2015-01-20.log

--- Log opened Tue Jan 20 00:00:29 2015
bramcphantomcircuit, Is that a new thing? I'm pretty sure I heard that the contracts disallowed passing on fees, but that was a few years ago00:00
-!- damethos [~damethos@unaffiliated/damethos] has joined #bitcoin-wizards00:01
-!- DougieBot5000 [~DougieBot@unaffiliated/dougiebot5000] has quit [Quit: Leaving]00:02
phantomcircuitbramc, visa/mastercard has lost a string of antitrust cases many of which went to the supreme court00:02
bramcOh good, that cheers me up00:03
bramcSanity prevails00:03
-!- damethos [~damethos@unaffiliated/damethos] has quit [Ping timeout: 245 seconds]00:08
-!- platinuum [sid21283@gateway/web/irccloud.com/x-ajdjhmkrrjbcbuex] has joined #bitcoin-wizards00:08
-!- NewLiberty [~NewLibert@76-255-129-88.lightspeed.irvnca.sbcglobal.net] has quit [Ping timeout: 276 seconds]00:08
-!- weex_ [~weex@99-6-135-18.lightspeed.snmtca.sbcglobal.net] has joined #bitcoin-wizards00:15
-!- weex [~weex@fsf/member/weex] has quit [Read error: Connection reset by peer]00:15
-!- koeppelmann [~koeppelma@dyn-160-39-213-232.dyn.columbia.edu] has joined #bitcoin-wizards00:18
-!- booly-yam-5194_ [~cinch@80.74.98.150] has joined #bitcoin-wizards00:22
-!- koeppelmann [~koeppelma@dyn-160-39-213-232.dyn.columbia.edu] has quit [Ping timeout: 240 seconds]00:22
-!- MoALTz__ [~no@user-164-126-114-82.play-internet.pl] has joined #bitcoin-wizards00:24
-!- MoALTz__ [~no@user-164-126-114-82.play-internet.pl] has quit [Read error: Connection reset by peer]00:26
-!- MoALTz [~no@78-11-152-253.static.ip.netia.com.pl] has joined #bitcoin-wizards00:27
-!- Aquent [~Aquent@gateway/tor-sasl/aquent] has joined #bitcoin-wizards00:27
-!- MoALTz_ [~no@78-11-152-253.static.ip.netia.com.pl] has quit [Ping timeout: 246 seconds]00:27
-!- jb55 [~jb55@S0106f46d049a0b83.vc.shawcable.net] has quit [Remote host closed the connection]00:29
-!- jb55 [~jb55@S0106f46d049a0b83.vc.shawcable.net] has joined #bitcoin-wizards00:30
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has quit [Read error: Connection reset by peer]00:33
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has joined #bitcoin-wizards00:34
-!- jb55 [~jb55@S0106f46d049a0b83.vc.shawcable.net] has quit [Ping timeout: 264 seconds]00:35
-!- koshii [~0@node-1aa8.pool-125-24.dynamic.totbb.net] has joined #bitcoin-wizards00:36
-!- bsm117532 [~bsm117532@207-237-190-41.c3-0.avec-ubr1.nyr-avec.ny.cable.rcn.com] has quit [Ping timeout: 245 seconds]00:47
-!- Aquent [~Aquent@gateway/tor-sasl/aquent] has quit [Ping timeout: 250 seconds]00:48
-!- everettForth [~everett@c-98-248-181-105.hsd1.ca.comcast.net] has quit [Quit: Leaving]00:53
-!- hearn [~mike@84-75-198-85.dclient.hispeed.ch] has joined #bitcoin-wizards00:54
-!- bsm117532 [~bsm117532@207-237-190-41.c3-0.avec-ubr1.nyr-avec.ny.cable.rcn.com] has joined #bitcoin-wizards00:59
-!- andy-logbot [~bitcoin--@wpsoftware.net] has quit [Remote host closed the connection]01:05
-!- andy-logbot [~bitcoin--@wpsoftware.net] has joined #bitcoin-wizards01:05
* andy-logbot is logging01:05
-!- RoboTedd_ [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards01:05
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 256 seconds]01:09
-!- RoboTedd_ [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 246 seconds]01:09
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has quit [Quit: This computer has gone to sleep]01:30
-!- Emcy_ [~MC@unaffiliated/mc1984] has quit [Read error: Connection reset by peer]01:41
-!- jtimon [~quassel@108.pool85-59-62.dynamic.orange.es] has joined #bitcoin-wizards02:02
-!- xabbix [~orw@unaffiliated/xabbix] has joined #bitcoin-wizards02:02
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards02:06
-!- CoinMuncher [~jannes@178.132.211.90] has joined #bitcoin-wizards02:08
-!- jtimon [~quassel@108.pool85-59-62.dynamic.orange.es] has quit [Ping timeout: 252 seconds]02:11
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 272 seconds]02:12
-!- Dr-G3 [~Dr-G@gateway/tor-sasl/dr-g] has quit [Remote host closed the connection]02:20
-!- Dr-G3 [~Dr-G@gateway/tor-sasl/dr-g] has joined #bitcoin-wizards02:20
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards02:34
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]02:34
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards02:34
-!- jtimon [~quassel@108.pool85-59-62.dynamic.orange.es] has joined #bitcoin-wizards02:52
-!- hktud0 [~ncidsk@unaffiliated/fluffybunny] has quit [Ping timeout: 265 seconds]02:59
-!- booly-yam-5194_ [~cinch@80.74.98.150] has quit [Ping timeout: 265 seconds]03:02
-!- Burrito [~Burrito@unaffiliated/burrito] has joined #bitcoin-wizards03:03
-!- imposter [uid57046@gateway/web/irccloud.com/x-cjhoxnnhtxdwjtil] has quit [Quit: Connection closed for inactivity]03:05
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards03:06
-!- erasmospunk [~erasmospu@176.92.103.63] has joined #bitcoin-wizards03:08
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 252 seconds]03:10
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Quit: Leaving.]03:29
-!- booly-yam-5194_ [~cinch@80.74.98.150] has joined #bitcoin-wizards03:38
-!- cbeams_ [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards03:40
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 246 seconds]03:41
-!- eudoxia [~eudoxia@r167-56-4-24.dialup.adsl.anteldata.net.uy] has joined #bitcoin-wizards03:45
-!- SDCDev [~quassel@unaffiliated/sdcdev] has joined #bitcoin-wizards03:46
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards03:55
-!- shesek [~shesek@77.127.214.139] has joined #bitcoin-wizards03:56
-!- execut3 [~shesek@IGLD-84-228-161-151.inter.net.il] has quit [Ping timeout: 256 seconds]04:00
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 245 seconds]04:00
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:d1d1:1f05:24d2:d154] has joined #bitcoin-wizards04:02
-!- SDCDev [~quassel@unaffiliated/sdcdev] has quit [Remote host closed the connection]04:03
-!- nubbins` [~leel@unaffiliated/nubbins] has joined #bitcoin-wizards04:06
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards04:07
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 252 seconds]04:11
-!- Quanttek [~quassel@2a02:8108:d00:870:e23f:49ff:fe47:9364] has joined #bitcoin-wizards04:14
-!- koshii_ [~0@node-xzw.pool-125-25.dynamic.totbb.net] has joined #bitcoin-wizards04:27
-!- Cory [~Cory@unaffiliated/cory] has quit []04:27
-!- koshii [~0@node-1aa8.pool-125-24.dynamic.totbb.net] has quit [Ping timeout: 246 seconds]04:28
-!- Guyver2 [~Guyver2@guyver2.xs4all.nl] has joined #bitcoin-wizards04:28
-!- op_mul [~op_mul@128.199.127.146] has joined #bitcoin-wizards04:33
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards04:35
-!- hearn is now known as hearn[lunch]04:37
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards04:40
-!- cbeams_ [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Read error: Connection reset by peer]04:40
-!- NomosOne [~NomosOne@pool-71-163-234-223.washdc.east.verizon.net] has joined #bitcoin-wizards04:49
-!- Quanttek [~quassel@2a02:8108:d00:870:e23f:49ff:fe47:9364] has quit [Ping timeout: 276 seconds]04:53
-!- NomosOne [~NomosOne@pool-71-163-234-223.washdc.east.verizon.net] has quit [Ping timeout: 255 seconds]04:56
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]05:03
-!- nuke1989 [~nuke@46-249-140.adsl.cyta.gr] has joined #bitcoin-wizards05:03
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards05:04
-!- ryanxcharles [~ryanxchar@2601:9:4680:dd0:28ec:39b8:c9b3:2f5f] has quit [Ping timeout: 245 seconds]05:07
-!- Quanttek [~quassel@2a02:8108:d00:870:e23f:49ff:fe47:9364] has joined #bitcoin-wizards05:07
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards05:08
-!- NomosOne [~NomosOne@pool-71-163-234-154.washdc.east.verizon.net] has joined #bitcoin-wizards05:08
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 245 seconds]05:08
-!- ryanxcharles [~ryanxchar@2601:9:4680:dd0:fc8e:deeb:5da4:2301] has joined #bitcoin-wizards05:10
-!- NomosOne [~NomosOne@pool-71-163-234-154.washdc.east.verizon.net] has quit [Read error: Connection reset by peer]05:10
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards05:11
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 276 seconds]05:13
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards05:18
-!- lclc_bnc is now known as lclc05:22
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Client Quit]05:22
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has quit [Ping timeout: 244 seconds]05:26
-!- moa [~kiwigb@opentransactions/dev/moa] has quit [Quit: Leaving.]05:29
-!- NomosOne [~NomosOne@pool-71-178-105-14.washdc.east.verizon.net] has joined #bitcoin-wizards05:29
-!- hearn[lunch] is now known as hearn05:31
-!- bsm117532 [~bsm117532@207-237-190-41.c3-0.avec-ubr1.nyr-avec.ny.cable.rcn.com] has quit [Ping timeout: 245 seconds]05:31
-!- hashtagg_ [~hashtag@CPE-69-23-213-3.wi.res.rr.com] has quit [Ping timeout: 252 seconds]05:31
-!- NomosOne [~NomosOne@pool-71-178-105-14.washdc.east.verizon.net] has quit [Read error: Connection reset by peer]05:35
-!- EasyAt [~EasyAt@unaffiliated/easyat] has quit [Ping timeout: 276 seconds]05:36
-!- HarusameNyanko [~HarusameN@pl2125.nas815.n-hiroshima.nttpc.ne.jp] has joined #bitcoin-wizards05:37
-!- Quanttek [~quassel@2a02:8108:d00:870:e23f:49ff:fe47:9364] has quit [Ping timeout: 272 seconds]05:40
-!- EasyAt [~EasyAt@46.19.139.88] has joined #bitcoin-wizards05:43
-!- EasyAt [~EasyAt@46.19.139.88] has quit [Changing host]05:43
-!- EasyAt [~EasyAt@unaffiliated/easyat] has joined #bitcoin-wizards05:43
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards05:44
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 244 seconds]05:49
-!- paveljanik [~paveljani@94.199.44.8] has joined #bitcoin-wizards05:55
-!- paveljanik [~paveljani@94.199.44.8] has quit [Changing host]05:55
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards05:55
-!- hashtag_ [~hashtag@cpe-98-157-219-44.ma.res.rr.com] has joined #bitcoin-wizards05:59
-!- NomosOne [~NomosOne@pool-71-178-105-14.washdc.east.verizon.net] has joined #bitcoin-wizards06:00
-!- NomosOne [~NomosOne@pool-71-178-105-14.washdc.east.verizon.net] has quit [Read error: Connection reset by peer]06:01
-!- NomosOne [~NomosOne@pool-71-178-105-14.washdc.east.verizon.net] has joined #bitcoin-wizards06:01
-!- NomosOne [~NomosOne@pool-71-178-105-14.washdc.east.verizon.net] has quit [Ping timeout: 245 seconds]06:05
-!- NomosOne [~NomosOne@172.56.3.87] has joined #bitcoin-wizards06:08
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards06:09
-!- NomosOne [~NomosOne@172.56.3.87] has quit [Client Quit]06:09
-!- examinr [~butcoinz@li578-62.members.linode.com] has quit [Quit: Leaving]06:13
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 244 seconds]06:13
-!- gmaxwell [greg@wikimedia/KatWalsh/x-0001] has quit [Ping timeout: 272 seconds]06:14
-!- gmaxwell [greg@mf4-xiph.osuosl.org] has joined #bitcoin-wizards06:15
-!- gmaxwell is now known as Guest2394106:15
-!- zooko [~user@c-75-70-204-109.hsd1.co.comcast.net] has joined #bitcoin-wizards06:21
-!- coiner [~linker@115.79.55.177] has quit [Ping timeout: 276 seconds]06:24
-!- Aquent [~Aquent@gateway/tor-sasl/aquent] has joined #bitcoin-wizards06:25
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards06:30
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Ping timeout: 250 seconds]06:42
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards06:44
-!- Guest23941 [greg@mf4-xiph.osuosl.org] has quit [Changing host]06:50
-!- Guest23941 [greg@wikimedia/KatWalsh/x-0001] has joined #bitcoin-wizards06:50
-!- Guest23941 is now known as gmaxwell06:50
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has joined #bitcoin-wizards06:51
-!- zooko [~user@c-75-70-204-109.hsd1.co.comcast.net] has quit [Ping timeout: 255 seconds]06:52
-!- Emcy_ [~MC@unaffiliated/mc1984] has joined #bitcoin-wizards06:54
-!- lclc is now known as lclc_bnc07:04
-!- nessence [~alexl@198.0.125.19] has joined #bitcoin-wizards07:05
-!- lclc_bnc is now known as lclc07:10
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has quit [Quit: This computer has gone to sleep]07:11
-!- user7779078 [~user77790@ool-4a5987f1.dyn.optonline.net] has joined #bitcoin-wizards07:12
-!- user7779_ [user777907@gateway/vpn/mullvad/x-rubtasslnwbesdiz] has joined #bitcoin-wizards07:13
-!- user7779078 [~user77790@ool-4a5987f1.dyn.optonline.net] has quit [Ping timeout: 252 seconds]07:16
-!- DougieBot5000 [~DougieBot@unaffiliated/dougiebot5000] has joined #bitcoin-wizards07:24
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards07:33
-!- wallet42 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards07:35
-!- booly-yam-5194_ [~cinch@80.74.98.150] has quit [Ping timeout: 272 seconds]07:36
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 240 seconds]07:37
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards07:39
-!- Quanttek [~quassel@2a02:8108:d00:870:e23f:49ff:fe47:9364] has joined #bitcoin-wizards07:41
-!- booly-yam-5194_ [~cinch@80.74.98.150] has joined #bitcoin-wizards07:42
-!- justanot1eruser [~Justan@unaffiliated/justanotheruser] has joined #bitcoin-wizards07:42
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has quit [Quit: Reconnecting]07:44
-!- justanot1eruser is now known as justanotheruser07:44
amillerandytoshi, i can't figure out why your ringsig-blinding is supposed to work07:53
amillerthe point is to prevent parties who own the 'chaff' coins in a transaction from proving that their coin wasn't the actual coin being spent07:53
amilleri see how adding a blinding factor to each of the keys prevents them from proving that the ring signature was generated that way,07:54
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Ping timeout: 250 seconds]07:54
amillerbut can't they still prove that their key image isn't the key image that was spent?07:54
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards07:56
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Client Quit]07:56
amillereven though you make it so that the ring signature is a representation proof of (P1+Q1, or P2+Q2, or ... etc), and further that you know the exponent for all the blinding factor Q's.... I think the key image is still I(P_actual)^x.07:57
amillerer   I = x H(P_actual)07:57
amillerso, if you save your 'x', you can prove you weren't involved later on07:58
amillerfor posterity, this comment refers to https://download.wpsoftware.net/bitcoin/wizardry/ringsig-blinding.txt which is dated sep'1407:58
-!- booly-yam-5194_ [~cinch@80.74.98.150] has quit [Ping timeout: 244 seconds]07:59
gmaxwellYes, but you must do that at the time of signing.07:59
gmaxwellAnd in particular if you weren't involved you can't prove you weren't involved.08:00
amillergmaxwell, suppose the real coin is P1 and I owned the coin P2....08:01
-!- e1782d11df4c9914 [~e1782d11d@cpe-66-68-54-206.austin.res.rr.com] has quit [Ping timeout: 256 seconds]08:01
amillerthat means I know an x2, such that P2 = g^x2,  and H(P2)^x2 = I2    which is not equal to the I used in that transaction08:01
gmaxwell(this scheme itself is not so useful for cryptocurrency usage, so talking about coins isn't so great)08:01
amilleralright swap public key for coin08:02
gmaxwell(because it breaks the ability to use the key images to prevent double spending. It's useful for voting like schemes)08:02
-!- nessence_ [~alexl@198.0.125.19] has joined #bitcoin-wizards08:02
amilleroh.08:02
-!- nessence [~alexl@198.0.125.19] has quit [Read error: Connection reset by peer]08:02
amillermaybe this has abolutely nothing to do with cryptonote and i totally misunderstood the intended application of this.08:02
gmaxwellYes, that has nothing to do with cryptonote. It's a comment related to a scheme I have for selecting pseudonymous trusted parties. E.g. "I run this oracle. -- {one of satoshi, fbi, gmaxwell}" and make it so that satoshi and/or fbi cannot prove that they were not the author of the message.08:04
-!- hktud0 [wq@unaffiliated/fluffybunny] has joined #bitcoin-wizards08:04
gmaxwell(and obviously not me either; so we can all plausably deny authorship.)08:04
amillerokey doke. i sort of read that and brs-arbitrary-output-sizes.txt and just hallucinated that the topic of both was crypotnote enhancements08:04
amillersorry!08:04
gmaxwellThere is a thing related to cryptonode that andytoshi and I were working on. ... yea that thing.08:04
gmaxwellyea, the genesis of brs-arbitrary-output-sizes.txt is that I first came up with the blinding for that election application; there was a potential attack (when you don't prove knoweldge of the discrete log of the blinding factor), and a way to use it produtively showed up (the value / script blinding).08:07
-!- paveljanik [~paveljani@79-98-72-216.sys-data.com] has joined #bitcoin-wizards08:08
-!- paveljanik [~paveljani@79-98-72-216.sys-data.com] has quit [Changing host]08:08
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards08:08
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards08:10
-!- Meeh [~meeeeeeh@meeh.sigterm.no] has quit [Ping timeout: 265 seconds]08:11
-!- eudoxia [~eudoxia@r167-56-4-24.dialup.adsl.anteldata.net.uy] has quit [Quit: Leaving]08:12
-!- Meeh [~meeeeeeh@meeh.sigterm.no] has joined #bitcoin-wizards08:12
-!- zooko [~user@c-67-190-86-140.hsd1.co.comcast.net] has joined #bitcoin-wizards08:14
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 252 seconds]08:14
-!- zooko` [~user@c-67-190-86-140.hsd1.co.comcast.net] has joined #bitcoin-wizards08:15
-!- zooko` [~user@c-67-190-86-140.hsd1.co.comcast.net] has quit [Remote host closed the connection]08:15
-!- zooko [~user@c-67-190-86-140.hsd1.co.comcast.net] has left #bitcoin-wizards []08:15
-!- treehug88 [~treehug88@66.6.34.252] has joined #bitcoin-wizards08:18
-!- lclc is now known as lclc_bnc08:21
-!- eslbaer [~eslbaer@p548A502B.dip0.t-ipconnect.de] has joined #bitcoin-wizards08:23
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has quit [Ping timeout: 252 seconds]08:38
-!- Graftec [~Graftec@gateway/tor-sasl/graftec] has quit [Remote host closed the connection]08:39
-!- Graftec [~Graftec@gateway/tor-sasl/graftec] has joined #bitcoin-wizards08:39
-!- nessence_ [~alexl@198.0.125.19] has quit [Remote host closed the connection]08:43
-!- nessence [~alexl@198.0.125.19] has joined #bitcoin-wizards08:44
-!- erasmospunk [~erasmospu@176.92.103.63] has quit [Quit: ttm]08:45
-!- zwischenzug [~zwischenz@207.Red-88-8-247.dynamicIP.rima-tde.net] has joined #bitcoin-wizards08:46
-!- nessence [~alexl@198.0.125.19] has quit [Ping timeout: 246 seconds]08:48
-!- ryanxcharles [~ryanxchar@2601:9:4680:dd0:fc8e:deeb:5da4:2301] has quit [Ping timeout: 245 seconds]08:49
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards08:50
-!- wallet42 [~wallet42@unaffiliated/wallet42] has quit [Quit: Leaving.]09:00
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has joined #bitcoin-wizards09:00
-!- NomosOne [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has joined #bitcoin-wizards09:01
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has joined #bitcoin-wizards09:01
-!- NomosOne [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has quit [Client Quit]09:02
-!- OneNomos [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has joined #bitcoin-wizards09:02
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has quit [Quit: jps]09:02
andytoshiamiller: sure, it is possible to go out-of-band and prove that your key image was not used (eg if you secret key is x you produce a NIZK that DL of g^x is same as H(g^x)^x)09:09
andytoshiit is also possible to just reveal your x, and there is no way to block that09:10
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]09:10
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards09:10
andytoshibut i'm not sure the motivation of this attack? you'd have to know something about a specific tx that you were linked into and know who to give the NIZK to...the point here was to avoid these kind of info leakage in ordinary use09:11
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards09:11
andytoshione moment actually, i don't remember how much gmaxwell's blinding scheme does :)09:11
andytoshioh wait, i'm being stupid, i'm talking about something else entirely, ignore me09:12
andytoshisame hallucination as amiller. must be some andrew-targeting chemical agent out there..09:13
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 244 seconds]09:15
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 264 seconds]09:16
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards09:16
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]09:16
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards09:16
-!- ryanxcharles [~ryanxchar@2600:1010:b126:918:d19f:932:5a78:4bca] has joined #bitcoin-wizards09:24
-!- hearn [~mike@84-75-198-85.dclient.hispeed.ch] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]09:26
-!- hearn [~mike@84-75-198-85.dclient.hispeed.ch] has joined #bitcoin-wizards09:27
-!- hearn [~mike@84-75-198-85.dclient.hispeed.ch] has quit [Client Quit]09:27
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has joined #bitcoin-wizards09:33
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has joined #bitcoin-wizards09:34
-!- jtimon [~quassel@108.pool85-59-62.dynamic.orange.es] has quit [Remote host closed the connection]09:45
-!- jtimon [~quassel@108.pool85-59-62.dynamic.orange.es] has joined #bitcoin-wizards09:47
-!- e1782d11df4c9914 [~e1782d11d@cpe-66-68-54-206.austin.res.rr.com] has joined #bitcoin-wizards09:50
-!- samson2 [~samson_@180.183.164.180] has joined #bitcoin-wizards09:52
-!- ryanxcharles [~ryanxchar@2600:1010:b126:918:d19f:932:5a78:4bca] has quit [Ping timeout: 245 seconds]09:52
-!- samson_ [~samson_@180.183.164.139] has quit [Ping timeout: 256 seconds]09:53
-!- belcher [~belcher-s@unaffiliated/belcher] has joined #bitcoin-wizards09:55
-!- HaltingState [~HaltingSt@unaffiliated/haltingstate] has joined #bitcoin-wizards10:00
-!- xabbix__ [~xabbix@bzq-79-177-98-233.red.bezeqint.net] has joined #bitcoin-wizards10:00
-!- xabbix_ [~xabbix@bzq-79-180-1-43.red.bezeqint.net] has quit [Ping timeout: 264 seconds]10:02
-!- samson2 is now known as samson_10:04
-!- CoinMuncher [~jannes@178.132.211.90] has quit [Quit: Leaving.]10:05
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has quit [Ping timeout: 252 seconds]10:07
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has joined #bitcoin-wizards10:08
-!- shesek [~shesek@77.127.214.139] has quit [Ping timeout: 245 seconds]10:09
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards10:12
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 245 seconds]10:16
-!- Meeh [~meeeeeeh@meeh.sigterm.no] has quit [Ping timeout: 272 seconds]10:17
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has quit [Remote host closed the connection]10:18
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has joined #bitcoin-wizards10:19
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has quit [Quit: This computer has gone to sleep]10:22
-!- Meeh [~meeeeeeh@meeh.sigterm.no] has joined #bitcoin-wizards10:22
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has quit [Remote host closed the connection]10:27
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has joined #bitcoin-wizards10:28
-!- jb55 [~jb55@208.98.200.98] has joined #bitcoin-wizards10:28
-!- jb55 [~jb55@208.98.200.98] has quit [Remote host closed the connection]10:31
-!- jb55 [~jb55@208.98.200.98] has joined #bitcoin-wizards10:31
-!- xabbix__ [~xabbix@bzq-79-177-98-233.red.bezeqint.net] has quit [Ping timeout: 245 seconds]10:33
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Remote host closed the connection]10:49
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards10:50
gmaxwellandytoshi: well I didn't remember it either, I went and read the thing amiller linked to before commenting.10:55
-!- booly-yam-5194_ [~cinch@bzq-79-178-15-163.red.bezeqint.net] has quit [Ping timeout: 240 seconds]11:03
-!- hashtagg_ [~hashtag@cpe-98-157-219-44.ma.res.rr.com] has joined #bitcoin-wizards11:03
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has quit [Quit: jps]11:05
-!- hashtag_ [~hashtag@cpe-98-157-219-44.ma.res.rr.com] has quit [Ping timeout: 252 seconds]11:06
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards11:11
andytoshilast night i posted the link to the BRS stuff, i thought it was the same link (and amiller was replying to it)11:12
fluffyponyhttp://safecurves.cr.yp.to11:18
fluffyponyapparently secp256k1 doesn't meet all of the SafeCurve requirements11:18
-!- user7779_ [user777907@gateway/vpn/mullvad/x-rubtasslnwbesdiz] has quit []11:19
gmaxwellfluffypony: this is old and uninteresting; some of the 'requirements' are completely uninteresting to us (and maybe just about everyone). Likewise, I could create a similar marketing page what the ed25519 (and related) curves fail; for example; they have a cofactor.11:19
-!- nessence [~alexl@74-94-233-51-Michigan.hfc.comcastbusiness.net] has joined #bitcoin-wizards11:19
-!- Dizzle [~Dizzle@2605:6000:1018:c04a:addd:5abb:ac58:7283] has joined #bitcoin-wizards11:19
gmaxwell(which has resulted in completely broken protocols several times in the past, e.g. PAKE schemes.)11:19
-!- nessence [~alexl@74-94-233-51-Michigan.hfc.comcastbusiness.net] has quit [Remote host closed the connection]11:20
fluffyponysure, I just didn't realise DJB had a curves page until now11:20
-!- nessence [~alexl@74-94-233-51-Michigan.hfc.comcastbusiness.net] has joined #bitcoin-wizards11:22
gmaxwellfluffypony: I'd commented on it at some depth at https://bitcointalk.org/index.php?topic=380482.msg4082496#msg408249611:34
phantomcircuiti do like his domain name though11:35
phantomcircuitthat's super clever11:35
fluffyponywell it is DJB, pretty sure he was given that domain before the Internet even existed (I kid)11:36
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]11:36
-!- bepo_ [~bepo@fer68-1-78-229-8-151.fbx.proxad.net] has quit [Read error: No route to host]11:39
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has joined #bitcoin-wizards11:40
-!- bepo [~bepo@fer68-1-78-229-8-151.fbx.proxad.net] has joined #bitcoin-wizards11:41
-!- imposter [uid57046@gateway/web/irccloud.com/x-hjpmxzuxikaccxjj] has joined #bitcoin-wizards11:42
-!- Dizzle [~Dizzle@2605:6000:1018:c04a:addd:5abb:ac58:7283] has quit [Quit: BBIAB]11:44
-!- PaulCapestany [~PaulCapes@204.28.124.82] has quit []11:47
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Remote host closed the connection]11:50
-!- PaulCapestany [~PaulCapes@204.28.124.82] has joined #bitcoin-wizards11:50
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards11:50
-!- PaulCapestany [~PaulCapes@204.28.124.82] has quit [Client Quit]11:53
-!- PaulCapestany [~PaulCapes@204.28.124.82] has joined #bitcoin-wizards11:55
-!- PaulCapestany [~PaulCapes@204.28.124.82] has quit [Client Quit]11:56
-!- PaulCapestany [~PaulCapes@204.28.124.82] has joined #bitcoin-wizards11:58
-!- lclc_bnc is now known as lclc11:58
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has quit [Ping timeout: 244 seconds]11:58
-!- nessence [~alexl@74-94-233-51-Michigan.hfc.comcastbusiness.net] has quit [Remote host closed the connection]11:59
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Quit: WeeChat 1.0.1]11:59
-!- Aquent [~Aquent@gateway/tor-sasl/aquent] has quit [Quit: Leaving]12:01
-!- erasmospunk [~erasmospu@176.92.103.63] has joined #bitcoin-wizards12:04
-!- lclc is now known as lclc_bnc12:04
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has joined #bitcoin-wizards12:05
-!- davejh69 [~davejh69@207.140.24.74] has joined #bitcoin-wizards12:09
-!- davejh69 [~davejh69@207.140.24.74] has quit [Client Quit]12:10
-!- Dizzle [~diesel@70.114.207.41] has joined #bitcoin-wizards12:10
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Read error: Connection reset by peer]12:13
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards12:14
-!- Emcy_ [~MC@unaffiliated/mc1984] has quit [Ping timeout: 245 seconds]12:18
-!- Emcy_ [~MC@unaffiliated/mc1984] has joined #bitcoin-wizards12:20
-!- moa [~kiwigb@opentransactions/dev/moa] has joined #bitcoin-wizards12:20
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Read error: Connection reset by peer]12:20
-!- Dizzle [~diesel@70.114.207.41] has quit [Quit: Leaving...]12:21
-!- OneNomos [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has quit [Remote host closed the connection]12:21
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has joined #bitcoin-wizards12:21
-!- Dizzle [~diesel@70.114.207.41] has joined #bitcoin-wizards12:24
-!- nessence [~alexl@162.17.137.27] has joined #bitcoin-wizards12:27
-!- nessence [~alexl@162.17.137.27] has quit [Remote host closed the connection]12:28
-!- nessence [~alexl@162.17.137.27] has joined #bitcoin-wizards12:29
-!- nessence_ [~alexl@162.17.137.27] has joined #bitcoin-wizards12:32
-!- nessence [~alexl@162.17.137.27] has quit [Read error: Connection reset by peer]12:33
-!- e1782d11df4c9914 [~e1782d11d@cpe-66-68-54-206.austin.res.rr.com] has quit [Ping timeout: 245 seconds]12:35
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has joined #bitcoin-wizards12:49
-!- RoboTeddy [~roboteddy@c-67-188-40-206.hsd1.ca.comcast.net] has quit [Ping timeout: 265 seconds]12:50
earlzHave there been any significant "wishlist" type things for a transaction v2 format or some such?12:56
earlzI've seen one proposal to make it so everything is effectively p2sh (ie, there is no output script, just a scripthash)12:56
earlzbut other than that nothing12:56
andytoshiearlz: https://en.bitcoin.it/wiki/User:Gmaxwell/alt_ideas https://en.bitcoin.it/wiki/Hardfork_Wishlist12:57
andytoshithe latter is not on bitcoin.ninja, i will submit a pr..12:58
-!- RoboTeddy [~roboteddy@2601:9:3483:2400:5d4a:90e2:995e:e268] has joined #bitcoin-wizards12:58
-!- RoboTeddy [~roboteddy@2601:9:3483:2400:5d4a:90e2:995e:e268] has quit [Client Quit]12:58
earlzyea, I've seen the hardfork wishlist, but nothing in there covering transactions12:59
-!- Dizzle [~diesel@70.114.207.41] has quit [Ping timeout: 256 seconds]13:00
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards13:06
-!- hktud0 [wq@unaffiliated/fluffybunny] has quit [Remote host closed the connection]13:08
-!- Dizzle [~diesel@70.114.207.41] has joined #bitcoin-wizards13:09
-!- hktud0 [wq@unaffiliated/fluffybunny] has joined #bitcoin-wizards13:09
-!- treehug88 [~treehug88@66.6.34.252] has quit [Ping timeout: 244 seconds]13:11
-!- wallet42 [~wallet42@unaffiliated/wallet42] has joined #bitcoin-wizards13:12
bramcearlz, schnorr-based signatures, to allow collaborative signature generation13:12
-!- treehug88 [~treehug88@66.6.34.252] has joined #bitcoin-wizards13:12
earlzschnorr.. not heard of that one. I'll have to look it up13:14
earlzdo you have a reference for how it applies to bitcoin?13:14
andytoshiearlz: it's a drop-in replacement for ECDSA, the wikipedia article is not bad i think. it's roughly "choose a nonce k, then sig is (s, e) where e = H(m||kG) and s = k - ex"13:16
bramcThe main schnorr contender is ed25519. Perhaps the only serious contender.13:16
andytoshiearlz: it is cheaper to verify than ECDSA and is provably secure, unlike ECDSA. we also have a proof that it is "strong" i.e. will not cause transaction malleability by itself13:16
-!- nessence_ [~alexl@162.17.137.27] has quit [Remote host closed the connection]13:17
-!- nessence [~alexl@162.17.137.27] has joined #bitcoin-wizards13:17
bramcandytoshi, And it allows collaborative signature generation!13:17
earlzHas there been any practical proof that ecdsa could possibly have multiple valid signatures? (ie, transaction malleability)13:18
andytoshibramc: oh, right, that's a big one!13:18
earlzwhat do you mean collaborative?13:18
andytoshiearlz: well, if (s, r) is a valid ecdsa sig then (-s, r) is also one. but other than that (and it's an easy one to block by halving the allowable range for s), we don't know of any13:18
bramcearlz, Multiple counterparties can generate a public key signature together in such a way that particular subsets of them can do the signature but no single one of them can.13:19
earlzwhat benefit does that bring over multisig?13:19
andytoshiearlz: collaborative means we can create a 2-of-2 (or n-of-n multisig) by adding our e values, signing the same message, then adding the resultant s values13:19
bramcIt allows the transactions to be smaller and less identifiable13:19
andytoshiearlz: then you get a single signature that cannot be distinguished from a boring old 1-of-113:19
earlzhmm interesting13:20
earlzis that scheme at all proved secure? or is it relatively new?13:21
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has quit [Ping timeout: 245 seconds]13:21
-!- nessence [~alexl@162.17.137.27] has quit [Ping timeout: 246 seconds]13:22
andytoshiearlz: it's secure. not sure there is any proof written up, it'd be really gross because the security properties for multisig are always really technical (formalizing things like anti-collusion is hard)13:22
earlzwell, I mean like peer-reviewed and all that13:23
earlzI'm not super knowledgable about how crypto works at that low of  alevel13:23
andytoshidoes folklore count as peer review? :P13:23
andytoshithe short answer is yes, many people have thrown this idea around, and it's used as a component of other cryptosystems (e.g. attribute-based encryption) which are proven secure and properly peer-reviewed13:24
bramcUsing ed25519 instead of ecdsa is hardly considered out there at this point. It should probably be the default for new systems, although there's some caveat about how to implement heirarchical wallets which I haven't learned.13:25
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has joined #bitcoin-wizards13:27
op_mulbramc: there's some shitcoins using it.13:27
-!- nessence [~alexl@166.175.61.74] has joined #bitcoin-wizards13:28
trompso clearly not every shitcoin component is shitty13:29
op_mulbramc: here you go, here's some nutty anti-science and es25519 https://bitcointalk.org/index.php?topic=881427.013:29
op_mulit uses 64 bit timestamps! 320 bit hashes!13:29
trompshockingly, it doesn't claim to be "super-secure"13:30
trompi mean super-sekure :-)13:31
op_multromp: sorry, here's a better one for you. it has proof of node uptime! proof of identity! written in nodejs! https://bitcointalk.org/index.php?topic=654463.013:32
op_multhere's a few of these proof of time ones. they don't seem to have any method of consensus, every node just tries to connect to every other node and measure it's uptime.13:33
bramcop_mul, You mean proof of uptime, not proof of time? I've been talking about proofs of time, and people look at me like I've grown a second head.13:34
-!- OneNomos [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has joined #bitcoin-wizards13:34
bramcBut proofs of time are in some sense straightforward. Proofs of uptime sound snake oily.13:35
op_mulI can't tell you for sure because the "whitepaper" is nonsense and the code is heavily obfsucated javascript.13:35
op_mulhttps://github.com/crypti/whitepaper#method-1---proof-of-time13:35
bramcop_mul, The amount of gibberish out there is truly astounding13:39
bramcAnd it's hard to argue against, because it all sounds like technical mumbo-jumbo to the general public13:40
op_multhere's a financial incentive.13:41
-!- eslbaer [~eslbaer@p548A502B.dip0.t-ipconnect.de] has quit [Ping timeout: 245 seconds]13:43
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has quit [Quit: Leaving]13:43
-!- Guyver2 [~Guyver2@guyver2.xs4all.nl] has quit [Remote host closed the connection]13:43
-!- eslbaer [~eslbaer@p548A502B.dip0.t-ipconnect.de] has joined #bitcoin-wizards13:46
bramcThe proposals for having a utxo root per block overestimate its load on the protocol. The utxo root can be generated canonically from previous transactions, so it doesn't need to be sent over the wire13:47
bramcIt isn't entirely clear what the benefits are though. Mostly so light clients can verify that a utxos hasn't been spent?13:49
-!- Dr-G3 [~Dr-G@gateway/tor-sasl/dr-g] has quit [Write error: Connection reset by peer]13:51
-!- Graftec [~Graftec@gateway/tor-sasl/graftec] has quit [Remote host closed the connection]13:51
-!- mortale [~mortale@gateway/tor-sasl/mortale] has quit [Write error: Connection reset by peer]13:51
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Write error: Connection reset by peer]13:51
gmaxwellbramc: it would let you hot-start with SPV like security without reviewing the past state.13:51
bramcgmaxwell, It isn't clear how much smaller the current tree is likely to be than the historical tree13:52
bramcBut fair enough13:53
gmaxwellBut maintaining a committed UTXO set is fairly expensive; (forget the bandwdith: as you note, you normally never send it.-- it's expensive because you have to keep around the interior nodes of the tree or updates all require recomputing everything; and any update has to touch log(n) interior nodes)13:53
gmaxwellUTXO set in bitcoin is enormously smaller than the history.13:53
gmaxwellFor one, it doesn't have signatures. But unsurprisingly, coins tend to get spent. So last graph I saw of the UTXO set size looked quasi-log while block size over time looked linear.13:54
gmaxwellRight now in bitcoin it's a ratio of about 600MB to 30GB.13:54
bramcThere's an interesting wrinkle if you assume that you want sharding and that the transaction set is so big in any one block that it needs to be sharded as well. You wind up having to put each utxos both in the position it came from and all the places it's going to and it's declared invalid if it isn't in all of them13:55
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards13:56
bramchmm, interesting. It isn't clear whether including a utxo root in each block is 'worth it' though, even for a brand new coin13:56
op_mulgmaxwell: weeee http://statoshi.info/#dashboard/temp/oekOxR4vQf6JmgwRWhO1Xw13:58
-!- hashtagg_ [~hashtag@cpe-98-157-219-44.ma.res.rr.com] has quit [Ping timeout: 244 seconds]14:00
-!- nessence [~alexl@166.175.61.74] has quit [Read error: Connection reset by peer]14:00
-!- nessence_ [~alexl@166.175.61.74] has joined #bitcoin-wizards14:01
gmaxwellbramc: yes, it's not clear. There are also other possible commitment structures.14:01
gmaxwellop_mul: how to lie with graps example 1231231?  (non-zero x-origin)14:02
op_mulyeah but it's the only source I know of :(14:03
bramcgmaxwell, Perhaps not worth it purely because it's an impediment to software support14:03
gmaxwelleverything is an impediment to software. :)14:03
phantomcircuitis there any reason to select something other than secp256k1 for a new project that needs compact signatures?14:04
op_mulhipster cryptographer?14:04
bramcWhile there's no obvious inheritance from BitTorrent to BitCoin, whoever created it seems to have absorbed the lesson of not optimizing things which don't need optimizing.14:04
phantomcircuitop_mul, passing interest this is only at the prototype stage14:05
-!- freewil [~freewil@unaffiliated/freewil] has joined #bitcoin-wizards14:05
phantomcircuitbut once i've written it in i doubt anybody is ever going to change/question the decision14:05
op_multhere's places satoshi really should have optimised, like not using DER encoded EC signatures.14:05
phantomcircuitso i figured i'd ask14:05
phantomcircuiti think the DER encoded ec signatures are actually pretty close to optimal encoding when they're actually DER and not BER14:06
-!- Graftec [~Graftec@gateway/tor-sasl/graftec] has joined #bitcoin-wizards14:06
phantomcircuitiirc there's like 1 byte wasted14:06
bramcop_mul, Okay, maybe the bencoding lesson wasn't learned14:06
op_mulI'm not sure why they're encoded at all14:06
op_multhe sigs are two integers14:06
op_mulI mean, I know why they are, it's because that's what openssl gave out and satoshi treated openssl like a black box.14:07
-!- nessence_ [~alexl@166.175.61.74] has quit [Ping timeout: 245 seconds]14:07
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Remote host closed the connection]14:07
phantomcircuitop_mul, it's ASN.1 SEQUENCE [ INT, INT ]14:08
gmaxwellphantomcircuit: there are 8 bytes of overhead... you could get back several of those with a lot of computation if you wanted to though.14:08
-!- nessence [~alexl@166.175.61.74] has joined #bitcoin-wizards14:08
gmaxwell(go go ASN1)14:08
bramcA funny thing in BitTorrent history: Originally peer IPs were handing back as 'x.y.z.w', which got a bit big. Eventually people got annoyed at this and were trying to compress them and whatnot. I looked into it and found out that IP addresses are just four integers and created 'compact' encoding. Which is how it would have been done to begin with, had I know that IPs were just four integers.14:08
gmaxwellthe actual signature itself is 64 bytes exactly.14:08
phantomcircuitoh i forgot that the sequence has it's own type14:08
-!- Quanttek [~quassel@2a02:8108:d00:870:e23f:49ff:fe47:9364] has quit [Ping timeout: 276 seconds]14:08
phantomcircuiter length14:08
op_mulbramc: four? it's one 32bit integer.14:09
-!- sipa [~pw@unaffiliated/sipa1024] has joined #bitcoin-wizards14:09
bramcop_mul, It's four 8 bit integers :-)14:09
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards14:10
phantomcircuitgmaxwell, iirc it's 2 bytes for the seq and then 2 bytes each for the integers14:10
sipait's actually a 32-bit integer14:10
phantomcircuitwhere do the other 2 bytes comes from14:10
gmaxwellbramc: to really blow your mind, many programs will just take a 32 bit integer (no dots)14:10
sipayou can convert an IPv4 address in dotted quad to a single integer14:10
sipatyping that integer into your browser will _work_14:10
bramcgmaxwell, You mean a base 10 ascii integer?14:10
sipayes14:10
bramcAUGH14:11
phantomcircuitoh im forgetting some bytes for a type delimiter arne't i14:11
sipahttp://2130706433 == localhost14:11
op_mulbramc: https://184192352314:11
gmaxwelle.g. type ping 213070643314:11
gmaxwellah I was too slow.14:11
phantomcircuitbramc, heh14:12
op_mulgmaxwell: 6425673729 works too :)14:12
bramcgmaxwell, Is there a writeup somewhere of the gotchas with using heirarchical wallets with ed25519? Hopefully with fixes?14:12
op_mul(knowing that trick is great for building filter bypasses, almost nobody knows you can make a valid URL without a single period in it)14:13
phantomcircuitgmaxwell, no i dont think im missing any overhead14:15
phantomcircuitthere's 6 bytes of overhead14:15
gmaxwellphantomcircuit: the largest canonical DER encoded signature is 72 bytes. The actual data is 64 bytes. You have to do some stupid 1 stuffing.14:16
phantomcircuitohh14:17
phantomcircuitnull byte padding to indicate signedness14:17
phantomcircuitso mucking about with it i could definitely get a guaranteed 64 byte signature or worst case 65 bytes but with the ability to grind for shorter signatures14:18
gmaxwellwith a lot of grinding. yes.14:19
phantomcircuitha14:21
phantomcircuitjust took a look at petertodd'd python-bitcoinlib14:22
phantomcircuitdoes signature verification by importing openssl14:22
sipaduh14:22
phantomcircuitwas hoping to get a free pointer towards a decent library14:22
phantomcircuitnot for ceonsensus purposes14:22
phantomcircuitconsensus14:23
sipalol14:23
gmaxwelloptimal grinding requires somewhat tricky code, since you get a huge benefit from grinding both the nonce and the message seperately.14:26
bramcDoes this mean that bip32 is busted? http://eprint.iacr.org/2014/99814:27
gmaxwelle.g. you grind until you get a small r, then using that small r you grind the message until s is small.14:27
-!- eslbaer [~eslbaer@p548A502B.dip0.t-ipconnect.de] has quit [Ping timeout: 256 seconds]14:27
gmaxwellAbsolutely not.14:27
sipabramc: that vulnerability is even mentioned explicitly in the bip14:27
op_muldidn't vitalik find it first?14:28
sipano14:28
bramcWhat's the point of having child private keys if you can derive the master private key with them?14:28
op_mul(sorry, meant to be a joke)14:28
gmaxwellop_mul: I am not laughing at your shenangans.14:28
gmaxwellbramc: This is explained in the BIP.14:28
sipamaster public keys must be treated as secret14:29
gmaxwellBIP32 does not give you multiple _private keys_, it gives you multiple addresses.14:29
-!- HarusameNyanko [~HarusameN@pl2125.nas815.n-hiroshima.nttpc.ne.jp] has quit [Quit: bai bai]14:29
gmaxwellAnd the multiple addresses are indistuishable to someone who does not know the master public key.14:30
Adlaiyou mean impossible to correlate?14:31
gmaxwellAdlai: they're indistinguishable from random. (which is a stronger criteria than impossible to coorelate)14:31
bramcOkay, I understand the caveat that the master public key must be treated as secret. You probably should never derive it in the first place14:34
op_mulsipa: sadly, there's people making wallets which leak the MPK to remote parties :(14:34
sipathat's fine if you never share any private key14:34
sipa(and most use cases do not require sharing private keys)14:34
op_muland if you don't mind your privavy going up the shitter.14:35
sipawell, sharing the master pubkey also has privacy concerns14:35
bramcHow are wallets supposed to notice that a heirarchical wallet derived payment was sent to them?14:35
phantomcircuitop_mul, lol community lore14:35
phantomcircuitwhat a crock14:35
sipabramc: have a window a future unused derived keys, and check for transactions to them14:35
gmaxwellphantomcircuit: I was pretty pissed when responding to their forum post and had to redraft twice.14:35
phantomcircuitgmaxwell, i remember14:36
-!- Dizzle_ [~diesel@70.114.207.41] has joined #bitcoin-wizards14:36
bramcIs there any use at all for the master public key or is just a liability?14:36
op_mulhardware wallets use it.14:36
gmaxwellbramc: I really wish you'd read a bit more.14:37
op_mulpartly trusted party holds the MPK, gives unsigned transactions to a HSM to sign with the master private.14:37
bramcop_mul, Use it how? For what?14:37
gmaxwellThe primary application the homomorphic derrivation addresses is generating new publically unlinkable unique addresses for each payment you reciever, without having to keep the spending keys online.14:37
Adlaiop_mul: the way to avoid leakage is not to derive keys from a key used to create an address, right?14:37
sipaAdlai: you should indeed never do that14:37
gmaxwellIt's also, similarly, used for derriving more keys belonging e.g. to a hardware wallet on an online host... so you don't have to consult the hardware wallet to generate more keys constantly.14:37
bramcgmaxwell, Sorry, I was for some reason thinking that you hand a derived private key to someone who sends you payments. Obviously that makes no sense. I'm trying to work my way through the bip, really I am14:38
-!- Dizzle [~diesel@70.114.207.41] has quit [Ping timeout: 245 seconds]14:38
sipathere is a lot of common knowledge now that is not in the bip, because it predates it14:38
gmaxwellbramc: ah, no, you don't hand private keys to anyone normally.14:38
gmaxwellsipa: this is all discussed in the BIP, at least.14:39
Adlaibramc: the use cases where child private keys are handed out are for organizations that split authority between various entities14:39
Adlaiif you have a department head with a child private key, and an auditor with the master public key, they can collude to steal funds from other departments14:39
-!- Dizzle_ is now known as Dizzle14:40
bramcOkay, I understand now14:40
gmaxwellAdlai: "department head with a child private key," is nonsensical.14:41
* Adlai is referring to https://github.com/bitcoin/bips/blob/master/bip-0032.mediawiki#per-office-balances-mih14:41
Adlaimaybe I misunderstood it?14:42
gmaxwellAdlai: That example is m/iH14:44
-!- Dr-G [~Dr-G@gateway/tor-sasl/dr-g] has joined #bitcoin-wizards14:46
* Adlai schedules a reread of bip3214:46
bramcWhat is the purpose of the chain code for heirarchical wallets?14:47
Adlaiohhhh it's a hardened key, making derivation of the parent private key impossible14:48
-!- hktud0 [wq@unaffiliated/fluffybunny] has quit [Ping timeout: 244 seconds]14:48
phantomcircuitbramc, HD wallets are a tree not a chain14:49
phantomcircuitthat's the first thing i ask people who have implemented BIP32 btw14:49
phantomcircuitif they say it's a chain i assume they dont have a clue14:49
phantomcircuit(since they dont!)14:49
bramcphantomcircuit, But doesn't the key itself allow for the derivation of later things? What would happen if you used a fixed value for the chain code every time? Obviously you use a different i to make it a tree...14:50
op_mulphantomcircuit: there's a danger of a spec just having too many options, it means everybody just uses a subset of them14:51
op_mulphantomcircuit: and there's some stupid risk from things like BIP38 slipping through the net and being used as a standard. that one is still incredibly annoying to me.14:52
op_mulI've talked to lots of people that think their "encrypted" private key can be malware free or whatever because it's, you know, encrypted. end result is just people reuse addresses and ack recklessly.14:53
-!- hashtag_ [~hashtag@CPE-69-23-213-3.wi.res.rr.com] has joined #bitcoin-wizards14:53
bramchmm, looks like chain code just remembers your position as a shared value between the private and public derivation because the public deriver doesn't have access to that info14:55
gmaxwellAdlai: yep.14:56
gmaxwellAdlai: though I'd forgotten that example was in there; it's at least specified sensibly.14:56
-!- erasmospunk [~erasmospu@176.92.103.63] has quit [Read error: Connection reset by peer]15:01
-!- erasmospunk [~erasmospu@176.92.103.63] has joined #bitcoin-wizards15:01
-!- orik [~orik@75.149.169.53] has joined #bitcoin-wizards15:02
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards15:04
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Remote host closed the connection]15:05
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards15:05
bramcIf I'm reading bip32 correctly, the basic trick is that if you have k1 and k2 as private keys corresponding to K1 and K2 as public keys, then (k1+k2) will have corresponding public key (K1+K2) ?15:05
sipayup15:06
bramcWell that's easy. What's the caveat about ed25519?15:06
sipaeven: if you have k1 and k2 as private keys corresponding to K1 and K2 as public keys, then (a*k1 + b*k2) will have corresponding public key (a*K1 + b*K2)15:06
bramcThe derivation is basically mix i into the chain code, then generate a new key with the chain code and add that to the existing key15:07
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]15:07
bramcgmaxwell, What was your problem with applying bip32 blindly to ed25519? Something about the group having a generator of size 8?15:08
gmaxwellbramc: ed25519 implementations require the most significant bit of the private key be set. Also all ed25519 keys must be a multiple of 8. (this later criteria can be worked around in a BIP32 like formulation, the former cannot)15:08
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Remote host closed the connection]15:09
bramcThe multiple of 8 would seem to be fixable just by multiplying by 815:09
-!- aburan28 [~ubuntu@static-108-45-93-86.washdc.fios.verizon.net] has joined #bitcoin-wizards15:09
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has joined #bitcoin-wizards15:09
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 244 seconds]15:10
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards15:10
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]15:10
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards15:10
bramcgmaxwell, Is that leading bit thing referring to the high bit of the point in the curve, not some artifact of encoding?15:11
sipahigh bit of the factor multiplied with the generator15:11
gmaxwellbramc: right; probably BIP32 should have been specified in a way that was curve neutral by saying that you had to multiply by the cofactor (which is just 1 for secp256k1, so do nothing there).  In any case, the high bit set is more of a problem.15:11
bramcAnd is that a deep requirement of the crypto or can you just break the implementation to not require that any more?15:11
gmaxwellYou could break the implementation but then be randomly incompatible.15:12
bramcSo the high bit thing is a defense against weak keys?15:12
gmaxwellAnd once you're in the realm of not being able to use a high quality standard implementations you start running out of advantages for a different curve.15:13
sipait's necessary for constant-timeness of their signing algorithm, i believe?15:13
sipaunsure15:13
andytoshibramc: i think it's about timing15:13
andytoshiiirc djb hinted at this but wasn't very clear in the curve25519 paper, and there isn't any other justification15:14
gmaxwellIIRC it's because their 'complete' addition formula can't handle the point at infinity.  So their multiply ladder can always start with a 1 instead of a zero so long as the high bit must be set.15:14
gmaxwellIf so it could be worked around at the expense of slowing down the code by adding more cmovs.15:15
gmaxwell(and tracking an infinity flag)15:15
gmaxwellWhich is what we do in libsecp256k1.15:15
-!- Dr-G [~Dr-G@gateway/tor-sasl/dr-g] has quit [Remote host closed the connection]15:15
-!- Dr-G [~Dr-G@gateway/tor-sasl/dr-g] has joined #bitcoin-wizards15:15
andytoshinsh: iirc you emailed djb about this? did you get a reply?15:15
gmaxwellBut if you can't you high quality standard code; it greatly reduces any advantage in one curve vs another.15:16
gmaxwellsince a lot of the motivation for parameters is tyed up in implementation quality.15:16
bramcI mailed djb about a few things recently and haven't heard back on any of them15:16
ajweissfor faster service, include qmail bug15:17
sipalol15:17
-!- Cory [~Cory@unaffiliated/cory] has joined #bitcoin-wizards15:18
nshandytoshi, might have been more of an intention than a thing-wot-i-then-actually-done-did15:18
nshi meant to hassle him about a bunch of stuff at congress too, and he evaded me15:18
nsh(by sneakily scheduling ECCHacks for when i was distracted/asleep/ondrugs/elsewhere)15:18
gmaxwellwell he'll respond to me if I email him (has the last several times at least) but if you're just curious about this it's easier to just read the code.15:18
deegohttp://www.unbreakablecoin.com/ looky! It's unbreakable! Says right there in its name. Let's switch!15:19
bramcgmaxwell, the 'why' of something like the high bit can be rather hard to ascertain from the code, particularly security-heavy crypto code15:19
bramcIt could be that the last mail I sent to djb suffered from containing much too open-ended and interesting questions and he didn't have the cycles to spare on it15:20
gmaxwellbramc: Well it's pretty clear if it does what I suggested it does above: e.g. does it initilize the ladder with 1 instead of infinity and skip the first bit; and does the addition formula have code to handle the accumulator argument being infinity.15:20
deego(It's twice as fast, and four times the size of this puny, slow bitcoin!)15:21
gmaxwellIf not than regardless of what the motivations were, at a minimum that would have to change.15:21
-!- belcher [~belcher-s@unaffiliated/belcher] has quit [Quit: Leaving]15:21
bramcgmaxwell, I have no idea how that affects timing, and you're getting much deeper into the math than I remember off the top of my head15:21
op_muldeego: that's a 504.15:21
gmaxwellAnd annoyingly that would be incompatible (inside crypto inner loops). At which point "why use this over secp256k1?" is a more serious question?15:22
deegoop_mul: probably because the "creator" has managed to get himself slashdotted.15:22
deego(did he pay dice for the advertizement?)15:22
sipabramc: in an exponentiation ladder with one guaranteed bit set, you can trivially avoid having any internal result being the point at infinity15:23
gmaxwellyea, I saw that and went "hm. guess slashdot takes paid placement now."15:23
deegoikr15:23
sipabramc: which means slightly faster/less code15:23
op_muldeego: unbreakable is about as ominous as unsinkable.15:23
bramcgmaxwell, The main motivation is it's schnorr, I guess you could use schnorr with secp256k115:23
andytoshii think gmaxwell is right, in fe25519.c `static void reduce_add_sub(fe25519 *r)` we see exactly what he described ... ladder initialized with high bit set then a loop that skips it15:23
deegoop_mul: haha15:24
sipabramc: as otherwise you need a branch to check whether your addition would result in infinity (or use the conditional move trick, basically executing both branches and only using the result of the one you need)15:24
andytoshi(in the supercop reference impl, not the optimized one)15:24
andytoshiand no branching15:24
gmaxwellbramc: and indeed there is an implementation in the libsecp256k1 github; though it hasn't been updated lately.15:24
op_muler. why is this "unbreakable coin" misusing bluematt's real name?15:25
sipaop_mul: where?15:25
op_mulhttps://github.com/jimblasko/UnbreakableCoin-master/commit/21695a61e000f6b2759626e2097c68573e1447cf15:25
gmaxwellwut15:26
gmaxwellBlueMatt: ?!15:26
deego(also, wc. sorry, I thought I was talking in #bitcoin.)15:26
op_mulOH15:26
op_mulit's a coingen coin15:27
gmaxwelllol may be due to coingen!15:27
gmaxwelllol15:27
gmaxwellit's a coingen altcoin? hahah15:27
op_mulFrom: Matt Corallo <coingenbot@bluematt.me>15:27
sipait's not just a coingen altcoin!15:27
sipait also has a patch to chmod a leveldb script file!15:28
sipaand some artwork changes15:28
gmaxwellDid they add a dog?15:28
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has joined #bitcoin-wizards15:28
op_mulI can't confirm any dog at this point in time.15:29
sipaalso this readme line change:15:29
sipaUnbreakablecoin is based on Bitcoin's core with modifications to it's speed and size.15:29
sipa(find the grammar error)15:29
gmaxwellandytoshi: hurray, my memory isn't completely worthless.15:29
justanotherusersipa: their paint is thicker, rendering it unbreakable15:29
sipaleaded paint15:29
-!- belcher [~belcher-s@unaffiliated/belcher] has joined #bitcoin-wizards15:30
justanotheruserBitcoin's core?15:30
bramcOkay, really really stupid question: Schnorr works with any curve, right? Including secp256k1?15:31
andytoshigmaxwell: did you notice this as part of secp256k1 work or was it actually mentioned in the curve25519 paper?15:31
andytoshii remember specifically looking for an explanation in there, i'm disappointed to know that i missed it (tho at the time i know i didn't understand the ladder stuff and probably skipped it)15:32
sipabramc: yes15:32
sipawell, "any" is a very large set15:32
sipabut typical15:32
andytoshibramc: schnorr is group-agnostic, you only need discrete log to be hard15:32
sipabramc: there's a pull request to to add schnorr to libsecp256k115:32
sipait's outdated now, and we probably want to do things a bit differently now15:33
sipabut it would work15:33
gmaxwellandytoshi: no; so I had read that code a while back (to see if it did anything useful we should do for libsecp256k1) but didn't actually notice that. I knew from the ed25519 writeup they required the bit set; I only connected why while typing in here a moment ago (part of why I wasn't sure)15:33
gmaxwellSo weird (but also so DJB) to gum up the works with a speed hack basically to avoid one line of code https://github.com/bitcoin/secp256k1/blob/master/src/group_impl.h#L361   but perhaps for his addition law it's somehow more complex than that.15:34
op_mulI saw some comments about making a libsecp256k low memory mode, how serious of a plan was that? :)15:34
bramcsipa, It has merge conflicts now? https://github.com/bitcoin/secp256k1/pull/8715:34
gmaxwellop_mul: its a few minutes hacking basically.15:34
sipabramc: as i said, it's outdated15:34
sipabramc: but the old code worked15:34
op_mulgmaxwell: to get it down to < 20kB15:35
sipacode size? ram size? rom size?15:36
op_mulmemory15:36
sipaincluding what?15:36
bramcgmaxwell, It might have to do with time invariance15:36
gmaxwellsigning only?15:36
BlueMattop_mul: gmaxwell lol, sooooo old shit15:36
BlueMattcoingen hasnt run in.....who knows how long?15:36
sipabramc: yes, it does15:36
sipabramc: it avoids a branch15:37
op_mulsipa: gmaxwell: signing ideally. \15:37
op_mulBlueMatt: sorry for bothing you, should have thought for a few minutes before bringing it up15:37
sipaop_mul: 20 kB including what? code / static data / ram?15:37
BlueMattop_mul: lol, np15:37
sipaif a 1 MB precomputed table is acceptable, it may be good already15:38
op_mulsipa: limits are 120kB-ish for the flash, 20kB for the memory15:38
op_mulactually, I could stop being cheap and just buy one with 2KB of flash15:39
bramcLooks like ed25519 is about twice as fast http://justmoon.github.io/curvebench/benchmark.html15:39
gmaxwelllol no.15:40
gmaxwellThats year old stuff.15:40
sipabramc: look at the pullreqs for that repo15:40
sipai submitted updated benchmarks15:40
sipawhich are outdated now too15:40
gmaxwell(also it was misconfigured because it rupped out the buildsystem)15:40
op_mulah, damn, there's no 2KB flash version. limit seems to be 1KB.15:41
gmaxwellripped*15:41
bramcsipa, How does it do with the updated benchmark?15:42
sipawith the endomorphism optimization (which may be patented) and libgmp (which you may not want to rely on in consensus-critical code), it's over 10% faster than ed25519 for non-batch verification15:42
op_mulgmaxwell: ha, how's this. the model the trezor is using can come with a crypto coprocessor that can do all the things the trezor doesn't need to do. got us some DES, TDEA, AES, SHA1 and MD5. how handy!15:43
sipawith some pullreqs that are not merged yet, it's closer to 20% faster15:43
bramcsipa, What's wrong with libgmp?15:43
sipamore code15:43
kanzuresurface area15:44
sipaand consensus-critical systems have much stronger requirements than typical projects15:44
sipaas in: fixing a bug may not be wanted15:44
gmaxwellGMP has never promised to not fix bugs.15:44
gmaxwell:)15:44
op_mulgmaxwell: and it has a hardware RNG. neat.15:45
sipai trust GMP does a good job of testing and having few bugs in general, but that's not always enough15:45
bramcOkay, I'm sold on the bitcoin curve15:45
op_mulo.o tamper detection?15:49
op_mulright. battery backed SRAM, 80 bytes.15:52
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has quit [Ping timeout: 256 seconds]15:53
op_mulenough for a BIP32 key if you felt like living dangerously.15:53
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Remote host closed the connection]15:54
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has joined #bitcoin-wizards15:54
-!- cbeams [~cbeams@chello084114181075.1.15.vie.surfer.at] has quit [Changing host]15:54
-!- cbeams [~cbeams@unaffiliated/cbeams] has joined #bitcoin-wizards15:54
bramcsipa, When you say you'd do it differently now for that pull request, are you referring to the encoding used or the code layout?15:55
-!- nessence [~alexl@166.175.61.74] has quit [Remote host closed the connection]15:57
-!- devrandom [~devrandom@gateway/tor-sasl/niftyzero1] has quit [Ping timeout: 250 seconds]15:57
-!- devrandom [~devrandom@gateway/tor-sasl/niftyzero1] has joined #bitcoin-wizards15:57
-!- DougieBot5000 [~DougieBot@unaffiliated/dougiebot5000] has quit [Quit: Leaving]15:58
-!- orik [~orik@75.149.169.53] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]15:59
-!- cbeams [~cbeams@unaffiliated/cbeams] has quit [Ping timeout: 276 seconds]15:59
-!- moa [~kiwigb@opentransactions/dev/moa] has quit [Ping timeout: 245 seconds]16:02
-!- moa [~kiwigb@opentransactions/dev/moa] has joined #bitcoin-wizards16:05
-!- op_mul [~op_mul@128.199.127.146] has quit [Ping timeout: 240 seconds]16:06
-!- justanotheruser [~Justan@unaffiliated/justanotheruser] has joined #bitcoin-wizards16:09
-!- e1782d11df4c9914 [e1782d11df@gateway/vpn/mullvad/x-wrezomwlidpiczhi] has joined #bitcoin-wizards16:11
-!- gsdgdfs [Transisto@213.179.213.95] has joined #bitcoin-wizards16:31
-!- Transisto [~Trans@modemcable026.188-59-74.mc.videotron.ca] has quit [Ping timeout: 240 seconds]16:32
-!- rusty [~rusty@pdpc/supporter/bronze/rusty] has joined #bitcoin-wizards16:33
-!- gsdgdfs [Transisto@213.179.213.95] has quit [Remote host closed the connection]16:34
-!- belcher [~belcher-s@unaffiliated/belcher] has quit [Quit: Leaving]16:37
-!- belcher [~belcher-s@unaffiliated/belcher] has joined #bitcoin-wizards16:38
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has quit [Quit: jps]16:38
-!- gsdgdfs [~Trans@modemcable026.188-59-74.mc.videotron.ca] has joined #bitcoin-wizards16:38
-!- treehug88 [~treehug88@66.6.34.252] has quit []16:43
bramcMy list of stuff to research is now officially empty. Maybe I should start building something.16:44
-!- hktud0 [wq@unaffiliated/fluffybunny] has joined #bitcoin-wizards16:45
justanotheruserbramc: https://docs.google.com/viewer?url=https%3A%2F%2Fresearch.microsoft.com%2Fpubs%2F180286%2Fpinocchio.pdf16:46
-!- k0mputer [~k0mputer@cpc23-bour5-2-0-cust90.15-1.cable.virginm.net] has joined #bitcoin-wizards16:47
-!- Guest89043 is now known as maaku16:50
-!- erasmospunk [~erasmospu@176.92.103.63] has quit [Read error: Connection reset by peer]16:51
-!- erasmospunk [~erasmospu@176.92.103.63] has joined #bitcoin-wizards16:52
-!- Burrito [~Burrito@unaffiliated/burrito] has quit [Ping timeout: 264 seconds]16:52
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards16:54
-!- shesek [~shesek@192.114.91.211] has joined #bitcoin-wizards16:54
-!- hashtag_ [~hashtag@CPE-69-23-213-3.wi.res.rr.com] has quit [Ping timeout: 252 seconds]16:56
-!- Transisto [Transisto@213.179.213.158] has joined #bitcoin-wizards16:56
-!- gsdgdfs [~Trans@modemcable026.188-59-74.mc.videotron.ca] has quit [Ping timeout: 246 seconds]16:57
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 256 seconds]16:58
-!- k0mputer [~k0mputer@cpc23-bour5-2-0-cust90.15-1.cable.virginm.net] has quit [Quit: Leaving]16:59
-!- Dizzle [~diesel@70.114.207.41] has quit [Quit: Leaving...]17:01
-!- gsdgdfs [~Trans@modemcable026.188-59-74.mc.videotron.ca] has joined #bitcoin-wizards17:15
-!- Transisto [Transisto@213.179.213.158] has quit [Ping timeout: 265 seconds]17:15
-!- siervo [uid49244@gateway/web/irccloud.com/x-peiifgjfcbyxirpq] has joined #bitcoin-wizards17:17
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has joined #bitcoin-wizards17:24
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has quit [Quit: pgokeeffe]17:24
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has quit [Client Quit]17:27
-!- rusty [~rusty@pdpc/supporter/bronze/rusty] has quit [Quit: Leaving.]17:28
-!- DougieBot5000 [~DougieBot@unaffiliated/dougiebot5000] has joined #bitcoin-wizards17:30
-!- belcher [~belcher-s@unaffiliated/belcher] has quit [Quit: Leaving]17:32
-!- rusty [~rusty@pdpc/supporter/bronze/rusty] has joined #bitcoin-wizards17:37
-!- aburan28 [~ubuntu@static-108-45-93-86.washdc.fios.verizon.net] has quit [Ping timeout: 244 seconds]17:39
-!- Adlai [~Adlai@gateway/tor-sasl/adlai] has quit [Quit: WeeChat 1.0.1]17:40
-!- cluckj [~cluckj@cpe-24-92-48-18.nycap.res.rr.com] has quit [Ping timeout: 252 seconds]17:42
-!- spinza [~spin@197.83.246.249] has quit [Ping timeout: 256 seconds]17:42
-!- spinza [~spin@197.83.246.249] has joined #bitcoin-wizards17:44
bramcjustanotheruser, ZK stuff is interesting but I'm not going to use it for now17:44
-!- contrapumpkin [~copumpkin@unaffiliated/copumpkin] has joined #bitcoin-wizards17:48
-!- copumpkin [~copumpkin@unaffiliated/copumpkin] has quit [Ping timeout: 264 seconds]17:50
-!- aburan28 [~ubuntu@static-108-45-93-72.washdc.fios.verizon.net] has joined #bitcoin-wizards17:53
-!- OneNomos [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has quit [Remote host closed the connection]17:56
-!- bramc [~bram@99-75-88-206.lightspeed.sntcca.sbcglobal.net] has quit [Quit: Leaving]18:04
-!- OneNomos [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has joined #bitcoin-wizards18:06
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:d1d1:1f05:24d2:d154] has quit [Ping timeout: 245 seconds]18:07
-!- hktud0 [wq@unaffiliated/fluffybunny] has quit [Remote host closed the connection]18:11
-!- hktud0 [~ncidsk@unaffiliated/fluffybunny] has joined #bitcoin-wizards18:13
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has joined #bitcoin-wizards18:21
-!- NLNico [~NLNico@unaffiliated/nlnico] has joined #bitcoin-wizards18:26
-!- jtimon [~quassel@108.pool85-59-62.dynamic.orange.es] has quit [Ping timeout: 256 seconds]18:27
-!- Dr-G2 [~Dr-G@gateway/tor-sasl/dr-g] has joined #bitcoin-wizards18:29
-!- erasmospunk [~erasmospu@176.92.103.63] has quit [Remote host closed the connection]18:30
-!- Dr-G [~Dr-G@gateway/tor-sasl/dr-g] has quit [Ping timeout: 250 seconds]18:32
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards18:43
-!- zwischenzug [~zwischenz@207.Red-88-8-247.dynamicIP.rima-tde.net] has quit [Remote host closed the connection]18:44
-!- jb55_ [~jb55@208.98.200.98] has joined #bitcoin-wizards18:44
-!- d1ggy [~d1ggy@dslb-092-076-004-021.092.076.pools.vodafone-ip.de] has quit [Read error: Connection reset by peer]18:45
-!- d1ggy [~d1ggy@dslb-088-071-019-025.088.071.pools.vodafone-ip.de] has joined #bitcoin-wizards18:45
-!- OneNomos [~OneNomos@gateway/vpn/privateinternetaccess/onenomos] has quit [Remote host closed the connection]18:47
-!- siervo [uid49244@gateway/web/irccloud.com/x-peiifgjfcbyxirpq] has quit []18:47
-!- siervo [uid49244@gateway/web/irccloud.com/x-cmixkavpbnalhwgj] has joined #bitcoin-wizards18:47
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 276 seconds]18:48
-!- siervo [uid49244@gateway/web/irccloud.com/x-cmixkavpbnalhwgj] has quit [Client Quit]18:48
-!- jb55 [~jb55@208.98.200.98] has quit [Ping timeout: 272 seconds]18:48
-!- jb55_ [~jb55@208.98.200.98] has quit [Ping timeout: 264 seconds]18:49
-!- jb55 [~jb55@S0106f46d049a0b83.vc.shawcable.net] has joined #bitcoin-wizards19:00
-!- cluckj [~cluckj@cpe-24-92-48-18.nycap.res.rr.com] has joined #bitcoin-wizards19:07
-!- nullbyte [WW@gateway/vpn/mullvad/x-ibpgryvwngqhflno] has quit [Ping timeout: 256 seconds]19:07
-!- nullbyte [WW@gateway/vpn/mullvad/x-kbkeuyleymcalrxj] has joined #bitcoin-wizards19:09
-!- aburan28 [~ubuntu@static-108-45-93-72.washdc.fios.verizon.net] has quit [Ping timeout: 272 seconds]19:10
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has quit [Quit: pgokeeffe]19:13
-!- freewil [~freewil@unaffiliated/freewil] has quit [Quit: Leaving.]19:14
-!- nullbyte [WW@gateway/vpn/mullvad/x-kbkeuyleymcalrxj] has quit [Ping timeout: 264 seconds]19:17
-!- thrasher` [~thrasher@unaffiliated/thrasher/x-7291870] has quit [Remote host closed the connection]19:17
-!- thrasher` [~thrasher@27-33-27-140.static.tpgi.com.au] has joined #bitcoin-wizards19:18
-!- nullbyte [WW@unaffiliated/loteriety] has joined #bitcoin-wizards19:18
-!- nullbyte [WW@unaffiliated/loteriety] has quit [Changing host]19:18
-!- nullbyte [WW@gateway/vpn/mullvad/x-dknzgtioznmhxrzg] has joined #bitcoin-wizards19:18
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has joined #bitcoin-wizards19:24
-!- NLNico [~NLNico@unaffiliated/nlnico] has quit [Quit: Leaving]19:27
-!- nick1234abcd__ [sid26299@gateway/web/irccloud.com/x-aatjnyhxglrqcpyg] has quit [Read error: Connection reset by peer]19:30
-!- btc___ [sid40798@gateway/web/irccloud.com/x-ufetddjslgnkfoqr] has quit [Read error: Connection reset by peer]19:32
-!- nick1234abcd__ [sid26299@gateway/web/irccloud.com/x-ihfutojrxfwjdsqe] has joined #bitcoin-wizards19:33
-!- catcow [uid62269@gateway/web/irccloud.com/x-fuzhmkrjkgnlgqnm] has quit [Read error: Connection reset by peer]19:33
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has joined #bitcoin-wizards19:34
-!- PFate [sid33238@gateway/web/irccloud.com/x-lehqbjpurtumqktn] has quit [Ping timeout: 276 seconds]19:35
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has quit [Quit: pgokeeffe]19:38
-!- statdude [~statdude@c-67-172-240-196.hsd1.ut.comcast.net] has joined #bitcoin-wizards19:39
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has joined #bitcoin-wizards19:42
-!- catcow [uid62269@gateway/web/irccloud.com/x-nktulievzrapqppz] has joined #bitcoin-wizards19:44
-!- PFate [sid33238@gateway/web/irccloud.com/x-jvpeeckwnmdweciy] has joined #bitcoin-wizards19:46
-!- PFate [sid33238@gateway/web/irccloud.com/x-jvpeeckwnmdweciy] has quit [Ping timeout: 272 seconds]19:51
-!- catcow [uid62269@gateway/web/irccloud.com/x-nktulievzrapqppz] has quit [Ping timeout: 276 seconds]19:52
-!- nick1234abcd__ [sid26299@gateway/web/irccloud.com/x-ihfutojrxfwjdsqe] has quit [Ping timeout: 245 seconds]19:56
-!- kgk [~kgk@76.14.85.43] has joined #bitcoin-wizards19:59
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has quit [Quit: pgokeeffe]20:03
-!- PFate [sid33238@gateway/web/irccloud.com/x-nuaeshyzfyhqqfao] has joined #bitcoin-wizards20:11
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has joined #bitcoin-wizards20:14
BlueMatt;;later tell bramc "ZK stuff is interesting but I'm not going to use it for now"......then you havent sufficiently gotten into bitcoin yet!20:22
gribbleThe operation succeeded.20:22
rustyBlueMatt: I'd say he successfully avoided the rabbit hole, myself :)20:31
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards20:31
-!- btc___ [sid40798@gateway/web/irccloud.com/x-iqlscirhgynjsqak] has joined #bitcoin-wizards20:34
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 245 seconds]20:36
-!- jps [~Jud@cpe-74-72-116-143.nyc.res.rr.com] has quit [Quit: jps]20:45
-!- nick1234abcd__ [sid26299@gateway/web/irccloud.com/x-tngmpylffveubncm] has joined #bitcoin-wizards20:48
-!- catcow [uid62269@gateway/web/irccloud.com/x-qefeoccurludxrvv] has joined #bitcoin-wizards20:50
-!- contrapumpkin is now known as copumpkin20:52
-!- TheSeven [~quassel@rockbox/developer/TheSeven] has quit [Ping timeout: 265 seconds]20:57
-!- TheSeven [~quassel@rockbox/developer/TheSeven] has joined #bitcoin-wizards20:59
-!- Guest90099 [~Pan0ram1x@095-096-084-122.static.chello.nl] has quit [Ping timeout: 265 seconds]21:00
-!- jb55 [~jb55@S0106f46d049a0b83.vc.shawcable.net] has quit [Remote host closed the connection]21:06
-!- Pan0ram1x [~Pan0ram1x@095-096-084-122.static.chello.nl] has joined #bitcoin-wizards21:07
-!- Pan0ram1x is now known as Guest8412821:07
BlueMattrusty: I consider that failure :p21:11
-!- statdude [~statdude@c-67-172-240-196.hsd1.ut.comcast.net] has quit [Quit: HydraIRC -> http://www.hydrairc.com <- In tests, 0x09 out of 0x0A l33t h4x0rz prefer it :)]21:13
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:285f:4141:9651:e1b8] has joined #bitcoin-wizards21:14
-!- amiller [~socrates1@unaffiliated/socrates1024] has quit [Ping timeout: 272 seconds]21:43
-!- Guest59384 [~socrates1@li175-104.members.linode.com] has joined #bitcoin-wizards21:45
-!- nullbyte [WW@gateway/vpn/mullvad/x-dknzgtioznmhxrzg] has quit [Ping timeout: 245 seconds]21:48
-!- kyletorpey [~kyle@c-24-131-0-5.hsd1.va.comcast.net] has joined #bitcoin-wizards22:04
-!- pgokeeffe [~pgokeeffe@101.165.93.194] has quit [Quit: pgokeeffe]22:12
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has joined #bitcoin-wizards22:20
-!- e1782d11df4c9914 [e1782d11df@gateway/vpn/mullvad/x-wrezomwlidpiczhi] has quit [Ping timeout: 264 seconds]22:24
-!- koeppelmann [~koeppelma@dyn-160-39-29-12.dyn.columbia.edu] has quit [Ping timeout: 244 seconds]22:25
-!- e1782d11df4c9914 [e1782d11df@gateway/vpn/mullvad/x-htinrtidbyqpvytk] has joined #bitcoin-wizards22:25
-!- paveljanik [~paveljani@unaffiliated/paveljanik] has joined #bitcoin-wizards22:31
-!- aburan28 [~ubuntu@static-108-45-93-72.washdc.fios.verizon.net] has joined #bitcoin-wizards22:35
-!- mpmcsweeney [~mpmcsween@c-50-189-4-61.hsd1.ma.comcast.net] has joined #bitcoin-wizards22:38
-!- coiner [~linker@115.79.55.177] has joined #bitcoin-wizards22:39
-!- e1782d11df4c9914 [e1782d11df@gateway/vpn/mullvad/x-htinrtidbyqpvytk] has quit [Ping timeout: 252 seconds]22:39
-!- Guest59384 is now known as amiller22:43
-!- amiller [~socrates1@li175-104.members.linode.com] has quit [Changing host]22:43
-!- amiller [~socrates1@unaffiliated/socrates1024] has joined #bitcoin-wizards22:43
-!- kgk [~kgk@76.14.85.43] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]22:49
-!- hashtag_ [~hashtag@CPE-69-23-213-3.wi.res.rr.com] has joined #bitcoin-wizards22:51
-!- aburan28 [~ubuntu@static-108-45-93-72.washdc.fios.verizon.net] has quit [Ping timeout: 276 seconds]22:51
-!- aburan28 [~ubuntu@static-108-45-93-72.washdc.fios.verizon.net] has joined #bitcoin-wizards23:00
-!- rusty [~rusty@pdpc/supporter/bronze/rusty] has quit [Ping timeout: 265 seconds]23:01
-!- kgk [~kgk@76.14.85.43] has joined #bitcoin-wizards23:05
-!- hktud0 [~ncidsk@unaffiliated/fluffybunny] has quit [Remote host closed the connection]23:07
-!- mpmcsweeney [~mpmcsween@c-50-189-4-61.hsd1.ma.comcast.net] has quit [Remote host closed the connection]23:07
-!- mpmcsweeney [~mpmcsween@c-50-189-4-61.hsd1.ma.comcast.net] has joined #bitcoin-wizards23:08
-!- hktud0 [ncidsk@unaffiliated/fluffybunny] has joined #bitcoin-wizards23:12
-!- hktud0 [ncidsk@unaffiliated/fluffybunny] has quit [Remote host closed the connection]23:12
-!- orik [~orik@50-46-132-219.evrt.wa.frontiernet.net] has joined #bitcoin-wizards23:12
-!- mpmcsweeney [~mpmcsween@c-50-189-4-61.hsd1.ma.comcast.net] has quit [Ping timeout: 246 seconds]23:12
-!- hktud0 [ncidsk@ip-188-121-63-164.ip.secureserver.net] has joined #bitcoin-wizards23:13
-!- hktud0 [ncidsk@ip-188-121-63-164.ip.secureserver.net] has quit [Changing host]23:13
-!- hktud0 [ncidsk@unaffiliated/fluffybunny] has joined #bitcoin-wizards23:13
-!- NewLiberty [~NewLibert@2602:304:cff8:1580:285f:4141:9651:e1b8] has quit [Ping timeout: 245 seconds]23:14
-!- c0rw1n [~c0rw1n@67.163-243-81.adsl-dyn.isp.belgacom.be] has quit [Ping timeout: 245 seconds]23:15
-!- hktud0 [ncidsk@unaffiliated/fluffybunny] has quit [Remote host closed the connection]23:15
-!- hktud0 [ncidsk@unaffiliated/fluffybunny] has joined #bitcoin-wizards23:17
-!- Emcy_ [~MC@unaffiliated/mc1984] has quit [Ping timeout: 245 seconds]23:21
-!- MoALTz_ [~no@78-11-152-253.static.ip.netia.com.pl] has joined #bitcoin-wizards23:25
-!- Emcy_ [~MC@unaffiliated/mc1984] has joined #bitcoin-wizards23:25
-!- MoALTz__ [~no@78.11.152.253] has joined #bitcoin-wizards23:27
-!- MoALTz [~no@78-11-152-253.static.ip.netia.com.pl] has quit [Ping timeout: 245 seconds]23:27
-!- MoALTz_ [~no@78-11-152-253.static.ip.netia.com.pl] has quit [Ping timeout: 276 seconds]23:31
-!- c0rw1n [~c0rw1n@13.173-67-87.adsl-dyn.isp.belgacom.be] has joined #bitcoin-wizards23:31
-!- DougieBot5000 [~DougieBot@unaffiliated/dougiebot5000] has quit [Quit: Leaving]23:42
-!- moa [~kiwigb@opentransactions/dev/moa] has quit [Ping timeout: 264 seconds]23:54
--- Log closed Wed Jan 21 00:00:30 2015

Generated by irclog2html.py 2.15.0.dev0 by Marius Gedminas - find it at mg.pov.lt!