{ "founder": "wumpus", "channel": "#bitcoin-core-dev", "network": "freenode", "id": "83280acd6afc40b1a8ef6f3f8c540ad3", "name": "#bitcoin-core-dev", "chair": "wumpus", "chairs": [ "wumpus" ], "nicks": { "wumpus": 94, "lightningbot": 2, "jonasschnelli": 58, "sipa": 37, "btcdrak": 49, "luke-jr": 15, "kanzure": 28, "gmaxwell": 40, "MarcoFalke": 13, "cfields": 6, "instagibbs": 11, "kadoban": 4, "anchow101": 3, "warren": 4, "sdaftuar": 1, "zooko": 9, "jl2012": 5, "adam3us": 1, "BlueMatt": 4 }, "start_time": "2016-08-18T19:00:19+00:00", "end_time": "2016-08-18T20:01:00+00:00", "active": false, "original_topic": "Bitcoin Core development discussion and commit log | This is the channel for developing Bitcoin Core. Feel free to watch, but please take commentary and usage questions to #bitcoin | Channel logs: https://botbot.me/freenode/bitcoin-core-dev, http://www.erisian.com.au/bitcoin-core-dev/", "current_topic": "BIP146", "messages": [ { "id": "11d039ea67474767bedbaba6938bbe03", "sender": "wumpus", "payload": "#startmeeting", "action": false, "timestamp": "2016-08-18T19:00:19+00:00" }, { "id": "0a1da33ba22049bda238da4ddf0b337c", "sender": "lightningbot", "payload": "Meeting started Thu Aug 18 19:00:19 2016 UTC. The chair is wumpus. Information about MeetBot at http://wiki.debian.org/MeetBot.", "action": false, "timestamp": "2016-08-18T19:00:19+00:00" }, { "id": "85c8735bfe734f2281bec03df820e620", "sender": "lightningbot", "payload": "Useful Commands: #action #agreed #help #info #idea #link #topic.", "action": false, "timestamp": "2016-08-18T19:00:19+00:00" }, { "id": "2383010b9e4f4e5196f6d7d0a5df7138", "sender": "jonasschnelli", "payload": "proposed topic: core internal binary signing and verification tool", "action": false, "timestamp": "2016-08-18T19:00:39+00:00" }, { "id": "735e11a4c37b4e2cbc2a78831df4d79f", "sender": "sipa", "payload": "kanzure: its twitter handle is therealping", "action": false, "timestamp": "2016-08-18T19:00:40+00:00" }, { "id": "8c71b4408079438e86ae6247381c63ef", "sender": "wumpus", "payload": "kanzure: it comes from gmaxwell, who the offical meeting-pinger, and he is authenticated with freenode", "action": false, "timestamp": "2016-08-18T19:00:45+00:00" }, { "id": "7342f9999e9a45e7ad7f7ae133b78f08", "sender": "btcdrak", "payload": "how do we know freenode is still free?", "action": false, "timestamp": "2016-08-18T19:01:11+00:00" }, { "id": "1366ba83eb814a42888421b693658d41", "sender": "wumpus", "payload": "because otherwise it would be renamed to restrictednode", "action": false, "timestamp": "2016-08-18T19:01:30+00:00" }, { "id": "164cac499c864d95a0427fb680523ebc", "sender": "luke-jr", "payload": "jonasschnelli: a tool would be nice, but there is no reason for it to be internal", "action": false, "timestamp": "2016-08-18T19:01:32+00:00" }, { "id": "db5d5f32e7f149aca43bee6fa0da93c5", "sender": "jonasschnelli", "payload": "there are", "action": false, "timestamp": "2016-08-18T19:01:40+00:00" }, { "id": "cf2b338d372344ea9534745658468fca", "sender": "jonasschnelli", "payload": "(to be covered under gitian)", "action": false, "timestamp": "2016-08-18T19:01:50+00:00" }, { "id": "b196a338aa0043b3a0143422ad7e8991", "sender": "wumpus", "payload": "#topic core internal binary signing and verification tool", "action": false, "timestamp": "2016-08-18T19:01:57+00:00" }, { "id": "c9775387310441c7b782e72273956732", "sender": "luke-jr", "payload": "you can gitian-build things besides Bitcoin", "action": false, "timestamp": "2016-08-18T19:02:01+00:00" }, { "id": "17efd1bf06c446bb8c0757ddec08e623", "sender": "jonasschnelli", "payload": "I propose to add to cli tools to the bitcoin-core package", "action": false, "timestamp": "2016-08-18T19:02:26+00:00" }, { "id": "d1eadd513e33419ebbb2fff229b5aae1", "sender": "kanzure", "payload": "off-topic, but does anyone know the status of deterministic debian efforts?", "action": false, "timestamp": "2016-08-18T19:02:34+00:00" }, { "id": "eef7d720a06b43ce90d8e3a455afa985", "sender": "jonasschnelli", "payload": "bitcoin-core-verify and bitcoin-core-sign", "action": false, "timestamp": "2016-08-18T19:02:34+00:00" }, { "id": "d18c0d27cb434f819f9ca67e46761036", "sender": "jonasschnelli", "payload": "The later will not be shipped", "action": false, "timestamp": "2016-08-18T19:02:44+00:00" }, { "id": "76d55a2c291b4fb7a0267b652be1a2bc", "sender": "jonasschnelli", "payload": "bitcoin-core-verify -> 1) hashes file(s) 2) download gitian assets files together with ECDSA sigs 3) verify hashed against downloaded assets files 4) verify assets ECDSA sigs against in-binary-pubkeys (dev-name/pubkey)", "action": false, "timestamp": "2016-08-18T19:02:47+00:00" }, { "id": "549fd2dfc27f4ea0b2eab520c9b8f328", "sender": "jonasschnelli", "payload": "bitcoin-core-verify will list valid signatues of devs by listing devs name.", "action": false, "timestamp": "2016-08-18T19:02:51+00:00" }, { "id": "19fcada1434643bcb8ee0263deaef0c4", "sender": "wumpus", "payload": "I suppose it will be a separate executable within the bitcoin core distribution, other software can also include it if they want, but that's not initially very important", "action": false, "timestamp": "2016-08-18T19:02:55+00:00" }, { "id": "22931e438d74425da283721eef50b40a", "sender": "btcdrak", "payload": "jonasschnelli I think it needs to be GUI for wider adoption.", "action": false, "timestamp": "2016-08-18T19:02:57+00:00" }, { "id": "ee8b7a36177b4dec86a01023914891bc", "sender": "jonasschnelli", "payload": "Yes. It would be a Qt tool for one major reason", "action": false, "timestamp": "2016-08-18T19:03:07+00:00" }, { "id": "3e864d9294c5481bb39bc73443893c4c", "sender": "gmaxwell", "payload": "Please don't do design in the meeting.", "action": false, "timestamp": "2016-08-18T19:03:08+00:00" }, { "id": "44e612fa11114f5bac6b11b5e4bac04f", "sender": "jonasschnelli", "payload": "https downloads", "action": false, "timestamp": "2016-08-18T19:03:10+00:00" }, { "id": "8fae0779c6324a09995531aaacbfe3cf", "sender": "jonasschnelli", "payload": "gmaxwell: okay. fair enought...", "action": false, "timestamp": "2016-08-18T19:03:25+00:00" }, { "id": "2d7bf63066a54abd8757abc578996ef4", "sender": "gmaxwell", "payload": "I'm planning on having someone work on that.", "action": false, "timestamp": "2016-08-18T19:03:29+00:00" }, { "id": "21f95ef9a4ed4d9e8fcc4ba1b8cce8dd", "sender": "btcdrak", "payload": "jonas is already building something afaik", "action": false, "timestamp": "2016-08-18T19:03:49+00:00" }, { "id": "fb3db093a88344479f131eb1903f4807", "sender": "wumpus", "payload": "yes it needs https support to get at the signatures from github", "action": false, "timestamp": "2016-08-18T19:03:51+00:00" }, { "id": "3b6dfcca29374746aa91b56e087ec889", "sender": "jonasschnelli", "payload": "Yes. But happy to pause.", "action": false, "timestamp": "2016-08-18T19:03:56+00:00" }, { "id": "1497e5193848402da4fde160626ae15a", "sender": "gmaxwell", "payload": "If it does https I will nak it so hard keys will fall of the keyboard.", "action": false, "timestamp": "2016-08-18T19:04:06+00:00" }, { "id": "23a9ef2cdbbf4216bdaf5b0de00f3153", "sender": "jonasschnelli", "payload": "Qt would have https support built in", "action": false, "timestamp": "2016-08-18T19:04:07+00:00" }, { "id": "d0dcc92691f94e9eb920d2fa01a62239", "sender": "jonasschnelli", "payload": "the gitian sigs come over https", "action": false, "timestamp": "2016-08-18T19:04:21+00:00" }, { "id": "ad699d2b7f984911a53190577605758b", "sender": "gmaxwell", "payload": "We _cannot_ ship some downloading tool that is going to require frequent CVEs itself.", "action": false, "timestamp": "2016-08-18T19:04:22+00:00" }, { "id": "75ec8ec94ff3415493816c9af0f9293b", "sender": "wumpus", "payload": "it's not a downloading tool", "action": false, "timestamp": "2016-08-18T19:04:27+00:00" }, { "id": "485c93d6148844fbbd0b59259622676d", "sender": "jonasschnelli", "payload": "either with git or with https", "action": false, "timestamp": "2016-08-18T19:04:28+00:00" }, { "id": "c0935790f597490aaf54a98999dd660b", "sender": "MarcoFalke", "payload": "So how do you verify bitcoin-core-verify?", "action": false, "timestamp": "2016-08-18T19:04:29+00:00" }, { "id": "6f01dbba376f4ac7b2f84d74b68e7ffd", "sender": "wumpus", "payload": "just a verification tool", "action": false, "timestamp": "2016-08-18T19:04:30+00:00" }, { "id": "927db98545094d5e94798243049b29de", "sender": "wumpus", "payload": "MarcoFalke: it'd be part of the distribution", "action": false, "timestamp": "2016-08-18T19:04:41+00:00" }, { "id": "af7bb78f945c4316a5eef3e06d400fd7", "sender": "btcdrak", "payload": "no need for https when you have cryptographic verification", "action": false, "timestamp": "2016-08-18T19:04:45+00:00" }, { "id": "503672e946684c1eb8823cef47f0c973", "sender": "gmaxwell", "payload": "What btcdrak said.", "action": false, "timestamp": "2016-08-18T19:04:51+00:00" }, { "id": "1d3f1da4cd68425391aee8494934d7b0", "sender": "jonasschnelli", "payload": "I guess even if https is broken, nobody can upload valid EC sigs", "action": false, "timestamp": "2016-08-18T19:04:58+00:00" }, { "id": "1285fd10a00d429683d830fec95d8046", "sender": "btcdrak", "payload": "https _is_ broken", "action": false, "timestamp": "2016-08-18T19:05:05+00:00" }, { "id": "e48f5e72345845b3956ee4be9cf2e657", "sender": "jonasschnelli", "payload": "https is required to download from github I guess", "action": false, "timestamp": "2016-08-18T19:05:12+00:00" }, { "id": "717e997495d0436bb7bbbadf30dd0f85", "sender": "wumpus", "payload": "well if you can get information from github through http that would work too", "action": false, "timestamp": "2016-08-18T19:05:16+00:00" }, { "id": "749001ab896d4cc18bab262e2d70671a", "sender": "jonasschnelli", "payload": "Yes. TLS is not required for security.", "action": false, "timestamp": "2016-08-18T19:05:39+00:00" }, { "id": "9d39222046174e4b8331c9d2f68052fc", "sender": "luke-jr", "payload": "the git protocol isn't encrypted I think", "action": false, "timestamp": "2016-08-18T19:05:46+00:00" }, { "id": "d422791e45b14bea9432f3577a44fc5c", "sender": "btcdrak", "payload": "actually I think it's impossible to fetch from github without https, you'd have to use the git:// ptrotocol", "action": false, "timestamp": "2016-08-18T19:05:55+00:00" }, { "id": "03c7aee499f64d179fdb090b674923f4", "sender": "wumpus", "payload": "you seriously wouldn't want to implement the git protocol", "action": false, "timestamp": "2016-08-18T19:05:59+00:00" }, { "id": "258dc3f875a04b2dbabdc8ad1cdc8fc6", "sender": "cfields", "payload": "wumpus: distribution == our release? Or OS?", "action": false, "timestamp": "2016-08-18T19:06:02+00:00" }, { "id": "f920387451bd43e9bebbdce73787fbec", "sender": "jonasschnelli", "payload": "he. yes. no git:// please", "action": false, "timestamp": "2016-08-18T19:06:10+00:00" }, { "id": "77e4cbbb36894c22be62ac256b4d585f", "sender": "wumpus", "payload": "cfields: yes, our releases", "action": false, "timestamp": "2016-08-18T19:06:10+00:00" }, { "id": "3d8c10115fa6458c9fcfbe9a64bb4f99", "sender": "jonasschnelli", "payload": "The only concern is \u00c3\u00a2\u00c2\u0080\u00c2\u0093 and this is why i borugh it up \u00c3\u00a2\u00c2\u0080\u00c2\u0093 the ec-pubkeys together with dev-name should be placed in bitcoin/bitcoin", "action": false, "timestamp": "2016-08-18T19:06:46+00:00" }, { "id": "e3052b32da514c648ac78a6a592770bc", "sender": "wumpus", "payload": "otherwise you'd have to host the signatures somewhere else than github, which is possible of course, but is a change in the release process", "action": false, "timestamp": "2016-08-18T19:06:55+00:00" }, { "id": "1c79e33fecfa43169f3290832196da89", "sender": "jonasschnelli", "payload": "somewhere where it could be used in cpp source code (probably in a header)", "action": false, "timestamp": "2016-08-18T19:06:57+00:00" }, { "id": "8fa3817178334b0eb3e6fd037803bf85", "sender": "wumpus", "payload": "well the gpg keys are already in the respository", "action": false, "timestamp": "2016-08-18T19:07:24+00:00" }, { "id": "52d90399bde64457bb59650b664bd2ef", "sender": "jonasschnelli", "payload": "this would allow to build a \"trusted-chain\" of bitcoin-core binaries", "action": false, "timestamp": "2016-08-18T19:07:25+00:00" }, { "id": "8cfb7e242183406fa97d3272c9139717", "sender": "cfields", "payload": "mm. Can we back up then and address what this is aiming to solve? What protects against someone re-packaging a malicious release along with a clone \"verification tool\" that always passes?", "action": false, "timestamp": "2016-08-18T19:07:27+00:00" }, { "id": "a3d06f3e39494fe3bb9ffcdfadb6f454", "sender": "kanzure", "payload": "an email to the mailing list about verification procedures seems prudent at some point, as a general reminder. i'm sure there's existing content somewhere that can be copied for these purposes.", "action": false, "timestamp": "2016-08-18T19:07:40+00:00" }, { "id": "5d377dc2190d4fbba9135460e0c6a881", "sender": "jonasschnelli", "payload": "cfields: Sure. Thats always possible", "action": false, "timestamp": "2016-08-18T19:07:44+00:00" }, { "id": "aeefe168616c4e2ebb9205678a4eb54e", "sender": "btcdrak", "payload": "just confirmed github forces https redirection", "action": false, "timestamp": "2016-08-18T19:07:54+00:00" }, { "id": "60574db4245f4cc587c8fcbdf450211b", "sender": "MarcoFalke", "payload": "So bitcoin-core-verify checks the release, but is part of the release... Isn't this circular?", "action": false, "timestamp": "2016-08-18T19:07:58+00:00" }, { "id": "b51204a32ec84ea690e98782c29565bc", "sender": "wumpus", "payload": "cfields: yes, it only works for chaining, if the first link in the chain is broken it solves nothing...", "action": false, "timestamp": "2016-08-18T19:07:58+00:00" }, { "id": "6085e9416f4945fb888885efe20068a5", "sender": "jonasschnelli", "payload": "But not if you have verified the first download (assume with gitian verify), then verify with the new tool", "action": false, "timestamp": "2016-08-18T19:08:05+00:00" }, { "id": "e8d1327b74d0488ba766840f4bf2a378", "sender": "gmaxwell", "payload": "cfields: well if something competent were being done, the setup would be the last version you got provides a tool to get/verify the next version.", "action": false, "timestamp": "2016-08-18T19:08:10+00:00" }, { "id": "aef4d0a6d9534fc695b4533553b4c78f", "sender": "wumpus", "payload": "MarcoFalke: it'd be used to check the *next* release downloaded", "action": false, "timestamp": "2016-08-18T19:08:14+00:00" }, { "id": "8ae8b1d7696a4565a824f55795c17aab", "sender": "kanzure", "payload": "bikeshedding for a sec, but \"next\" seems important enough to be part of the name ;)", "action": false, "timestamp": "2016-08-18T19:08:32+00:00" }, { "id": "6623a8617da4472f808d6f08e4540905", "sender": "jonasschnelli", "payload": "people could still gitian-verify our new verification tool", "action": false, "timestamp": "2016-08-18T19:08:33+00:00" }, { "id": "dfeef844af2747dab0d03f8c45c38967", "sender": "wumpus", "payload": "MarcoFalke: having it verify itself would be sillly", "action": false, "timestamp": "2016-08-18T19:08:36+00:00" }, { "id": "71ab2aafbef84a60961db17c08b0b3a3", "sender": "cfields", "payload": "right.", "action": false, "timestamp": "2016-08-18T19:08:37+00:00" }, { "id": "f78db21056d04dcaa34ef17c9ceebfe0", "sender": "gmaxwell", "payload": "cfields: so if you previously got a good release, then you'll have good releases foreverafter (or at least until the signing keys were compromised :) )", "action": false, "timestamp": "2016-08-18T19:08:44+00:00" }, { "id": "7f2868d7ba7149e18b44eb50fb1b654f", "sender": "MarcoFalke", "payload": "ok, I see", "action": false, "timestamp": "2016-08-18T19:08:47+00:00" }, { "id": "7aaa97fbd1cb4a9d9d8282be31ecd926", "sender": "kanzure", "payload": "s/compromised/revoked?", "action": false, "timestamp": "2016-08-18T19:08:55+00:00" }, { "id": "0cb6856079a8488fb7830f6c4cc764b4", "sender": "kanzure", "payload": "+revoked, at least?", "action": false, "timestamp": "2016-08-18T19:09:00+00:00" }, { "id": "ea2b21ee629f431ebbd5885f10201594", "sender": "cfields", "payload": "kanzure: +1. that wasn't clear to me until now :)", "action": false, "timestamp": "2016-08-18T19:09:16+00:00" }, { "id": "a42eeafcfd5d437c9be13bba597638bc", "sender": "jonasschnelli", "payload": "key revoking is possible over our release-management", "action": false, "timestamp": "2016-08-18T19:09:17+00:00" }, { "id": "bb0936cbbd53499b831e58a6101881b6", "sender": "wumpus", "payload": "kanzure: well it be N-out-of-M ,so could tolerate some revoked or compromised keys Iguess..", "action": false, "timestamp": "2016-08-18T19:09:23+00:00" }, { "id": "bd6dc171d19a41e2b8794ac67bbac7d1", "sender": "gmaxwell", "payload": "kanzure: without an uncensorable communications medium or expiration there is no sense for revocation.", "action": false, "timestamp": "2016-08-18T19:09:26+00:00" }, { "id": "1b9cae1991834835a94995436de60326", "sender": "kanzure", "payload": "hm.", "action": false, "timestamp": "2016-08-18T19:09:33+00:00" }, { "id": "eb34cb8c5a6746229b417d844949bec3", "sender": "wumpus", "payload": "then they'd just be removed in the next release", "action": false, "timestamp": "2016-08-18T19:09:41+00:00" }, { "id": "0552cc68120a4fafb1730a7b4af958dc", "sender": "jonasschnelli", "payload": "I just wanted to hear if it's ackable to continue to work on this... if so, I'll come up with something for 0.14.", "action": false, "timestamp": "2016-08-18T19:09:59+00:00" }, { "id": "ffbe262518b047dc9c4784e49ea9a168", "sender": "gmaxwell", "payload": "n of m is close to an uncensorable communicatoins medium subject to an honest threshold assumption.", "action": false, "timestamp": "2016-08-18T19:10:25+00:00" }, { "id": "a83e5dd68a5f43d0bed8838ddf364658", "sender": "luke-jr", "payload": "gmaxwell: well, if you're looking at the list of people/keys who *didn't* sign, it might help to know they revoked their key rater than simply didn't-sign", "action": false, "timestamp": "2016-08-18T19:10:29+00:00" }, { "id": "08c37636a2f947f48a85e9516f5a4b36", "sender": "btcdrak", "payload": "gmaxwell: what if you got a good release, but were later infected with malware which changed the verifier tool?", "action": false, "timestamp": "2016-08-18T19:10:32+00:00" }, { "id": "69562f0fba9941178dae184c5a5f5c57", "sender": "gmaxwell", "payload": "btcdrak: oh well.", "action": false, "timestamp": "2016-08-18T19:10:43+00:00" }, { "id": "ea72dad1dc774f53b7a066d85b54d434", "sender": "wumpus", "payload": "btcdrak: if you are infected, it's end of story really", "action": false, "timestamp": "2016-08-18T19:10:50+00:00" }, { "id": "9cf90d0089124e3c92860ac0df79ca37", "sender": "wumpus", "payload": "btcdrak: it can already steal your coins", "action": false, "timestamp": "2016-08-18T19:10:55+00:00" }, { "id": "193dfeb09fe24782aa320fad3318d83b", "sender": "jonasschnelli", "payload": "indeed", "action": false, "timestamp": "2016-08-18T19:10:55+00:00" }, { "id": "c5a9134b0dd7453f82748aa985c00be2", "sender": "gmaxwell", "payload": "btcdrak: if you're infected with malware you're hosed at that point.", "action": false, "timestamp": "2016-08-18T19:10:55+00:00" }, { "id": "3044b55681484a878a98b01cd2036c7e", "sender": "sipa", "payload": "btcdrak: you are eaten by a frue", "action": false, "timestamp": "2016-08-18T19:10:57+00:00" }, { "id": "4d95f0fa81b74a2e977ba48619a30752", "sender": "sipa", "payload": "*grue", "action": false, "timestamp": "2016-08-18T19:11:00+00:00" }, { "id": "971b4076e8a3406db5613d99c6efd9e1", "sender": "jonasschnelli", "payload": "you can't protect from malware on that layer", "action": false, "timestamp": "2016-08-18T19:11:03+00:00" }, { "id": "15770ef5c3994f628cd96b4ede4f20b5", "sender": "kanzure", "payload": "perhaps the malware would be kind enough to at least inform you of your infection", "action": false, "timestamp": "2016-08-18T19:11:11+00:00" }, { "id": "f6693f2fc9dc479eb2d8a2f4d25008eb", "sender": "wumpus", "payload": "that's another story entirely (hardaware wallets / security modules)", "action": false, "timestamp": "2016-08-18T19:11:20+00:00" }, { "id": "b1da66d097bb4439b63d26be2a70446b", "sender": "jonasschnelli", "payload": "impossible", "action": false, "timestamp": "2016-08-18T19:11:20+00:00" }, { "id": "2a9ff3ec70fc4b479190b69d42ffcc72", "sender": "jonasschnelli", "payload": "At least, the EC binary sig tool would allow hardware wallets to sign the binaries", "action": false, "timestamp": "2016-08-18T19:11:47+00:00" }, { "id": "3b805ad6e2a34200a7fce5867864db26", "sender": "wumpus", "payload": "that's an interesting idea", "action": false, "timestamp": "2016-08-18T19:11:58+00:00" }, { "id": "d9cc3338dd874b7dad974fcfd5bdca51", "sender": "jonasschnelli", "payload": "(though you can do this with GPG smartcard)", "action": false, "timestamp": "2016-08-18T19:12:03+00:00" }, { "id": "846439736e314749964e9e205d069814", "sender": "wumpus", "payload": "there are smartcards running GPG?", "action": false, "timestamp": "2016-08-18T19:12:13+00:00" }, { "id": "626f8e65497742e3bc7d50a0aeaea319", "sender": "jonasschnelli", "payload": "Yes.", "action": false, "timestamp": "2016-08-18T19:12:20+00:00" }, { "id": "83b94b8d4056460498b19be53f91fd95", "sender": "wumpus", "payload": "is there some micro-gpg implementation?", "action": false, "timestamp": "2016-08-18T19:12:22+00:00" }, { "id": "71a4eb8a2330452db01c9d2897792cc9", "sender": "btcdrak", "payload": "yes", "action": false, "timestamp": "2016-08-18T19:12:22+00:00" }, { "id": "7766c4b79ce5455a8bea62dc66206a84", "sender": "jonasschnelli", "payload": "but a big mess", "action": false, "timestamp": "2016-08-18T19:12:34+00:00" }, { "id": "d715cbced6f341ec800a6b7963cb7b40", "sender": "gmaxwell", "payload": "A number of people around here use gpg via yubikey3.", "action": false, "timestamp": "2016-08-18T19:12:39+00:00" }, { "id": "efc428e05f3f42c0a3f8d0d3af9211fb", "sender": "wumpus", "payload": "yeah...", "action": false, "timestamp": "2016-08-18T19:12:39+00:00" }, { "id": "ffbc24c6d14e4dcd95e5c0bdb0f95fea", "sender": "btcdrak", "payload": "petertodd has one with pin entry. sounds like he's at the cash register when sending emails", "action": false, "timestamp": "2016-08-18T19:12:41+00:00" }, { "id": "e901bc28fd6a48028e3f27d36b7c9723", "sender": "gmaxwell", "payload": "wumpus: it's not really gpg on the smartcard, it's a rsa signer on a stick. :)", "action": false, "timestamp": "2016-08-18T19:12:50+00:00" }, { "id": "11a7163f3810482aa54f9d80a1be47cc", "sender": "btcdrak", "payload": "Ledger Nano S could be programmed to do signing. It also has a GPG module coming. It uses an ST31 secure element afaik", "action": false, "timestamp": "2016-08-18T19:13:20+00:00" }, { "id": "bff6f0b33cf842fa9bac19c8c53a3f02", "sender": "wumpus", "payload": "gmaxwell: oh right, just the rsa signing, the ugly thing about gpg is all the packet parsing and interpretation etc", "action": false, "timestamp": "2016-08-18T19:13:34+00:00" }, { "id": "74c193e1b83d4357874bf499009f478f", "sender": "instagibbs", "payload": "btcdrak, I have a pgp key from mine", "action": false, "timestamp": "2016-08-18T19:13:52+00:00" }, { "id": "4bbca1b322d248acac53234590098991", "sender": "instagibbs", "payload": "(just playing around with it)", "action": false, "timestamp": "2016-08-18T19:14:04+00:00" }, { "id": "7e2a9525afff44f78d99dfc8779861b9", "sender": "gmaxwell", "payload": "There is a terrible complex standard for supporting it. In any case, it's a good thing to have.", "action": false, "timestamp": "2016-08-18T19:14:19+00:00" }, { "id": "d733f97e605343019ca0256206cc8d4f", "sender": "wumpus", "payload": "same problem as TLS really, the crypto algorithms themselves are reasonably elegant and bug-free, but all the parsing mess around it...", "action": false, "timestamp": "2016-08-18T19:14:22+00:00" }, { "id": "d133f85bca8f4cbdac04093f5786a7dc", "sender": "kanzure", "payload": "should we move on?", "action": false, "timestamp": "2016-08-18T19:14:47+00:00" }, { "id": "4e6703339aba4f158a0d1518ad2c7f5f", "sender": "wumpus", "payload": "anyhow, I think we agree that we'd want to use secp256k1 signatures", "action": false, "timestamp": "2016-08-18T19:14:49+00:00" }, { "id": "584683a8668a47cca77e8dae6c935bad", "sender": "wumpus", "payload": "if we can agree on one thing", "action": false, "timestamp": "2016-08-18T19:14:55+00:00" }, { "id": "15be5ad6d2f848118c95b76d3ee53277", "sender": "btcdrak", "payload": "Just a separate note, I think everyone here should be using some kind of smartcard/hardware device for GPG signing. There are plenty inexpensive options like Yubikeys and etc.", "action": false, "timestamp": "2016-08-18T19:15:00+00:00" }, { "id": "0c303dbb670941a795b512af84f1ea3b", "sender": "jonasschnelli", "payload": "Okay. I'll work on a short design and post it to bitcoin-core-dev ML", "action": false, "timestamp": "2016-08-18T19:15:14+00:00" }, { "id": "413df44b1b044fae8ff519895d8a423d", "sender": "wumpus", "payload": "btcdrak: I just use old computers, but I agree that's the more practical option :-)", "action": false, "timestamp": "2016-08-18T19:15:29+00:00" }, { "id": "252adf8c9f4e426c80cb724f24a031dc", "sender": "kanzure", "payload": "should we be complaining about hkp to the bitcoin.org people?", "action": false, "timestamp": "2016-08-18T19:15:34+00:00" }, { "id": "722ec68b79714b82ac52a4105f157543", "sender": "gmaxwell", "payload": "jonasschnelli: can you spend some time and talk to mr or sipa before you post?", "action": false, "timestamp": "2016-08-18T19:15:44+00:00" }, { "id": "855edcd9a8ee414480e78ec88fe61d4a", "sender": "jonasschnelli", "payload": "gmaxwell: Yes. Will do... thanks for offering that.", "action": false, "timestamp": "2016-08-18T19:16:03+00:00" }, { "id": "bb55c218a40846ecabf3f942ad5ffe61", "sender": "wumpus", "payload": "kanzure: hkp?", "action": false, "timestamp": "2016-08-18T19:16:35+00:00" }, { "id": "341b78350d1c41d89056d0750a9b9bf4", "sender": "kanzure", "payload": "HPKP", "action": false, "timestamp": "2016-08-18T19:17:19+00:00" }, { "id": "dde3dfe09e82456babb14ce076ba9a57", "sender": "kanzure", "payload": "public key pinning", "action": false, "timestamp": "2016-08-18T19:17:52+00:00" }, { "id": "9ffac0bd7da342d68c97a80f24ce6571", "sender": "btcdrak", "payload": "they also dont enforce HSTS", "action": false, "timestamp": "2016-08-18T19:18:18+00:00" }, { "id": "403df938b7724ffaa12848022b377bd1", "sender": "kanzure", "payload": "does bitcoincore.org?", "action": false, "timestamp": "2016-08-18T19:18:29+00:00" }, { "id": "6d3571b2c3f64e7fbb7ff94062708685", "sender": "btcdrak", "payload": "yes", "action": false, "timestamp": "2016-08-18T19:18:32+00:00" }, { "id": "a186264c37e14ea899cc02a0611f30a7", "sender": "kanzure", "payload": "both?", "action": false, "timestamp": "2016-08-18T19:18:35+00:00" }, { "id": "21a7f8d2aa3942e78d54c8fb78c32a27", "sender": "jonasschnelli", "payload": "Another short topic proposal that is near to the signing: code-signing (OSX/WIN).", "action": false, "timestamp": "2016-08-18T19:18:36+00:00" }, { "id": "5812dc4d132c41a9a189581ed5071120", "sender": "wumpus", "payload": "sure, why not, if anything can be done to improve site security we should encourag that", "action": false, "timestamp": "2016-08-18T19:18:48+00:00" }, { "id": "4e0b69072d994fb29a8017254ba61a26", "sender": "btcdrak", "payload": "no, just HSTS and certificate origin", "action": false, "timestamp": "2016-08-18T19:19:00+00:00" }, { "id": "b7bd16638c0a482d92617b71fb683c1c", "sender": "gmaxwell", "payload": "HPKP is pretty easy to mess up. TBH it's a lot more useful for parties that are their own CA.", "action": false, "timestamp": "2016-08-18T19:19:37+00:00" }, { "id": "9d0d71bea4c948908737b2edcae4db58", "sender": "btcdrak", "payload": "sorry, i mean authenticated origin pulls", "action": false, "timestamp": "2016-08-18T19:20:02+00:00" }, { "id": "7f43f9df67404bcebdaaa50b441285d2", "sender": "btcdrak", "payload": "HSTS is important to prevent https downgrade attacks imo", "action": false, "timestamp": "2016-08-18T19:20:25+00:00" }, { "id": "8d35845060ac4d79a719f8c71778023c", "sender": "kanzure", "payload": "okay well i'm eagerly awaiting for the delivery of the complimentary ips containers", "action": false, "timestamp": "2016-08-18T19:20:27+00:00" }, { "id": "85cf5759722a453491065c67b8e5161f", "sender": "wumpus", "payload": "yes, HSTS is important, and trivial to implement", "action": false, "timestamp": "2016-08-18T19:20:35+00:00" }, { "id": "7991f59ade7f4292ad24f3d5bb77d8f9", "sender": "wumpus", "payload": "never even heard of HPKP before", "action": false, "timestamp": "2016-08-18T19:20:57+00:00" }, { "id": "32ff4231bcbe41a0a5c600a5f0ac3406", "sender": "kanzure", "payload": "jonasschnelli: iirc there was some detail about code signing and windows - something about a buggy state?", "action": false, "timestamp": "2016-08-18T19:21:09+00:00" }, { "id": "f3e6be301dd54dd09f8dd34c13936c59", "sender": "kadoban", "payload": "HPKP is key-pinning. It's to prevent attacks like rogue CAs", "action": false, "timestamp": "2016-08-18T19:21:17+00:00" }, { "id": "a6c99979cf504710955d999f2a5c35c1", "sender": "wumpus", "payload": "#topic code-signing (OSX/WIN)", "action": false, "timestamp": "2016-08-18T19:21:21+00:00" }, { "id": "13ee124340954c7fbbae5e273dd3dcb3", "sender": "jonasschnelli", "payload": "We still sign with \"Bitcoin Foundation\"", "action": false, "timestamp": "2016-08-18T19:21:32+00:00" }, { "id": "28403d8dcc9541cc8ba9a2a76ec2822a", "sender": "btcdrak", "payload": "while we are on the topic of releases and so on, wumpus could you please start posting the hashes with the release announcement too. that will ensure wide distribution of the hashes.", "action": false, "timestamp": "2016-08-18T19:21:32+00:00" }, { "id": "e5e12d36ffcb404db3380a96901688a7", "sender": "jonasschnelli", "payload": "On OSX, its not very visible... on Windows I guess a bit more.", "action": false, "timestamp": "2016-08-18T19:21:42+00:00" }, { "id": "362a84443ec5431089549be4ddcea271", "sender": "wumpus", "payload": "kadoban: then gmaxwell's comment makes sense - sounds like a risky thing to do if you're depenent on someone else's CA", "action": false, "timestamp": "2016-08-18T19:21:51+00:00" }, { "id": "a60e919ed54b4203a9d5c63eb1229d96", "sender": "jonasschnelli", "payload": "Question: we should try to get new certificates for OSX/Win in the name of \"Bitcoin Core\".", "action": false, "timestamp": "2016-08-18T19:22:04+00:00" }, { "id": "d299c44f1be243d5856804ac1b3d0934", "sender": "gmaxwell", "payload": "(I'm not saying that it shouldn't be done for that site, just that it's not a no brainer.)", "action": false, "timestamp": "2016-08-18T19:22:18+00:00" }, { "id": "45c4762aa6ca4ada8500975656f18aad", "sender": "jonasschnelli", "payload": "The question is, if we should. :)", "action": false, "timestamp": "2016-08-18T19:22:20+00:00" }, { "id": "ed81184939214e93b169df4607764038", "sender": "instagibbs", "payload": "jonasschnelli, that's a statement :P", "action": false, "timestamp": "2016-08-18T19:22:23+00:00" }, { "id": "49dea33f48a648cdb1097c1e74ea2877", "sender": "btcdrak", "payload": "jonaschnelli: that would be great. do you have a company that can do it?", "action": false, "timestamp": "2016-08-18T19:22:27+00:00" }, { "id": "e548bf96a41b42ed9f87b2434bb6411f", "sender": "kadoban", "payload": "wumpus: It's a little risky. You can pin any piece of the chain, like you can pin *your* private key(s). But then if you do it and screw it up ... you're *really* screwed.", "action": false, "timestamp": "2016-08-18T19:22:29+00:00" }, { "id": "454d59ff181c4a7f9d9cfe097191b97f", "sender": "kanzure", "payload": "re: posting hashes, i also suggest we consider posting hashes and maybe sigs on bitcoincore.org -- we can also ask bitcoin.org to do the same if they feel up to that", "action": false, "timestamp": "2016-08-18T19:22:33+00:00" }, { "id": "3c68c0ddb6154607b545fa83a7038b9c", "sender": "wumpus", "payload": "btcdrak: sure, I could paste sha256sums.asc into the announcement email", "action": false, "timestamp": "2016-08-18T19:22:34+00:00" }, { "id": "bf9c6625d5c249e6aa7da3a998f02655", "sender": "luke-jr", "payload": "jonasschnelli: cfields was looking into this, but I am not sure his status", "action": false, "timestamp": "2016-08-18T19:22:39+00:00" }, { "id": "4689f809f704484c86299248e8bac652", "sender": "kadoban", "payload": "Like, your website is unusable for 6 months screwed.", "action": false, "timestamp": "2016-08-18T19:22:47+00:00" }, { "id": "9fcf104a095146bcbb32f07853bd0fe9", "sender": "btcdrak", "payload": "wumpus: thank you.", "action": false, "timestamp": "2016-08-18T19:22:47+00:00" }, { "id": "2f3c94c4e25944549c38e4448ceddab8", "sender": "wumpus", "payload": "kadoban: right - what if you want to switch CAs for some reason", "action": false, "timestamp": "2016-08-18T19:22:57+00:00" }, { "id": "f0e8e7b2249743bb994ba6e08d38d926", "sender": "wumpus", "payload": "#action sha256sums in release email", "action": false, "timestamp": "2016-08-18T19:23:16+00:00" }, { "id": "373219e609d94824aa8902e3a650fb19", "sender": "jonasschnelli", "payload": "btcdrak: I have serval code signing certificates.. but we don't want to use these company names...", "action": false, "timestamp": "2016-08-18T19:23:19+00:00" }, { "id": "a0e3f5f9187b40f58e81880b345adcc4", "sender": "gmaxwell", "payload": "kanzure: I think thats not going in a useful direction. Posting hashes and stuff is fine, if people want to do it-- but its mostly security theater because virutally no one will check, and you can tell they don't check.", "action": false, "timestamp": "2016-08-18T19:23:24+00:00" }, { "id": "a46ec8bcaeef4ad29e4d5ba530461ef2", "sender": "kadoban", "payload": "wumpus: You can, if you do it right. You can reuse the same private keys with a different CA (and you can set multiple possible pins, so you can have backups)", "action": false, "timestamp": "2016-08-18T19:23:28+00:00" }, { "id": "3e633c7a0e524b33802661c9e8c8254a", "sender": "cfields", "payload": "luke-jr: didn't get anywhere with it. My best suggestion was to see if MIT would be interested in helping with a cert", "action": false, "timestamp": "2016-08-18T19:23:35+00:00" }, { "id": "35702ec08c3f4e93b2c65fd034ef9dfb", "sender": "wumpus", "payload": "(do note that release emails are signed with *my* key, not the release signing key)", "action": false, "timestamp": "2016-08-18T19:23:36+00:00" }, { "id": "d954e87cccad417281187da84aea41c6", "sender": "sipa", "payload": "sorry i fell asleep", "action": false, "timestamp": "2016-08-18T19:23:59+00:00" }, { "id": "8a6c40e8074348959bf314f7e842bf65", "sender": "gmaxwell", "payload": "Thats a sign to move on. :)", "action": false, "timestamp": "2016-08-18T19:24:47+00:00" }, { "id": "445ea46f324a435a884c93e67d165c22", "sender": "btcdrak", "payload": "wumpus: We should also publish the hashes on bitcoincore.org with the release announcements there. Tempted to suggest we aim at mirroring downloads somewhere as well, like the github repo which supports release binaries and maybe bitcoincore.org", "action": false, "timestamp": "2016-08-18T19:24:51+00:00" }, { "id": "cb05f9cde0664043b13cdaa6ab6f47a8", "sender": "instagibbs", "payload": "brainstorming can continue later imo", "action": false, "timestamp": "2016-08-18T19:25:06+00:00" }, { "id": "3923d18bc9214902b73570a0dcaa6ee4", "sender": "kanzure", "payload": "wasn't github sunsetting hosted release binaries?", "action": false, "timestamp": "2016-08-18T19:25:08+00:00" }, { "id": "a11955b76a2a4dcdb980b191c8b795fd", "sender": "luke-jr", "payload": "is there some organization name that people would be comfortable having sign both Core and Knots releases? would be nice to consolidate in that regard", "action": false, "timestamp": "2016-08-18T19:25:16+00:00" }, { "id": "b97c9a5f0be04ef381aaee671251719f", "sender": "wumpus", "payload": "btcdrak: we already provide torrents for people that don't want to download from bitcoin.org - it solves nothing of the verification problems ofc", "action": false, "timestamp": "2016-08-18T19:25:20+00:00" }, { "id": "8807b3042fbd4773bb7d1dc4302c8002", "sender": "luke-jr", "payload": "kanzure: I think they re-introduced them", "action": false, "timestamp": "2016-08-18T19:25:29+00:00" }, { "id": "338b37300a344f75b085a5360186d4c3", "sender": "kanzure", "payload": "yes it makes sense to not use \"Bitcoin Foundation\" -- perhaps chaincode would be a good org to blame instead? :D (kidding- let's be nice)", "action": false, "timestamp": "2016-08-18T19:25:42+00:00" }, { "id": "0e8c0dd06f3f4de0b2b55a49c6dce7a3", "sender": "wumpus", "payload": "yes, github has the option to host release binaries", "action": false, "timestamp": "2016-08-18T19:25:48+00:00" }, { "id": "8af9173f28d249b387aca2e414648548", "sender": "kanzure", "payload": "luke-jr: got it", "action": false, "timestamp": "2016-08-18T19:25:53+00:00" }, { "id": "e4d19a0c80a54c9aafafac616992e5ea", "sender": "wumpus", "payload": "but having the binaries in more places means more places to check wether they are compromised too", "action": false, "timestamp": "2016-08-18T19:26:04+00:00" }, { "id": "c8b25e9a9d9c4e3e99984d6849ee3249", "sender": "anchow101", "payload": "Why not host binaries on GitHub and move completely off of bitcoin.orgs system", "action": false, "timestamp": "2016-08-18T19:26:05+00:00" }, { "id": "31b1aee430754e55bd40a00dea645ecc", "sender": "btcdrak", "payload": "wumpus: we should do it there as a mirror at least.", "action": false, "timestamp": "2016-08-18T19:26:16+00:00" }, { "id": "bc6eacaa45dd433e9bbdda92feaaded2", "sender": "wumpus", "payload": "also it gives another reason to want to compromise our github", "action": false, "timestamp": "2016-08-18T19:26:25+00:00" }, { "id": "297341002c04428fad87a74ab9207d0b", "sender": "jonasschnelli", "payload": "is not sure if we should place the binaries on the same host at the source code", "action": true, "timestamp": "2016-08-18T19:26:59+00:00" }, { "id": "1d0ae3459c6d47718896fe6351efeca3", "sender": "wumpus", "payload": "I'm not comfortable with everyting in one place", "action": false, "timestamp": "2016-08-18T19:27:00+00:00" }, { "id": "ca0993cfaf9d4596935a7a1a27ad19f2", "sender": "sipa", "payload": "let's use sourceforge *ducks*", "action": false, "timestamp": "2016-08-18T19:27:15+00:00" }, { "id": "45f0bb091a0148a1a6452776525f3543", "sender": "wumpus", "payload": "yea, exactly, feels like putting a lot of eggs inone basket", "action": false, "timestamp": "2016-08-18T19:27:16+00:00" }, { "id": "10fb67e574554d098e3f1789b2d70e0e", "sender": "wumpus", "payload": "hah", "action": false, "timestamp": "2016-08-18T19:27:20+00:00" }, { "id": "1c8ccbab950644b8a651f6c90955a758", "sender": "jonasschnelli", "payload": "stabs sipa", "action": true, "timestamp": "2016-08-18T19:27:23+00:00" }, { "id": "7d1347c44a5b49678fd8b94235e6c8cc", "sender": "warren", "payload": "The more mirrors, the better. Although the value of mirroring for diversity is wiped out by automated rsync which is how most people demand to keep mirrors updated.", "action": false, "timestamp": "2016-08-18T19:27:27+00:00" }, { "id": "a406e21be3c146b2a9b4f370a5959089", "sender": "gmaxwell", "payload": "you don't think github isn't fully compromised already, come one? :)", "action": false, "timestamp": "2016-08-18T19:27:29+00:00" }, { "id": "95e4b98f08b6492cb122faf0c79a3d83", "sender": "gmaxwell", "payload": "er come on", "action": false, "timestamp": "2016-08-18T19:27:34+00:00" }, { "id": "115aa1e6a93e41ddb8e8a056e249a4b6", "sender": "btcdrak", "payload": "regarding bitcoincore.org I have a promising offer of sponsorship for around 5 years of hosting/infrastructure from Pindar, so we could setup a download server for example.", "action": false, "timestamp": "2016-08-18T19:27:46+00:00" }, { "id": "8d863fe754c8426daa64c9268f45f3b7", "sender": "wumpus", "payload": "well at least sudden code changes are fairly detectable", "action": false, "timestamp": "2016-08-18T19:27:54+00:00" }, { "id": "1f91859be3354473a8cedc6a80c0e769", "sender": "wumpus", "payload": "(and we sign all top-level commits)", "action": false, "timestamp": "2016-08-18T19:28:07+00:00" }, { "id": "693ef83c18334173b6f3c1ff98b3b304", "sender": "gmaxwell", "payload": "please can we move on?", "action": false, "timestamp": "2016-08-18T19:28:16+00:00" }, { "id": "21f854c583d54304a848725985b1ffcd", "sender": "anchow101", "payload": "What about Amazon s3 for binary hosting?", "action": false, "timestamp": "2016-08-18T19:28:18+00:00" }, { "id": "4b2f288db49d4e2c98ece04a198b4a4f", "sender": "wumpus", "payload": "so there is very little gain in compromising our github right now", "action": false, "timestamp": "2016-08-18T19:28:18+00:00" }, { "id": "fd920772cf3841cbb0830c49ec31703f", "sender": "btcdrak", "payload": "The issue is less about being compromised and more about early warning.", "action": false, "timestamp": "2016-08-18T19:28:19+00:00" }, { "id": "c40dfcb28e71439ba6cf5c80c4cd6b01", "sender": "wumpus", "payload": "any other topics?", "action": false, "timestamp": "2016-08-18T19:28:30+00:00" }, { "id": "93119ffa12004ef88e9d09c930185b39", "sender": "instagibbs", "payload": "0.13.0 final?", "action": false, "timestamp": "2016-08-18T19:28:41+00:00" }, { "id": "c779e611b185410e9356f1a13cb7b5dd", "sender": "sipa", "payload": "0.13.0?", "action": false, "timestamp": "2016-08-18T19:28:42+00:00" }, { "id": "39b1709229514454a1d2c4e29242288c", "sender": "btcdrak", "payload": "having multiple places makes it more likely a compromise would be spotted earlier", "action": false, "timestamp": "2016-08-18T19:28:45+00:00" }, { "id": "0c68220bd6374ad4aed89cd5805ffcc5", "sender": "wumpus", "payload": "btcdrak: I disagree; it doesn't solve the problem of peopel not verifying at all", "action": false, "timestamp": "2016-08-18T19:29:02+00:00" }, { "id": "f8ea0b2beed047b4a95a6fc63b0ad551", "sender": "wumpus", "payload": "#topic 0.13.0", "action": false, "timestamp": "2016-08-18T19:29:07+00:00" }, { "id": "60a11a99f18f4df1abd8134cdf86cfe7", "sender": "kanzure", "payload": "does anyone have details about the large quantity of revoked 'malicious' (fake) gpg short id matching keys from the other day? i saw this somewhere but didn't keep a reference.", "action": false, "timestamp": "2016-08-18T19:29:12+00:00" }, { "id": "a52d62f8a9a54b7ebbb78e1a432eb35c", "sender": "instagibbs", "payload": "kanzure, greg told me it was some academic paper's work", "action": false, "timestamp": "2016-08-18T19:29:31+00:00" }, { "id": "9f0d24aab2064aadb5d0d255d79d5202", "sender": "wumpus", "payload": "I have only one thing to say on this topic: there have been no critical reported issues with rc3, in principle it could be tagged final at any time", "action": false, "timestamp": "2016-08-18T19:29:32+00:00" }, { "id": "f16fc4da773e4ddf9a65395c37cabb28", "sender": "MarcoFalke", "payload": "I think the last doc change was merged. We can start gitian after the meeting?", "action": false, "timestamp": "2016-08-18T19:29:35+00:00" }, { "id": "afdbb37483824d8b948fc40e0ad0abc5", "sender": "kanzure", "payload": "instagibbs: well i didn't hear it from greg. i did hear somewhere that it was a 'researcher'. but i have no idea where i saw this.", "action": false, "timestamp": "2016-08-18T19:29:50+00:00" }, { "id": "5276414453db47a2b853be04cc0811be", "sender": "MarcoFalke", "payload": "Or did anyone hear of critical problems?", "action": false, "timestamp": "2016-08-18T19:29:54+00:00" }, { "id": "1bb50aa22bf0430ab5a0092759b1cba5", "sender": "btcdrak", "payload": "MarcoFalke: it's all good from what I can see.", "action": false, "timestamp": "2016-08-18T19:30:09+00:00" }, { "id": "9b1e92789adc4a51b7da557e773eabcd", "sender": "gmaxwell", "payload": "kanzure: I'll provide citations after the meeting.", "action": false, "timestamp": "2016-08-18T19:30:17+00:00" }, { "id": "63c52879bebc468cbfaf9a6a8ee10fd9", "sender": "instagibbs", "payload": "there was one report of stalled segwit ibd on testnet", "action": false, "timestamp": "2016-08-18T19:30:18+00:00" }, { "id": "15d6e165f4524377a4970db832c07755", "sender": "sipa", "payload": "kanzure: https://twitter.com/bcrypt/status/765615853488316416", "action": false, "timestamp": "2016-08-18T19:30:20+00:00" }, { "id": "ebcfa65eee6647e099c0a5b79ffcb034", "sender": "wumpus", "payload": "however the announcement of cobra this morning felt like someone dropped a bomb on the release process, and 'infected' 0.13.0 in people's minds before it is even released, so I feel really grumpy about this topic right now", "action": false, "timestamp": "2016-08-18T19:30:29+00:00" }, { "id": "73bfbfca059b47c98f4af8c0d110d087", "sender": "instagibbs", "payload": "but not sure if that's one-off or what", "action": false, "timestamp": "2016-08-18T19:30:30+00:00" }, { "id": "0e41659f2b4543899cb44e4715cdd45a", "sender": "gmaxwell", "payload": "instagibbs: I've been trying to reproduce marco's stalls with testnet. synced and caught up a few hosts.. so far nothing.", "action": false, "timestamp": "2016-08-18T19:30:42+00:00" }, { "id": "2712d3d03aa7422a862d9446b679bf6e", "sender": "jonasschnelli", "payload": "wumpus: agree, that was a imprudent move..", "action": false, "timestamp": "2016-08-18T19:31:07+00:00" }, { "id": "29bf4d829cd24d8db7ee2c3dbaed6243", "sender": "sipa", "payload": "gmaxwell: do you have multiple header chains extending your active branch?", "action": false, "timestamp": "2016-08-18T19:31:07+00:00" }, { "id": "6c6b359251994897b230195a0961528f", "sender": "btcdrak", "payload": "wumpus: maybe tag on Friday evening, let the gitian builders process over the weekend and we can release on Monday/tues/", "action": false, "timestamp": "2016-08-18T19:31:08+00:00" }, { "id": "2e422799a2d84e7785b34c4f1bf5700a", "sender": "MarcoFalke", "payload": "I can upload my 8.5 gig datadir *ducks*", "action": false, "timestamp": "2016-08-18T19:31:16+00:00" }, { "id": "eb9d62ee62dd4475aa54e6ea158830a8", "sender": "cfields", "payload": "wumpus: tag it as 0.13.0.1 :)", "action": false, "timestamp": "2016-08-18T19:31:33+00:00" }, { "id": "5c83b774d715405695a3e49c62fe9fe2", "sender": "gmaxwell", "payload": "sipa: no I've just tried varrious things. I thought we already fixed the big with multiple header chains?", "action": false, "timestamp": "2016-08-18T19:31:34+00:00" }, { "id": "5d59b1f5f86a4cd6a120763b113263fa", "sender": "wumpus", "payload": "cfields: lol :)", "action": false, "timestamp": "2016-08-18T19:31:39+00:00" }, { "id": "7bb21c7ed76e491c8da9adce494619d5", "sender": "sipa", "payload": "gmaxwell: i thought so too", "action": false, "timestamp": "2016-08-18T19:31:49+00:00" }, { "id": "04d56dfa51ba47adb09e81c1bbfe5e4c", "sender": "btcdrak", "payload": "cfields: lol", "action": false, "timestamp": "2016-08-18T19:31:51+00:00" }, { "id": "a3b6b8d558014c1ead5c3f00e21d55c3", "sender": "instagibbs", "payload": "gmaxwell, me neither *shrug*", "action": false, "timestamp": "2016-08-18T19:32:05+00:00" }, { "id": "0fef66c992374b668c4d531889ed251b", "sender": "MarcoFalke", "payload": "Able to reproduce consistently here, but this is something for 13.1", "action": false, "timestamp": "2016-08-18T19:32:05+00:00" }, { "id": "d9a7bb4abb2e42b8ab798acee034ed58", "sender": "sipa", "payload": "gmaxwell: but that was something i noticed in MarcoFalke's roc output", "action": false, "timestamp": "2016-08-18T19:32:06+00:00" }, { "id": "52e5d80f72f349d19d6bcbeb5ee23b33", "sender": "sipa", "payload": "rpc", "action": false, "timestamp": "2016-08-18T19:32:16+00:00" }, { "id": "93c148832e624d5b8c25441653bb35f9", "sender": "gmaxwell", "payload": "MarcoFalke: if you have a sync failure that is reproducably consistently it may be a release blocker.", "action": false, "timestamp": "2016-08-18T19:32:38+00:00" }, { "id": "86275ffeaac74ad3929a3bda29693785", "sender": "btcdrak", "payload": "you mean 0.13.1", "action": false, "timestamp": "2016-08-18T19:32:40+00:00" }, { "id": "fb5c6f7edfc24b57a761b16aa7adfdfe", "sender": "kanzure", "payload": "wumpus: yeah, there should be a peer review process for posts to bitcoincore.org -- and bitcoin.org would be wise to adopt a similar practice.", "action": false, "timestamp": "2016-08-18T19:32:43+00:00" }, { "id": "aaceec81a17a4b03b7d38a342afd352e", "sender": "gmaxwell", "payload": "Please can we stop with the prior topic?", "action": false, "timestamp": "2016-08-18T19:33:01+00:00" }, { "id": "4c2c78fc2d2c447e81d100630aca14e3", "sender": "kanzure", "payload": "okay.", "action": false, "timestamp": "2016-08-18T19:33:05+00:00" }, { "id": "7febece00c5b477497fe10b596d1f16c", "sender": "btcdrak", "payload": "last calls for review of the 0.13.0 blog post https://github.com/bitcoin-core/bitcoincore.org/pull/199", "action": false, "timestamp": "2016-08-18T19:33:18+00:00" }, { "id": "c18d85a6f8a348b693b1fb5946dd47a6", "sender": "btcdrak", "payload": "has been asking for two weeks....", "action": true, "timestamp": "2016-08-18T19:33:32+00:00" }, { "id": "cf6ecbb9c9044fa6837a38915eec125f", "sender": "sipa", "payload": "btcdrak: i reviewed!", "action": false, "timestamp": "2016-08-18T19:33:43+00:00" }, { "id": "14442134017f4891acd2b1c6b8dd483f", "sender": "wumpus", "payload": "yes we're slipping incredibly, for no really good reason, I know", "action": false, "timestamp": "2016-08-18T19:33:45+00:00" }, { "id": "5567543742f44e958d85520859a9d244", "sender": "wumpus", "payload": "I feel bad about it too", "action": false, "timestamp": "2016-08-18T19:33:48+00:00" }, { "id": "28a87fd700984885bebde61805d37c28", "sender": "btcdrak", "payload": "gives sipa a gold star!", "action": true, "timestamp": "2016-08-18T19:34:00+00:00" }, { "id": "fd892ad4d3d941409e50f26261e5c0ab", "sender": "wumpus", "payload": "oh you mean the blog post, I'll take a look at it", "action": false, "timestamp": "2016-08-18T19:34:10+00:00" }, { "id": "bf5917e525e84bd1baa1d97653eef6b1", "sender": "gmaxwell", "payload": "btcdrak: sorry, I missed that completely, will look.", "action": false, "timestamp": "2016-08-18T19:34:23+00:00" }, { "id": "149d54648f494264bb3cebdb7e022a41", "sender": "wumpus", "payload": "#action review https://github.com/bitcoin-core/bitcoincore.org/pull/199", "action": false, "timestamp": "2016-08-18T19:34:25+00:00" }, { "id": "d1457bc82a8b4b6ba451890cecda173a", "sender": "instagibbs", "payload": "I'll review today", "action": false, "timestamp": "2016-08-18T19:34:26+00:00" }, { "id": "2dcfcf58b2fa46be8d826734f39abc0a", "sender": "btcdrak", "payload": "wumpus: so tag friday evening, and release ~monday?", "action": false, "timestamp": "2016-08-18T19:35:01+00:00" }, { "id": "364e8a0ff722435ebccfcbd7e1ee7e80", "sender": "sipa", "payload": "sounds fine be me", "action": false, "timestamp": "2016-08-18T19:35:11+00:00" }, { "id": "9354d3b3e11c424f9b45963b920ff65e", "sender": "wumpus", "payload": "any rationale for friday evening, and not, right now?", "action": false, "timestamp": "2016-08-18T19:35:14+00:00" }, { "id": "c6409fed809047e1a57b15523229c264", "sender": "sipa", "payload": "also fine by me", "action": false, "timestamp": "2016-08-18T19:35:21+00:00" }, { "id": "6aa5c9a0fc61479baa5b9b7a8f31f74d", "sender": "sdaftuar", "payload": "sipa: is marco's issue that the stalling detection doesn't make sense if there are some outbound NODE_NETWORK peers you don't download blocks from?", "action": false, "timestamp": "2016-08-18T19:35:25+00:00" }, { "id": "417cda7cfdba416385304744a1fc29e7", "sender": "gmaxwell", "payload": "I am concerned that we have a reproducable candidate release blocker.", "action": false, "timestamp": "2016-08-18T19:35:31+00:00" }, { "id": "7ad2cf2f83e84461b42ded0c090b78bf", "sender": "gmaxwell", "payload": "we should become confident that it's segwit only.", "action": false, "timestamp": "2016-08-18T19:35:55+00:00" }, { "id": "29af648ec90e4bb39c24576b2a7d455f", "sender": "wumpus", "payload": "bah", "action": false, "timestamp": "2016-08-18T19:36:02+00:00" }, { "id": "37143a894d3b471e9529fb37e0e4ef9c", "sender": "btcdrak", "payload": "wumpus: to give time for the cobra announcement to fade", "action": false, "timestamp": "2016-08-18T19:36:08+00:00" }, { "id": "172576e9fd2d4db88e3165d18ead0fcd", "sender": "gmaxwell", "payload": "perhaps by having marco backup his state, and then disable segwit.", "action": false, "timestamp": "2016-08-18T19:36:11+00:00" }, { "id": "74299c869c7d4b77834080cb99802fbb", "sender": "wumpus", "payload": "I'm about to give up on 0.13 completely :p", "action": false, "timestamp": "2016-08-18T19:36:16+00:00" }, { "id": "111c76bc792346fe84d2c4a9767f9c98", "sender": "wumpus", "payload": "and focus on 0.14 from now on", "action": false, "timestamp": "2016-08-18T19:36:25+00:00" }, { "id": "355d037fdf8f41cea76d18047ada7ab1", "sender": "sipa", "payload": "wumpus: what, and release 0", "action": false, "timestamp": "2016-08-18T19:36:26+00:00" }, { "id": "45b0267c2b3744488d9737e0c10ca32d", "sender": "btcdrak", "payload": "13 is unlucky number!", "action": false, "timestamp": "2016-08-18T19:36:28+00:00" }, { "id": "64199f9498494680be054c7248e6bade", "sender": "sipa", "payload": "qe.1 instead?", "action": false, "timestamp": "2016-08-18T19:36:31+00:00" }, { "id": "9010b1a949bc4862905a7122074be879", "sender": "wumpus", "payload": "btcdrak: yes. exactly.", "action": false, "timestamp": "2016-08-18T19:36:34+00:00" }, { "id": "b721f5490cdb4415ada31ce89ebbcb1f", "sender": "kanzure", "payload": "one rationale for not right now is to give time for review on bitcoincore.org pull 199", "action": false, "timestamp": "2016-08-18T19:36:38+00:00" }, { "id": "ffecba96188b440ea2d3b6889ccae4f9", "sender": "btcdrak", "payload": "^", "action": false, "timestamp": "2016-08-18T19:36:46+00:00" }, { "id": "5b148b66bd0c49e092dc462681766c89", "sender": "kanzure", "payload": "so maybe like... whatever average review time is. heh.", "action": false, "timestamp": "2016-08-18T19:36:47+00:00" }, { "id": "d11c0f008f9049a8aa5eb12a03947da6", "sender": "wumpus", "payload": "gitian building takes time too", "action": false, "timestamp": "2016-08-18T19:36:59+00:00" }, { "id": "77952db7e6e64000b190623664ad22ba", "sender": "gmaxwell", "payload": "If the issue is segwit only-- and only rarely triggered, then I'm fine with it being 0.13.1, but I don't know if we know that.", "action": false, "timestamp": "2016-08-18T19:37:03+00:00" }, { "id": "0c058a96dd4043ab9d9748ea2513b6c7", "sender": "instagibbs", "payload": "wumpus, skip 0.12.1, go straight to 1.0, come on", "action": false, "timestamp": "2016-08-18T19:37:10+00:00" }, { "id": "2891b064e61542a59f20084bf5d38d04", "sender": "wumpus", "payload": "we can delay the uploading until your blog post is finished, sure", "action": false, "timestamp": "2016-08-18T19:37:12+00:00" }, { "id": "ceeee88d2f8246939a4d8f989dd7ae97", "sender": "wumpus", "payload": "instagibbs: skipping numbers doesn't work if we don't feel confident about the code, though", "action": false, "timestamp": "2016-08-18T19:37:36+00:00" }, { "id": "83178b876f6e415dafb9751600c49353", "sender": "gmaxwell", "payload": "I don't think there is a reason to hold off from what wumpus was suggesting, but we do need to make a determination on marco's sync bug.", "action": false, "timestamp": "2016-08-18T19:37:38+00:00" }, { "id": "180c0f74f70c4f0e884a0cc9d6b04f20", "sender": "sipa", "payload": "gmaxwell: ok, i will prioritize reviewing marco's situation", "action": false, "timestamp": "2016-08-18T19:37:49+00:00" }, { "id": "2cb583319c084f27915de5959b793f99", "sender": "wumpus", "payload": "no one else reported it though", "action": false, "timestamp": "2016-08-18T19:38:09+00:00" }, { "id": "9ff606d803f84132af959f59aeb8ce76", "sender": "wumpus", "payload": "I've done tons of syncs with this code", "action": false, "timestamp": "2016-08-18T19:38:21+00:00" }, { "id": "f318729285bb4231924bc98180b10f7d", "sender": "gmaxwell", "payload": "I reported a similar one in the past, but we thought we fixed it.", "action": false, "timestamp": "2016-08-18T19:38:23+00:00" }, { "id": "146867d7746645f98b321ee033599abe", "sender": "kanzure", "payload": "is it reproducible?", "action": false, "timestamp": "2016-08-18T19:38:32+00:00" }, { "id": "573d569bb7b74cbcbfd39285cc38e007", "sender": "MarcoFalke", "payload": "locally", "action": false, "timestamp": "2016-08-18T19:38:36+00:00" }, { "id": "25c62f229f4743358a8942fc077af8fd", "sender": "gmaxwell", "payload": "and at the time that was hit by a number of people. some of those reports might have been people actually hitting what marco is hitting now.", "action": false, "timestamp": "2016-08-18T19:38:57+00:00" }, { "id": "fc621c9653594371ac0ee6eb50fbc707", "sender": "wumpus", "payload": "but ok,anyhow, I guess we'll talk about this topic again next week", "action": false, "timestamp": "2016-08-18T19:39:00+00:00" }, { "id": "7698de6c942a413d8cba960f31b21cf6", "sender": "gmaxwell", "payload": "pft.", "action": false, "timestamp": "2016-08-18T19:39:12+00:00" }, { "id": "7bb3dbc0ef534a27a1fe89d6414f50eb", "sender": "wumpus", "payload": "I've given uptrying to push for a release soon", "action": false, "timestamp": "2016-08-18T19:39:13+00:00" }, { "id": "ad9b9e30758748d1a8e25a1b38f5ab0b", "sender": "warren", "payload": "MarcoFalke: are you able to reproduce it on other platforms? what kind of build are you using (gitian vs local on fedora?)", "action": false, "timestamp": "2016-08-18T19:39:18+00:00" }, { "id": "7c36ad8e4bda489a9b451f21c79e69ae", "sender": "sipa", "payload": "i hope 0.13.0 is released next week", "action": false, "timestamp": "2016-08-18T19:39:22+00:00" }, { "id": "5671114339c64392b9903808a2edfcca", "sender": "sipa", "payload": "wumpus: ok, i'll push", "action": false, "timestamp": "2016-08-18T19:39:32+00:00" }, { "id": "b0ec438f959b4794814e983ffbb54d58", "sender": "MarcoFalke", "payload": "local on fedora", "action": false, "timestamp": "2016-08-18T19:39:34+00:00" }, { "id": "5ebe5132f8f84ca59eda58170e694f71", "sender": "gmaxwell", "payload": "wumpus: don't be fatalistic, in the next day or so we'll determine if marco's issue is segwit only. If it is, then continue as you suggested.", "action": false, "timestamp": "2016-08-18T19:39:41+00:00" }, { "id": "c56bfed3c89e4a42b2cfcd5379dbc9ab", "sender": "jonasschnelli", "payload": "Do we delay then the final 0.13.0 only because of cobras post?", "action": false, "timestamp": "2016-08-18T19:39:42+00:00" }, { "id": "93f832f39a6344e3878629ffc77f4025", "sender": "MarcoFalke", "payload": "Can we do this trouble shooting after the meeting?", "action": false, "timestamp": "2016-08-18T19:39:43+00:00" }, { "id": "311900a158d743c9b4eedd14aa5aa404", "sender": "wumpus", "payload": "sipa: thanks. I'm done being the person chasing people peonting at his watch for one", "action": false, "timestamp": "2016-08-18T19:39:55+00:00" }, { "id": "557b425073ad4a29bcae6daa02a008d7", "sender": "sipa", "payload": "wumpus: ok", "action": false, "timestamp": "2016-08-18T19:40:09+00:00" }, { "id": "4892840588524967b3652ef063f6983a", "sender": "MarcoFalke", "payload": "gmaxwell: I never saw it on main", "action": false, "timestamp": "2016-08-18T19:40:17+00:00" }, { "id": "c0897a97447542a2958a4ad3c34e8c4a", "sender": "wumpus", "payload": "so should this delay setting up the release schedule for 0.14?", "action": false, "timestamp": "2016-08-18T19:40:27+00:00" }, { "id": "1f6ccd9885b54027a68bd164c7f0669b", "sender": "wumpus", "payload": "that's kind of in limbo now, too", "action": false, "timestamp": "2016-08-18T19:40:53+00:00" }, { "id": "156c0a3bd6e440d9aa06433bba2707fd", "sender": "MarcoFalke", "payload": "imo no. 0.14 can be less features. less rcs", "action": false, "timestamp": "2016-08-18T19:40:55+00:00" }, { "id": "25a936f6c9ae4f36b11b57e280f3a4ce", "sender": "gmaxwell", "payload": "MarcoFalke: yes, but in three tries so far on rc3 I have not been able to reproduce your condition. So just because you didn't hit it on mainnet doesn't mean it isn't an issue there.", "action": false, "timestamp": "2016-08-18T19:41:02+00:00" }, { "id": "d5da5094dc36448292999ec5584b9db2", "sender": "gmaxwell", "payload": "Keep in mind the behavior you're seeing would potentially cause a consensus divergence if it happened to miners. It is a high criticality issue unless we know conditions that reduce its risk.", "action": false, "timestamp": "2016-08-18T19:41:38+00:00" }, { "id": "5526c485b65e4d90a0e25fdfd36dbc28", "sender": "MarcoFalke", "payload": "wumpus: There is some value in doing releases regular (c.f. firefox)", "action": false, "timestamp": "2016-08-18T19:41:54+00:00" }, { "id": "972b249acb3a4182b0702dac41346c7b", "sender": "anchow101", "payload": "Can someone link me to the issue?", "action": false, "timestamp": "2016-08-18T19:42:03+00:00" }, { "id": "f7c114c9da1848518948ad8eb7d56e9d", "sender": "wumpus", "payload": "we have toruble doing the releases in the currently planne dschedule", "action": false, "timestamp": "2016-08-18T19:42:11+00:00" }, { "id": "73475134c46448bfbd7c4860296f801a", "sender": "wumpus", "payload": "I don't even want to think about more regular releases", "action": false, "timestamp": "2016-08-18T19:42:18+00:00" }, { "id": "ab0b5a75d90a4e8ca642a0d675a499b0", "sender": "jonasschnelli", "payload": "https://github.com/bitcoin/bitcoin/issues/8518", "action": false, "timestamp": "2016-08-18T19:42:20+00:00" }, { "id": "99c73d73d5514820b453b4b514b69913", "sender": "sipa", "payload": "wumpus: i disagree, your pushing to stick to a schedule was very valuable", "action": false, "timestamp": "2016-08-18T19:42:39+00:00" }, { "id": "fc20a109290a4c4d925a5e2e22b773ea", "sender": "wumpus", "payload": "firefox has a completely different situation", "action": false, "timestamp": "2016-08-18T19:42:49+00:00" }, { "id": "a22a30812b8e498888d00c4cb527094d", "sender": "gmaxwell", "payload": "My impression is that we haven't really suffered any delay for 0.13 related to the general size. The rcs have not been horribly buggy or anything.", "action": false, "timestamp": "2016-08-18T19:42:56+00:00" }, { "id": "198370cf46ba46cfbbcb4a35b6a5a933", "sender": "sipa", "payload": "wumpus: i understand if you're worn out about it, but that does not make it a bad idea", "action": false, "timestamp": "2016-08-18T19:43:11+00:00" }, { "id": "00d5d723cc54463eb8c353bcad4e0644", "sender": "sipa", "payload": "we are still very close to on schedule for 0.13", "action": false, "timestamp": "2016-08-18T19:43:12+00:00" }, { "id": "ba752c60379743fbbaca70fb9035605a", "sender": "jonasschnelli", "payload": "Yes. Thanks to wumpus'es RC buffer", "action": false, "timestamp": "2016-08-18T19:43:27+00:00" }, { "id": "f7a0fb07bb54478e8b51af1e0aa77da2", "sender": "wumpus", "payload": "sipa: sure! I'm still okay with the current release schedule (try to do a release every 6 months), but not in releases more often", "action": false, "timestamp": "2016-08-18T19:43:47+00:00" }, { "id": "dead0488bb8c4a10ae300d067b268d9e", "sender": "sipa", "payload": "so i would vote we schedule 0.14 as soon as 0.13.0 is out", "action": false, "timestamp": "2016-08-18T19:43:52+00:00" }, { "id": "3c26597a3dfc43ffbb48fe40aaba507a", "sender": "jonasschnelli", "payload": "I'm normally used to delay of *1.5 in software projects", "action": false, "timestamp": "2016-08-18T19:43:56+00:00" }, { "id": "4c48989b3a54411abd9a72d49d261a3e", "sender": "wumpus", "payload": "jonasschnelli: agree, it could be much worse :)", "action": false, "timestamp": "2016-08-18T19:44:27+00:00" }, { "id": "32e641ea0424470c9a5b797288d06f63", "sender": "sipa", "payload": "wumpus: it *used to be* much worse", "action": false, "timestamp": "2016-08-18T19:44:39+00:00" }, { "id": "7e510379ba57463db3d457ffb03aa765", "sender": "sipa", "payload": "for us.", "action": false, "timestamp": "2016-08-18T19:44:47+00:00" }, { "id": "e7424a6b6b454c83984e42dc3c6c8fb3", "sender": "jonasschnelli", "payload": "6 month seems to be perfectly fine. Just +6 month after the (possible) delayed last release", "action": false, "timestamp": "2016-08-18T19:44:47+00:00" }, { "id": "9606f780add841859c21fb365f9ba252", "sender": "wumpus", "payload": "jonasschnelli: then again, we have time-based releases, we don't wait for any feature, just for bug fixes", "action": false, "timestamp": "2016-08-18T19:44:50+00:00" }, { "id": "3696ae8299d14a49b6823b723f0be1a1", "sender": "jonasschnelli", "payload": "Yes. This seems to follow most agile development practices.", "action": false, "timestamp": "2016-08-18T19:45:14+00:00" }, { "id": "28092821694a4d86a0d32be46b90f9d4", "sender": "wumpus", "payload": "in any case, any other topics?", "action": false, "timestamp": "2016-08-18T19:45:38+00:00" }, { "id": "fd37f0948c254ff8b6aca769eec6fd33", "sender": "zooko", "payload": "Do y'all know about \"binary transparency\"?", "action": false, "timestamp": "2016-08-18T19:46:16+00:00" }, { "id": "727475f72d63481b84ee1788702e360c", "sender": "jonasschnelli", "payload": "tell us", "action": false, "timestamp": "2016-08-18T19:46:25+00:00" }, { "id": "91dca2657eef4bbab7ba4a954b35df60", "sender": "btcdrak", "payload": "zooko: please explain", "action": false, "timestamp": "2016-08-18T19:46:41+00:00" }, { "id": "d753df1a20dc4794bff7987d2b461115", "sender": "zooko", "payload": "https://groups.google.com/forum/#!forum/binary-transparency", "action": false, "timestamp": "2016-08-18T19:46:42+00:00" }, { "id": "c5bd96213b0140238ed687d2f6d98685", "sender": "zooko", "payload": "It's a project from Ben Laurie, as a follow-on to \"certificate transparency\".", "action": false, "timestamp": "2016-08-18T19:46:54+00:00" }, { "id": "d07bb64f2d92460496dc6da15c1fa296", "sender": "zooko", "payload": "There is a redundant set of servers which are claiming to do append-only logging of things published to them.", "action": false, "timestamp": "2016-08-18T19:47:25+00:00" }, { "id": "0ae9fa193aa542f8be498c54e95fd08e", "sender": "zooko", "payload": "When you publish a binary, you submit its hash to these servers.", "action": false, "timestamp": "2016-08-18T19:47:53+00:00" }, { "id": "97e21414f43c4525854ea410b6b5c8c3", "sender": "zooko", "payload": "Clients should refrain from running a binary if the hash of that binary hasn't been broadcast by those servers.", "action": false, "timestamp": "2016-08-18T19:48:16+00:00" }, { "id": "4aa24384ff934a3aa5a8386ef18caeb2", "sender": "jl2012", "payload": "proposed topic: BIP146.", "action": false, "timestamp": "2016-08-18T19:48:24+00:00" }, { "id": "b549aa833c584d70be7ec38d19bab6fe", "sender": "zooko", "payload": "This is a detection technique, more than a prevention technique, for people distributing different binaries to different users.", "action": false, "timestamp": "2016-08-18T19:48:40+00:00" }, { "id": "823307cd78764101b04c6de0ca2f27c1", "sender": "jonasschnelli", "payload": "example: https://github.com/FreeBSDFoundation/binary-transparency-notes", "action": false, "timestamp": "2016-08-18T19:49:07+00:00" }, { "id": "e64d35bc808b47d0b5852fce6f8e6930", "sender": "jl2012", "payload": "It is proposed to do the LOW_S and NULLDUMMY softfork at the same time as segwit", "action": false, "timestamp": "2016-08-18T19:49:13+00:00" }, { "id": "84aa5bcfbd004352aa7a57b30af2610c", "sender": "jonasschnelli", "payload": "thanks zooko! I think we should take a closer look at the binary-transparency project.", "action": false, "timestamp": "2016-08-18T19:50:07+00:00" }, { "id": "fec53fc42f514af78bb53f1138816ec5", "sender": "wumpus", "payload": "thanks zooko, it sounds interesting, although I'm not sure it is on topic for anything in the meeting. I don't think it can solve the concrete problem of people running binaries without verifying anything at all, unless OSes would build in support for that", "action": false, "timestamp": "2016-08-18T19:50:13+00:00" }, { "id": "2b38b83d677f43a4b4b201d36d42d678", "sender": "wumpus", "payload": "#topic BIP146", "action": false, "timestamp": "2016-08-18T19:50:35+00:00" }, { "id": "7bab779816e44c9bb7f8358aa94eac35", "sender": "btcdrak", "payload": "#link https://github.com/bitcoin/bips/blob/master/bip-0146.mediawiki", "action": false, "timestamp": "2016-08-18T19:50:38+00:00" }, { "id": "0845a0bc99db47fb90ca3fab28bc3952", "sender": "warren", "payload": "(OSX does prevent running unsigned binaries unless the user disables a default option.)", "action": false, "timestamp": "2016-08-18T19:50:47+00:00" }, { "id": "e8420c4274b6462e849dc8d3c391bae0", "sender": "zooko", "payload": "wumpus: good point. I think of it as primarily for detecting if someone is replacing binaries with alternate binaries, thinking that nobody will notice.", "action": false, "timestamp": "2016-08-18T19:51:09+00:00" }, { "id": "053e85806b394e17b96658db5e74a2a5", "sender": "wumpus", "payload": "warren: yes, but that only checks whether the binary is signed, not by whom, and not whether it's the same file other people gt", "action": false, "timestamp": "2016-08-18T19:51:13+00:00" }, { "id": "01408403376e4b27a25a8b31eaf94373", "sender": "btcdrak", "payload": "warren: but anyone can sign.", "action": false, "timestamp": "2016-08-18T19:51:17+00:00" }, { "id": "649fa0a299c64fc6ab988ce1a4b5d343", "sender": "zooko", "payload": "But not for preventing people from running the alternate binaries so much, because like you say\u00c3\u00a2\u00c2\u0080\u00c2\u00a6", "action": false, "timestamp": "2016-08-18T19:51:22+00:00" }, { "id": "e82165353a5644b19913e1fe96ca9757", "sender": "wumpus", "payload": "(the latter being the point of the binary transparency)", "action": false, "timestamp": "2016-08-18T19:51:24+00:00" }, { "id": "6f4e95814dba444f9aad817686afb082", "sender": "btcdrak", "payload": "jl2012: speak up", "action": false, "timestamp": "2016-08-18T19:51:24+00:00" }, { "id": "7b2e5e0abadf4dbfa37b6d119f4651a6", "sender": "warren", "payload": "btcdrak: true", "action": false, "timestamp": "2016-08-18T19:51:25+00:00" }, { "id": "90d73530a8a647c8bb351682a5402cd4", "sender": "jonasschnelli", "payload": "warren: In which case you fully have to trust apple", "action": false, "timestamp": "2016-08-18T19:51:28+00:00" }, { "id": "30884ca99e0e404f99e9feea248d122c", "sender": "sipa", "payload": "idea: LOW_S and NULLDUMMY have been nonstandard on the network for a long time, and do not appear on the chain (did anyone check they really do not appear?)", "action": false, "timestamp": "2016-08-18T19:51:34+00:00" }, { "id": "0e32ce7a3559463a946a54c6008f8e39", "sender": "sipa", "payload": "together they would make *normal* transactions free from known malleability in segwit", "action": false, "timestamp": "2016-08-18T19:52:10+00:00" }, { "id": "7367259090c240f1814acbd2c5c833d4", "sender": "jl2012", "payload": "NULLDUMMY is a bigger problem than LOW_S, as an attacker may put anything as the dummy value", "action": false, "timestamp": "2016-08-18T19:53:15+00:00" }, { "id": "6a20e6b113de406d97bd9645623de824", "sender": "sipa", "payload": "and they are both trivial", "action": false, "timestamp": "2016-08-18T19:53:41+00:00" }, { "id": "e82141616f3340e3b84a1e7bb3ca85c7", "sender": "adam3us", "payload": "zooko i was thinking another way to do this is by committing to a sequence of R=kG values.in the public key, so P=H(R1,R2,...,Q) and define a mapping from version numbers to R value. now signing two different binaries for the same version will likely leak your private key.", "action": false, "timestamp": "2016-08-18T19:54:00+00:00" }, { "id": "3c755f63ef184a60aa130a34af23d052", "sender": "sipa", "payload": "adam3us, zooko: can you wait until the meeting is ove", "action": false, "timestamp": "2016-08-18T19:54:22+00:00" }, { "id": "992f42e3711541069565e3107718f3bf", "sender": "kanzure", "payload": "is the request re: bip146 for more review?", "action": false, "timestamp": "2016-08-18T19:54:32+00:00" }, { "id": "e6afad4180fd4a798062da973725ed71", "sender": "btcdrak", "payload": "for the record there was some discussion on the ML https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2016-August/013006.html", "action": false, "timestamp": "2016-08-18T19:54:34+00:00" }, { "id": "6c5c95626f9047858857ae458aca59fd", "sender": "kanzure", "payload": "what is the request about bip146 about?", "action": false, "timestamp": "2016-08-18T19:54:43+00:00" }, { "id": "9e8d6a1adf02495a826094f289ec26f9", "sender": "sipa", "payload": "please discuss :)", "action": false, "timestamp": "2016-08-18T19:54:54+00:00" }, { "id": "bc110917ee9e4aeea5022c797fde75ec", "sender": "jonasschnelli", "payload": "jl2012: Would the NULLDUMMY affect current mainnet transaction", "action": false, "timestamp": "2016-08-18T19:55:14+00:00" }, { "id": "716e56b1849e47869529e9ad25e99157", "sender": "jl2012", "payload": "LOW_S was discussed in last meeting but not NULLDUMMY", "action": false, "timestamp": "2016-08-18T19:55:14+00:00" }, { "id": "01fb40d9dff540c4bd7e0c999da5ecc4", "sender": "btcdrak", "payload": "ha! I think we discussed LowS already, it's just the addition of NULLDUMMY that is new.", "action": false, "timestamp": "2016-08-18T19:55:18+00:00" }, { "id": "e9576e06479d4b8892c25db1fa08ac1d", "sender": "sipa", "payload": "do we think it is doable in 0.13.1 / together with segwit", "action": false, "timestamp": "2016-08-18T19:55:20+00:00" }, { "id": "70b4d4c5e1dc4c0a8f2737cb44dab57a", "sender": "jl2012", "payload": "jonasschnelli: yes in the current BIP146", "action": false, "timestamp": "2016-08-18T19:55:48+00:00" }, { "id": "a545dd99ba244adca542d2c792351729", "sender": "btcdrak", "payload": "sipa: I agree. it is a trivial addition.", "action": false, "timestamp": "2016-08-18T19:55:49+00:00" }, { "id": "a525ffd2c901495f8d5be6fdfa51192f", "sender": "wumpus", "payload": "yes, ack on LowS already, I don't know enough about NULLDUMMY to usefully comment", "action": false, "timestamp": "2016-08-18T19:56:45+00:00" }, { "id": "e0cc7e7e70cd440f8856bf28c7a937cf", "sender": "btcdrak", "payload": "4 minute bell", "action": false, "timestamp": "2016-08-18T19:56:55+00:00" }, { "id": "98c03cf4fe0a4ad78d0b8e24c69035b2", "sender": "luke-jr", "payload": "wumpus: NULLDUMMY is just \"the ignored value popped by CHECKMULTISIG must be zero\"", "action": false, "timestamp": "2016-08-18T19:57:11+00:00" }, { "id": "7da86cda967645939ced2a06d35067ab", "sender": "sipa", "payload": "nulldummy is liteeally: the ignored input to checkmultisig has to be the eempty vector", "action": false, "timestamp": "2016-08-18T19:57:12+00:00" }, { "id": "989c9e72020d427f822d63fd8d8886da", "sender": "jonasschnelli", "payload": "So, worst case, there are some non-NULLDUMMY producers/miners out there that would need to adjust to the new rule?", "action": false, "timestamp": "2016-08-18T19:57:16+00:00" }, { "id": "edbb65a0411244018a5c56f23922529d", "sender": "sipa", "payload": "we should check if they are being included in the chain", "action": false, "timestamp": "2016-08-18T19:57:38+00:00" }, { "id": "f6b78f9c497448c49d95ddbbfae03a6f", "sender": "wumpus", "payload": "okay that seems harmless and easy to check", "action": false, "timestamp": "2016-08-18T19:57:40+00:00" }, { "id": "cca67f3dd27a4731b5f00eb3519e1756", "sender": "luke-jr", "payload": "jonasschnelli: nobody sends these, so it's hard to know if anyone mines them", "action": false, "timestamp": "2016-08-18T19:57:44+00:00" }, { "id": "4e3ff7a6a8324564b7bd954528945e56", "sender": "btcdrak", "payload": "it's already nonstandard", "action": false, "timestamp": "2016-08-18T19:57:54+00:00" }, { "id": "f1cd8a66a3cb44f0867dacf3653148b3", "sender": "wumpus", "payload": "makes sense to include that with the LOWS cleanup then", "action": false, "timestamp": "2016-08-18T19:58:09+00:00" }, { "id": "8c20dc2a8f0d44a7a0f2e192be322e50", "sender": "luke-jr", "payload": "oh, and since all miners MUST be on 0.12.1 now, nobody should mine these", "action": false, "timestamp": "2016-08-18T19:58:12+00:00" }, { "id": "46971eec86294cba84e42c53b4f96b32", "sender": "sipa", "payload": "why must they be on 0", "action": false, "timestamp": "2016-08-18T19:58:24+00:00" }, { "id": "40bd4755570546b4a4e431800da60cf7", "sender": "sipa", "payload": "why must they be on 0.12.1?", "action": false, "timestamp": "2016-08-18T19:58:29+00:00" }, { "id": "254a8842d3084efb92c9e293c9842eee", "sender": "luke-jr", "payload": "sipa: CSV?", "action": false, "timestamp": "2016-08-18T19:58:29+00:00" }, { "id": "9ebc99d736634ca3bfd738b81c842d54", "sender": "btcdrak", "payload": "last softfork", "action": false, "timestamp": "2016-08-18T19:58:36+00:00" }, { "id": "815ec565fc014857a68624a6258abf02", "sender": "sipa", "payload": "ah.", "action": false, "timestamp": "2016-08-18T19:59:02+00:00" }, { "id": "67a13d180e0642f18e91b7fb150ba469", "sender": "btcdrak", "payload": "since we didnt release a 0.11.x they upgraded to 0.12.1", "action": false, "timestamp": "2016-08-18T19:59:03+00:00" }, { "id": "a37043a690fa41668dd0513ab34942c4", "sender": "jonasschnelli", "payload": "LOW_S & NULLDUMMY seems to make sense to include in the SW SF.", "action": false, "timestamp": "2016-08-18T19:59:28+00:00" }, { "id": "c30882b638fc4498ada773bb4c295a55", "sender": "btcdrak", "payload": "I think luke-jr's grammar has a bug or two :-p", "action": false, "timestamp": "2016-08-18T19:59:30+00:00" }, { "id": "ea425141a8704a5c97468652b3b37b0f", "sender": "wumpus", "payload": "let's not have a new thing creep into SW every week though :p", "action": false, "timestamp": "2016-08-18T19:59:41+00:00" }, { "id": "dd4aa40b8466493ba2f5d21049b827ed", "sender": "BlueMatt", "payload": "I'm not a huge fan of bundling them :/", "action": false, "timestamp": "2016-08-18T19:59:43+00:00" }, { "id": "2109093ca62240b19cc922ed68956b7c", "sender": "luke-jr", "payload": "btcdrak: ?", "action": false, "timestamp": "2016-08-18T19:59:43+00:00" }, { "id": "d82ea5cb3757476c9e33960f6ff043a3", "sender": "BlueMatt", "payload": "though not against a separate sf that is also in 0.13.1, though thats also gross", "action": false, "timestamp": "2016-08-18T19:59:55+00:00" }, { "id": "d38b04e7c2b8469abc0479f3a3121f4e", "sender": "btcdrak", "payload": "BlueMatt: it's a trivial one liner (modulo tests)", "action": false, "timestamp": "2016-08-18T20:00:10+00:00" }, { "id": "c9fd87940f4843c3845c18a1cd4246c8", "sender": "luke-jr", "payload": "the only reason to bundle IMO is if we want to add new non-VERIFY opcodes to segwit.", "action": false, "timestamp": "2016-08-18T20:00:10+00:00" }, { "id": "ee20c991328e4f43ad5dc9000eb7bb78", "sender": "BlueMatt", "payload": "btcdrak: I'm aware, doesnt mean I like it", "action": false, "timestamp": "2016-08-18T20:00:19+00:00" }, { "id": "cd6d5b88ce6d42babbfe774a34bc3fb1", "sender": "wumpus", "payload": "we discussed that last week BlueMatt, the disadvantage of not bundling is that no one would care about a separete softfork for them", "action": false, "timestamp": "2016-08-18T20:00:21+00:00" }, { "id": "0c4583393d914e8aa1749c2132c14dc8", "sender": "wumpus", "payload": "they're just a cleanup", "action": false, "timestamp": "2016-08-18T20:00:23+00:00" }, { "id": "374185dd556a4cd5b1f3fe2f13b6a73c", "sender": "luke-jr", "payload": "but LOWS/NULLDUMMY are just softforks, so no need to bundle IMO", "action": false, "timestamp": "2016-08-18T20:00:27+00:00" }, { "id": "79b6440edf0442558896a927ce92054d", "sender": "luke-jr", "payload": "(no harm either)", "action": false, "timestamp": "2016-08-18T20:00:35+00:00" }, { "id": "0172294ab98540b58b2c918cfaccc349", "sender": "BlueMatt", "payload": "wumpus: ok, fair enough, though in same version...anyway, I'll hold my tounge", "action": false, "timestamp": "2016-08-18T20:00:47+00:00" }, { "id": "5e415abdcbfd403f93c36a1dc40fd71f", "sender": "wumpus", "payload": "#endmeeting", "action": false, "timestamp": "2016-08-18T20:01:00+00:00" } ], "events": [ { "event_type": "START_MEETING", "message": { "id": "11d039ea67474767bedbaba6938bbe03", "sender": "wumpus", "payload": "#startmeeting", "action": false, "timestamp": "2016-08-18T19:00:19+00:00" }, "operand": null, "id": "11d039ea67474767bedbaba6938bbe03", "timestamp": "2016-08-18T19:00:19+00:00" }, { "event_type": "TOPIC", "message": { "id": "b196a338aa0043b3a0143422ad7e8991", "sender": "wumpus", "payload": "#topic core internal binary signing and verification tool", "action": false, "timestamp": "2016-08-18T19:01:57+00:00" }, "operand": "core internal binary signing and verification tool", "id": "b196a338aa0043b3a0143422ad7e8991", "timestamp": "2016-08-18T19:01:57+00:00" }, { "event_type": "TOPIC", "message": { "id": "a6c99979cf504710955d999f2a5c35c1", "sender": "wumpus", "payload": "#topic code-signing (OSX/WIN)", "action": false, "timestamp": "2016-08-18T19:21:21+00:00" }, "operand": "code-signing (OSX/WIN)", "id": "a6c99979cf504710955d999f2a5c35c1", "timestamp": "2016-08-18T19:21:21+00:00" }, { "event_type": "ACTION", "message": { "id": "f0e8e7b2249743bb994ba6e08d38d926", "sender": "wumpus", "payload": "#action sha256sums in release email", "action": false, "timestamp": "2016-08-18T19:23:16+00:00" }, "operand": "sha256sums in release email", "id": "f0e8e7b2249743bb994ba6e08d38d926", "timestamp": "2016-08-18T19:23:16+00:00" }, { "event_type": "TOPIC", "message": { "id": "f8ea0b2beed047b4a95a6fc63b0ad551", "sender": "wumpus", "payload": "#topic 0.13.0", "action": false, "timestamp": "2016-08-18T19:29:07+00:00" }, "operand": "0.13.0", "id": "f8ea0b2beed047b4a95a6fc63b0ad551", "timestamp": "2016-08-18T19:29:07+00:00" }, { "event_type": "ACTION", "message": { "id": "149d54648f494264bb3cebdb7e022a41", "sender": "wumpus", "payload": "#action review https://github.com/bitcoin-core/bitcoincore.org/pull/199", "action": false, "timestamp": "2016-08-18T19:34:25+00:00" }, "operand": "review https://github.com/bitcoin-core/bitcoincore.org/pull/199", "id": "149d54648f494264bb3cebdb7e022a41", "timestamp": "2016-08-18T19:34:25+00:00" }, { "event_type": "LINK", "message": { "id": "ab0b5a75d90a4e8ca642a0d675a499b0", "sender": "jonasschnelli", "payload": "https://github.com/bitcoin/bitcoin/issues/8518", "action": false, "timestamp": "2016-08-18T19:42:20+00:00" }, "operand": "https://github.com/bitcoin/bitcoin/issues/8518", "id": "ab0b5a75d90a4e8ca642a0d675a499b0", "timestamp": "2016-08-18T19:42:20+00:00" }, { "event_type": "LINK", "message": { "id": "d753df1a20dc4794bff7987d2b461115", "sender": "zooko", "payload": "https://groups.google.com/forum/#!forum/binary-transparency", "action": false, "timestamp": "2016-08-18T19:46:42+00:00" }, "operand": "https://groups.google.com/forum/#!forum/binary-transparency", "id": "d753df1a20dc4794bff7987d2b461115", "timestamp": "2016-08-18T19:46:42+00:00" }, { "event_type": "TOPIC", "message": { "id": "2b38b83d677f43a4b4b201d36d42d678", "sender": "wumpus", "payload": "#topic BIP146", "action": false, "timestamp": "2016-08-18T19:50:35+00:00" }, "operand": "BIP146", "id": "2b38b83d677f43a4b4b201d36d42d678", "timestamp": "2016-08-18T19:50:35+00:00" }, { "event_type": "LINK", "message": { "id": "7bab779816e44c9bb7f8358aa94eac35", "sender": "btcdrak", "payload": "#link https://github.com/bitcoin/bips/blob/master/bip-0146.mediawiki", "action": false, "timestamp": "2016-08-18T19:50:38+00:00" }, "operand": "https://github.com/bitcoin/bips/blob/master/bip-0146.mediawiki", "id": "7bab779816e44c9bb7f8358aa94eac35", "timestamp": "2016-08-18T19:50:38+00:00" }, { "event_type": "END_MEETING", "message": { "id": "5e415abdcbfd403f93c36a1dc40fd71f", "sender": "wumpus", "payload": "#endmeeting", "action": false, "timestamp": "2016-08-18T20:01:00+00:00" }, "operand": null, "id": "5e415abdcbfd403f93c36a1dc40fd71f", "timestamp": "2016-08-18T20:01:00+00:00" } ], "aliases": {}, "vote_in_progress": false, "motion_index": null }