!- NewLiberty_ is now known as NewLiberty18:19
-!- husebyAFK is now known as huseby18:27
-!- siervo [uid49244@gateway/web/irccloud.com/x-nazllhkoxzpiutpv] has quit []18:28
-!- Dr-G3 [~Dr-G@gateway/tor-sasl/dr-g] has joined #bitcoin-wizards18:32
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Read error: Connection reset by peer]18:33
-!- wallet42 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards18:33
-!- Dr-G2 [~Dr-G@gateway/tor-sasl/dr-g] has quit [Ping timeout: 250 seconds]18:35
-!- omni [~omni@ip68-4-111-228.oc.oc.cox.net] has joined #bitcoin-wizards18:36
-!- omni is now known as Guest3850918:36
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards18:37
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards18:39
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]18:45
-!- koshii [~0@c-68-58-151-30.hsd1.in.comcast.net] has quit [Quit: leaving]18:45
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 245 seconds]18:49
-!- GAit [~lnahum@enki.greenaddressit.p3.tiktalik.io] has quit [Ping timeout: 250 seconds]18:53
-!- siraj [~siraj@c-71-198-214-186.hsd1.ca.comcast.net] has quit [Remote host closed the connection]18:55
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Ping timeout: 255 seconds]18:59
-!- siraj [~siraj@c-71-198-214-186.hsd1.ca.comcast.net] has joined #bitcoin-wizards18:59
-!- siraj [~siraj@c-71-198-214-186.hsd1.ca.comcast.net] has quit [Remote host closed the connection]19:00
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards19:15
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 272 seconds]19:19
kanzure"Saying math can't prevent double-spending is near equivalent to saying it cannot be done."19:23
kanzurewhat?? that doesn't sound true.19:23
-!- Guest38509 [~omni@ip68-4-111-228.oc.oc.cox.net] has quit [Remote host closed the connection]19:24
gmaxwellThere was some comment made on bitcoin-development recently where someone made some crazy argument that bitcoin had cryptographic security against double spending that I was surprised no one corrected (but I didn't wade into)19:26
gmaxwellMath can mean a lot of things. It could mean something was sound e.g. had absolute security, or maybe it means something has cryptographic security (intractable unless P==NP, ideally, though most cryptographic assumptions are not even that strong).  Certantly it doesn't mean "cannot be done" in any way shape or form.19:28
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has joined #bitcoin-wizards19:34
kanzurei suppose it depends on what your definitions are, but generally a disconnected system on one side of the planet cannot know that another spend happened on the other side of the planet 1 ns ago19:34
kanzureno matter how much math you use (as far as i know) (cc greg egan)19:34
gmaxwellyup.19:35
gmaxwellSo, for example, one approach that doesn't work via punishment is quantum cash.  Say you have a set of stored qbits which have a public identity and you can only sign with them once without ruining their state. (no one knows how to do this from an engineering perspective, but apparently there is some scheme of apparently physically possible operations that effectively give you that construction)19:37
gmaxwell Is that 'math' ?19:37
gmaxwellit's certantly not 'math' in a convention sense, it's a physical limit, though one that may be impossible to compromise if constructed perfectly.19:37
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]19:45
-!- fanquake [~anonymous@unaffiliated/fanquake] has joined #bitcoin-wizards19:47
-!- gonedrk [~gonedrk@d40a6497.rev.stofanet.dk] has quit [Quit: Leaving]19:53
-!- jps_ [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has joined #bitcoin-wizards20:00
-!- jps_ is now known as jps20:01
-!- artifexd [sid28611@gateway/web/irccloud.com/x-muqynmkjyykrfikv] has quit [Ping timeout: 258 seconds]20:11
-!- artifexd_ [sid28611@gateway/web/irccloud.com/x-yqnwrzjgrtscxkwp] has joined #bitcoin-wizards20:14
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards20:16
-!- _Iriez [wario@distribution.xbins.org] has quit [Quit: changing servers]20:17
-!- Iriez [wario@distribution.xbins.org] has joined #bitcoin-wizards20:18
-!- bit2017 [~linker@1.54.73.86] has quit [Ping timeout: 265 seconds]20:19
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 244 seconds]20:20
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has quit [Quit: jps]20:28
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards20:28
-!- omni [~omni@ip68-4-111-228.oc.oc.cox.net] has joined #bitcoin-wizards20:29
-!- omni is now known as Guest5839120:29
-!- tromp_ [~tromp@rtc35-154.rentec.com] has quit [Read error: Connection reset by peer]20:32
maakuin my training as a physicist I became suspect of any appeal to math20:32
maakumathmatically convenient models tend not to represent reality20:32
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]20:33
-!- TheSeven [~quassel@rockbox/developer/TheSeven] has quit [Ping timeout: 244 seconds]20:34
-!- TheSeven [~quassel@rockbox/developer/TheSeven] has joined #bitcoin-wizards20:35
-!- fanquake [~anonymous@unaffiliated/fanquake] has quit [Quit: fanquake]20:41
-!- coiner [~linker@113.161.87.238] has joined #bitcoin-wizards20:53
-!- freewil [~freewil@unaffiliated/freewil] has joined #bitcoin-wizards20:55
-!- rusty [~rusty@pdpc/supporter/bronze/rusty] has joined #bitcoin-wizards21:02
-!- c0rw1n_ [~c0rw1n@174.179-67-87.adsl-dyn.isp.belgacom.be] has joined #bitcoin-wizards21:04
-!- c0rw1n [~c0rw1n@174.179-67-87.adsl-dyn.isp.belgacom.be] has quit [Read error: Connection reset by peer]21:04
-!- Guest58391 [~omni@ip68-4-111-228.oc.oc.cox.net] has quit [Read error: Connection reset by peer]21:04
-!- andy-logbot [~bitcoin--@wpsoftware.net] has quit [Ping timeout: 245 seconds]21:05
-!- fanquake [~anonymous@unaffiliated/fanquake] has joined #bitcoin-wizards21:05
-!- omni [~omni@ip68-4-111-228.oc.oc.cox.net] has joined #bitcoin-wizards21:05
-!- BananaLotus [~BananaLot@irc.maza.club] has quit [Ping timeout: 245 seconds]21:05
-!- omni is now known as Guest4778421:05
-!- andy-logbot [~bitcoin--@wpsoftware.net] has joined #bitcoin-wizards21:06
* andy-logbot is logging21:06
-!- optimator_ [~optimator@unaffiliated/optimator] has quit [Read error: Connection reset by peer]21:09
-!- optimator [~optimator@ec2-54-205-93-122.compute-1.amazonaws.com] has joined #bitcoin-wizards21:09
-!- optimator [~optimator@ec2-54-205-93-122.compute-1.amazonaws.com] has quit [Changing host]21:09
-!- optimator [~optimator@unaffiliated/optimator] has joined #bitcoin-wizards21:09
-!- amiller [~socrates1@unaffiliated/socrates1024] has quit [Ping timeout: 240 seconds]21:09
-!- BananaLotus [~BananaLot@gateway/tor-sasl/bananalotus] has joined #bitcoin-wizards21:10
-!- harrow [~harrow@192.241.198.49] has quit [Ping timeout: 245 seconds]21:11
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has joined #bitcoin-wizards21:12
maaku(_of course_ you use math to solve problems, but math can also not reflect reality)21:12
-!- harrow [~harrow@192.241.198.49] has joined #bitcoin-wizards21:12
-!- Guest13730 [~socrates1@li175-104.members.linode.com] has joined #bitcoin-wizards21:14
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards21:17
moamaaku: correct, except within a consistent set of approximable axioms using reality-based theories21:19
-!- GibsonA [~thrasher@27-33-27-140.static.tpgi.com.au] has quit [Ping timeout: 244 seconds]21:19
maakumoa: getting OT, but no that's my point. the basic axioms of a reality-based model tend not to be driven by factors which make the math easier21:21
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 245 seconds]21:21
maakuthere are almost no examples of math-based exploration of theoretical physics which results in new fundamental theories21:22
maakuwhat actually happens is that some experimental evidence results in more complicated math at the fundamental level21:23
maakuthe theorists then work to find a better, more succinct description of reality that matches the experiment, but it rarely reaches the simplicity of the old regime21:24
maakureality tends to complicate things21:24
-!- freewil [~freewil@unaffiliated/freewil] has quit [Quit: Leaving.]21:39
rustymaaku: so, I've hacked up a simulator for compact SPV paths across blocks, using various different tree topologies.21:40
rustymaaku: running it 20 times now, with different seeds, as there's a great deal of variation in path lengths.21:41
maakurusty: sipa did a good deal of work on this21:44
maakuhe found one construction that was particularly interesting21:45
-!- copumpkin [~copumpkin@unaffiliated/copumpkin] has joined #bitcoin-wizards21:46
maakubut I also don't think there's been adequate work on what the metric should be (path to genesis is what sipa used, but I don't think that reflects mean path from A to B for arbitrary distances)21:46
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a4ca:21ae:e01:7f70] has quit [Read error: Connection reset by peer]21:46
rustymaaku: That's a good question... fairly easy to test though.21:47
maakuwell unless there's an analytical solution, evaluating each scheme is N^2 which gets a little expensive21:48
maakuso no scheme I've seen provides better than a small constant factor improvement over committing to all blocks21:49
maakuand there are benefits to committing to every block, so that is very likely the path that will get implemented21:50
maakubut we're talking about a soft-fork consensus rule, so someone needs to do the due diligence and make sure that there really isn't a vastly more efficient scheme we could be using instead21:50
rustymaaku: agreed.21:51
rustymaaku: I'm assuming all blocks.  I tried to implement your " merklized heap filled by pushing nodes down the right-hand side" suggestion, hope I got it right.21:51
maakurusty: ah i misread you then. I thought you were suggesting to commit a single back-link which is a function of the block height, which is what sipa looked at21:53
rustymaaku: and compared it  with a breadth-first ordering, and a naive array-to-tree (no internal values) ordering.21:53
maakuok cool this is interesting new work21:53
maakurusty: what paths are you using as the evaluation metric?21:54
rustymaaku: OK, so I generate N (currently running w/ 1M) random u64s, with rule that you can skip back up to -1ULL / value nodes.21:56
rustymaaku: then I calculate optimal CSPV path back to genesis from "block" N-1.21:56
-!- gues [~gues@cpe-66-68-54-206.austin.res.rr.com] has quit [Ping timeout: 240 seconds]21:57
rustymaaku: for each node on that path, I build the tree of prevs, and figure the depth of the prev I want.21:57
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a9fc:d696:af00:385f] has joined #bitcoin-wizards21:57
-!- NewLiberty_ [~NewLibert@2602:304:cff8:1580:a9fc:d696:af00:385f] has joined #bitcoin-wizards21:57
maakuso you're using path to genesis?21:58
rustymaaku: yeah.21:58
rustymaaku: easy to calc path to something else and see what that does to results.21:58
rustymaaku: now, you previously said proof for tree with internal values is shorter.  I think it's actually twice as long, right?  (Well, 1 for top node, 3 for second row, etc).22:00
rusty(Actually, I think you said depth was 1 less, which is true...)22:00
rustyAnyway, results of calculating proof lenghts for N=1024*1024 over 20 runs:22:01
rustynaive: proof hashes 367-2863(1416.4+/-7.8e+02)22:01
rustyideal: proof hashes 315-2143(1031.7+/-5.6e+02)22:01
rustymaaku: proof hashes 499-4007(1860+/-1.1e+03)22:01
-!- NewLiberty_ [~NewLibert@2602:304:cff8:1580:a9fc:d696:af00:385f] has quit [Client Quit]22:01
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a9fc:d696:af00:385f] has quit [Client Quit]22:01
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a9fc:d696:af00:385f] has joined #bitcoin-wizards22:02
rustyI think this is because short SPV jumps (which are great with your tree) are actually really rare, since we select for long ones.22:02
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has quit [Read error: Connection reset by peer]22:05
-!- MoALTz [~no@user-164-126-31-182.play-internet.pl] has joined #bitcoin-wizards22:06
maakuideal is what, breadth first ordering?22:08
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has quit [Quit: jps]22:08
rustymaaku: yeah.  label might be ambitious, but it's certainly *expensive* if not ideal :)22:08
-!- hashtag_ [~hashtag@69.23.213.3] has quit [Ping timeout: 255 seconds]22:15
-!- soundx [~soundx@gateway/tor-sasl/soundx] has joined #bitcoin-wizards22:17
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards22:17
-!- soundx [~soundx@gateway/tor-sasl/soundx] has quit [Ping timeout: 250 seconds]22:22
rustymaaku: https://github.com/rustyrussell/rusty-junkcode test-trees.c .  It's not polished, but it Seems To Work(TM).22:22
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 240 seconds]22:22
maakurusty: actually the tier nolan right-path-compression trick might make naive array the best...22:35
maakurusty: did you account for the approx double depth in the breadth-first case?22:36
rustymaaku: yep, same formula as the 'maaku' case.   What's " tier nolan right-path-compression"?22:36
maakurusty: in the way the bitcoin constructs merkle trees, you don't need to store 'empty' right branches on the right-hand path22:37
maakusince if there's an odd number of hashes, bitcoin duplicates the last hash22:37
maakuso if the last hash is the path you are going down, you don't need to store that hash twice.22:38
rustymaaku: in effect, naive does that already.22:38
rustymaaku: it builds the tree in [power-of-2] [remainder] parts.22:38
maakuonly if you're accounting for it in your path lengths22:38
maakuin the extreme case the 2^N + 1 -th, you need to store only one untaken branch to reference the last element22:39
rustymaaku: yeah, I actually build the tree to measure the path length.  It's naive, but probably less buggy that way.22:39
maakuthe serialization would be the left branch for the root, then the 2^N + 1 -th item, no matter the depth of the tree22:39
rustymaaku: exactly.  there's even a pretty diagram of that in the source.22:40
maakuok i'll look at the source but what you're saying here isn't reflecting the optimization i'm talking about22:40
rusty *         ^22:42
rusty *        / \22:42
rusty *       /\  \22:42
rusty *      /  \  \22:42
rusty *     /    \  \22:42
rusty *    /\    /\  \22:42
rusty *   0  1  2  3  422:42
maakurusty: (looking at code) the ideal case would have proof length of 2 * log2, no?22:42
-!- fanquake [~anonymous@unaffiliated/fanquake] has quit [Quit: fanquake]22:42
maakubecause since it is storing internal values it would look like the maaku case22:43
maakujust with the block headers distributed throughout the tree differently.22:43
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:a9fc:d696:af00:385f] has quit [Quit: Leaving]22:44
rustymaaku: not quite, since depth 0 => 1 hash.22:44
rustymaaku: (from - to) >= 1...22:45
rustymaaku: but yes, the cases should be identical.22:45
maakuah right i missed the required 1 hash22:45
rustymaaku: I'm really surprised how good naive is.  I was going to write a hybrid "64k batches of breadth-first" tree, but I'm not sure it's worth it.22:47
maakurusty: naive would never be adopted in bitcoin core, sorry22:47
maakuit's good for reference only. requiring recalculation of the entire tree for every block creation/validation is just too much work for this feature22:48
rustymaaku: yeah, I was wondering about that.  It seems like it should be incrementable (is that a word?), but maybe it would need N/2 blocks reshuffled every N == power-of-2?22:49
rustymaaku: commented out I put a swapcount in the maakutree; you're right, it's *very* nice from that POV.22:50
gmaxwellWell maybe it would be workable, given you can do a million sha256/sec on a general cpu... but there would have to be a darn good reason for it, ... normative datastructures are like that, there is a lot of pressure to make sure you've got it right, since your decision binds even people with much slower hardware to implement exactly the same thing.22:50
maakuI'm not sure how it would possibly be an incremental structure? Every node in the tree changes position for each block22:51
rustymaaku: no, consider the diagram above.  Adding node 5 just means moving 4 down.22:52
-!- fanquake [~anonymous@unaffiliated/fanquake] has joined #bitcoin-wizards22:52
rustymaaku: I didn't think too hard about it though...22:52
maakurusty: ok sorry i was thinking ideal. naive is easy to make incremental22:53
rustymaaku: oh yeah, ideal *sucks*.  But batching it might be a compromise.22:54
maakui'm going to start calling ideal == optimal, and naive == array22:54
rustymaaku: OK, sure.  Will rename and push now.22:54
maakuthat's the terminology we had been using before22:54
maakusorry my reading comprehension fail :\22:54
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has quit [Ping timeout: 255 seconds]23:04
-!- rusty [~rusty@pdpc/supporter/bronze/rusty] has quit [Ping timeout: 272 seconds]23:04
-!- zooko [~user@68.233.149.129] has quit [Ping timeout: 240 seconds]23:06
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards23:13
-!- aburan28 [~ubuntu@static-108-45-93-73.washdc.fios.verizon.net] has joined #bitcoin-wizards23:16
-!- koshii [~0@c-68-58-151-30.hsd1.in.comcast.net] has joined #bitcoin-wizards23:18
-!- davejh69 [~davejh69@fence.blueteddy.net] has joined #bitcoin-wizards23:18
-!- davejh69 [~davejh69@fence.blueteddy.net] has quit [Ping timeout: 256 seconds]23:23
maakurusty: so I'm surprised the naive array does so well ... even better than 'optimal' over 1M blocks23:35
maakuoh he's gone23:35
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has joined #bitcoin-wizards23:36
-!- TonyClifton [~TonyClift@cpc69058-oxfd26-2-0-cust984.4-3.cable.virginm.net] has quit [Remote host closed the connection]23:38
maakugmaxwell: so I thought rusty might have made a mistake but so far the code looks alright23:39
gmaxwellmaaku: about? that structure he's describing sounds like the plain insertion ordered merkel tree that PT called MMR  just needs log extra storage to do efficient appends. (Sorry, busy with four other things and haven't been following conversation)23:42
maakuright, MMR is more efficient than any of the inner-node structures we were considering23:46
maakuat least for a binary tree where having an inner node means expanding the tree to twice the depth23:47
-!- Guest47784 [~omni@ip68-4-111-228.oc.oc.cox.net] has quit [Remote host closed the connection]23:54
maakuif having an inner node with its own value plus two branches means that skipping that node requires 2 hashes (1 hash of value, 1 hash for untaken branch), then it's a net loss to use an inner node structure23:58
-!- vmatekole [~vmatekole@p5DC47ED9.dip0.t-ipconnect.de] has joined #bitcoin-wizards23:58
maakubecause you end up using more hashes to ellide the values along the way than you save from having a shorter tree23:59

Generated by irclog2html.py 2.15.0.dev0 by Marius Gedminas - find it at mg.pov.lt!