1 2016-12-27T00:01:32  <bitcoin-git> [bitcoin] droark opened pull request #9433: Update the Windows build notes (master...docs) https://github.com/bitcoin/bitcoin/pull/9433
 28 2016-12-27T04:01:48  <luke-jr> gmaxwell: so you custom made a private key based on the required signature?
 30 2016-12-27T04:07:22  <jl2012> luke-jr: I think it's key recovery
 31 2016-12-27T04:08:24  <luke-jr> jl2012: ?
 32 2016-12-27T04:08:46  <jl2012> gmaxwell's tx
 33 2016-12-27T04:08:52  <luke-jr> looks like the script is checking the hash of the signature rather than the pubkey
 34 2016-12-27T04:09:01  <jl2012> public key recovery
 35 2016-12-27T04:09:07  <luke-jr> but the signature needs to commit to the input txid
 36 2016-12-27T04:09:54  <luke-jr> since the pubkey is not restricted, however, I assume the spender can just calculate a privkey from the signature + data, and provide the pubkey for that
 37 2016-12-27T04:10:22  <jl2012> no you can't
 39 2016-12-27T04:10:41  <jl2012> but with signature + data, you could have the pubkey
 40 2016-12-27T04:10:47  <jl2012> but you don't know the private key
 41 2016-12-27T04:11:06  <jl2012> if you could know private key this way, ECDSA is broken
 42 2016-12-27T04:12:35  <luke-jr> hmm
 43 2016-12-27T04:12:37  <gmaxwell> I didn't create that txn, someone on bct linked it asking for what was happening there, it's amusing though.
 44 2016-12-27T04:12:59  <jl2012> luke-jr: I did this with the same way: https://github.com/bitcoin/bitcoin/pull/8927
 45 2016-12-27T04:13:04  <gmaxwell> and yes, luke-jr you're right those coins can be stolen by anyone who has seen the preimage of the hash.
 46 2016-12-27T04:13:42  <luke-jr> oh, is it because of FindAndDelete?
 48 2016-12-27T04:14:55  <jl2012> you could do it without involving FindAndDelete. See the segwit tests in the same PR
 49 2016-12-27T04:18:33  <jl2012> to disallow this, we need to cover the pubkey in SignatureHash
 50 2016-12-27T04:20:30  <jl2012> luke-jr: you could find the python code here to do this: https://github.com/bitcoin/bitcoin/pull/8654
 64 2016-12-27T06:53:11  <arubi> it's my tx actually, indeed pubkey recovery :)
 65 2016-12-27T06:54:18  <arubi> basically a response to "signatures can't sign themselves" :)
 66 2016-12-27T06:58:46  <gmaxwell> the fact that it's the same as an orderinary pay to pubkey hash script, but with the swap makes it especitally cute.
 68 2016-12-27T07:00:44  <arubi> yea I was counting on it looking similar to that heh, another fun one is https://test.webbtc.com/script/795fd9db2300ea16bcd49ea85f2a0ecbe475c62b75fea317d1fa981aae34caca:0 , where R is not a valid X coordinate
 70 2016-12-27T07:01:56  <gmaxwell> uhh
 71 2016-12-27T07:01:56  <arubi> was trying to see if anyone who was implementing their own verifier would be forked off testnet.  nobody came forward so I guess we're ok :)
 72 2016-12-27T07:02:49  <arubi> well R+N is the valid X coordinate, but since we do % N, this non X coordinate R is what's left
 73 2016-12-27T07:03:02  <arubi> R+N < P
 74 2016-12-27T07:03:03  <gmaxwell> oh it's a wrap case, okay. whew.
 75 2016-12-27T07:04:00  <gmaxwell> I thought you were saying that R (the point) wasn't on the curve, rather than r (the scalar, R.x mod P).
 76 2016-12-27T07:04:24  <arubi> oh yes, capitalization is important
 77 2016-12-27T07:04:26  <gmaxwell> The former shouldn't verify.
 78 2016-12-27T07:05:35  <gmaxwell> reminds me that we need to add a case where R.x -> r overflows in signing to the libsecp256k1 tests.
 79 2016-12-27T07:09:41  <gmaxwell> arubi: sadly a lot of places don't run testnet nodes...
 80 2016-12-27T07:12:42  <gmaxwell> arubi: looks like webbtc is stuck as of the 4th in fact.
 81 2016-12-27T07:13:20  <gmaxwell> the first block it's missing is 00000000021d4ec041244b516e55d35f733ba8a1f538d26764b67e881b2e030f
 82 2016-12-27T07:14:59  <arubi> gmaxwell, yea, too bad..  not many stake holders like to keep an eye on testnet..  maybe when it's reset sometime it'll give people a chance to start a node
 83 2016-12-27T07:16:51  <gmaxwell> would be nice to know why it's rejecting that block.
 84 2016-12-27T07:16:57  <gmaxwell> it's seen it but considers it orphaned.
 85 2016-12-27T07:17:50  <gmaxwell> (so I wonder if it thinks its invalid)
 86 2016-12-27T07:21:09  <arubi> interesting.  looks like a simple block to validate.  will check when I'm back from work, cheers
 87 2016-12-27T07:24:32  <gmaxwell> yea, I don't see any obvious stunts in it.
 88 2016-12-27T07:24:43  <gmaxwell> it may just be that the site didn't survive a long reorg.
118 2016-12-27T12:40:40  <bitcoin-git> [bitcoin] ryanofsky opened pull request #9435: Removed unused variable in test, fixing warning. (master...pr/coins-unused) https://github.com/bitcoin/bitcoin/pull/9435
125 2016-12-27T13:20:35  <gmaxwell> warren: do you know anything about https://www.ringingliberty.com/bitcoin/  ? doesn't appear to have a determinstic build process, anyone looked to see if these binaries are backdoored?  someone wandering into #bitcoin is using them.
126 2016-12-27T13:33:27  *** BashCo has joined #bitcoin-core-dev
127 2016-12-27T13:50:28  <robert__> its the first result when you google fedora bitcoin
131 2016-12-27T14:39:39  *** Chris_Stewart_5 has joined #bitcoin-core-dev
136 2016-12-27T14:56:46  <sipa> it only works for a few use cases
137 2016-12-27T14:58:54  <luke-jr> sipa: should I go ahead and document this? "* Its Cursor also doesn't work. In general, it is broken as a CCoinsView implementation outside of a few use cases." or something
138 2016-12-27T15:04:05  <sipa> there is a comment about it somewhere
139 2016-12-27T15:04:12  <sipa> i'm at a conference now, remind me later
140 2016-12-27T15:04:58  <luke-jr> k, enjoy
163 2016-12-27T17:52:31  <bitcoin-git> [bitcoin] MarcoFalke pushed 2 new commits to master: https://github.com/bitcoin/bitcoin/compare/0f921e6a0492...dbc8a8c86ae5
164 2016-12-27T17:52:31  <bitcoin-git> bitcoin/master 35356b4 Russell Yanofsky: Remove unused variable in test, fixing warning....
165 2016-12-27T17:52:32  <bitcoin-git> bitcoin/master dbc8a8c MarcoFalke: Merge #9435: Removed unused variable in test, fixing warning....
166 2016-12-27T17:52:46  <bitcoin-git> [bitcoin] MarcoFalke closed pull request #9435: Removed unused variable in test, fixing warning. (master...pr/coins-unused) https://github.com/bitcoin/bitcoin/pull/9435
171 2016-12-27T18:17:38  <bitcoin-git> bitcoin/master c8042a4 Matt Corallo: Remove arguments to ParseConfigFile
172 2016-12-27T18:17:39  <bitcoin-git> bitcoin/master 2b5f085 Matt Corallo: Fix non-const mapMultiArgs[] access after init....
173 2016-12-27T18:17:39  <bitcoin-git> bitcoin/master 0cf86a6 Matt Corallo: Introduce (and use) an IsArgSet accessor method
174 2016-12-27T18:17:48  <bitcoin-git> [bitcoin] sipa closed pull request #9243: Clean up mapArgs and mapMultiArgs Usage (master...2016-11-mapmultiargs) https://github.com/bitcoin/bitcoin/pull/9243
175 2016-12-27T18:18:34  <bitcoin-git> [bitcoin] MarcoFalke opened pull request #9436: test: Include tx data in EXTRA_DIST (master...Mf1612-inclTest) https://github.com/bitcoin/bitcoin/pull/9436
179 2016-12-27T19:04:38  <bitcoin-git> bitcoin/master 2ddfcfd Pieter Wuille: Make CScript (and prevector) c++11 movable....
180 2016-12-27T19:04:39  <bitcoin-git> bitcoin/master 2db4cbc Pieter Wuille: Merge #9349: Make CScript (and prevector) c++11 movable....
181 2016-12-27T19:04:52  <bitcoin-git> [bitcoin] sipa closed pull request #9349: Make CScript (and prevector) c++11 movable. (master...movescript) https://github.com/bitcoin/bitcoin/pull/9349
