oin-development mailing list
> Bitcoin-development@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>
>
--
--
Gavin Andresen
--
Learn Graph Databases - Download FREE O'Re
ate key don't trust me in this multisig any
more".
On Mon, Mar 10, 2014 at 8:14 PM, Jeff Garzik wrote:
> All of that only melds with the payment protocol under an extremely
> expansive definition of "payment." The payment protocol is really
> geared towards a
rent one.
>
Multisig wallets are a different reality from our current one, so when we
move to that new reality we should do it correctly from the beginning.
--
--
Gavin Andrese
--
Learn Graph Databases - Download FREE O'
rties paying into a multisig, or receiving funds from a multisig,
don't have to support it (that's what P2SH gives us).
--
--
Gavin Andresen
--
Learn Graph Databases - Download FREE O'Reilly Book
"G
Binaries for 0.9.0rc3 are available at:
https://bitcoin.org/bin/0.9.0/test/
Please help sanity test.
We will also need more 'gitian builders' for the final 0.9.0 release
(Wladimir and I are the only builders so far for the rc3 binaries), so if
you are running Linux or OSX and are willing to
dwidth
- Add '-regtest' mode, similar to testnet but private with instant block
generation with 'setgenerate' RPC.
- Add 'linearize.py' script to contrib, for creating bootstrap.dat
- Add separate bitcoin-cli client
Credits
Thanks to everyone who contributed t
On Sat, Mar 22, 2014 at 1:03 PM, Mike Hearn wrote:
> do we codesign the Windows binaries?
Yes, the -setup.exe installers are Authenticode (or whatever Microsoft is
calling that these days) code-signed.
--
--
Gavin Andre
"Bitcoin doesn't scale" is pure FUD. It might not scale in exactly the way
you want, but it WILL scale.
--
--
Gavin Andresen
Chief Scientist, Bitcoin Foundation
https://www.bitcoinfoundation.org/
--
Le
center" to the much
more likely "data center employee
is tricked into letting somebody have access to my dedicated server."
--
--
Gavin Andresen
--
Learn Graph Databases - Download FREE O'Reilly Book
"
d outputs you have to
remember forever) before we create an insurmountable set of problems by
trying to solve everything we can think of all at once.
--
--
Gavin Andresen
--
__
;>> completely fits in my opinion the BIP "process" category.
>>>
>>> Please read it and let me know your thoughts and comments so we can
>>> improve on this draft.
>>>
>>> Eric Larcheveque
>>> ela...@gmail.com
>>>
>>>
>>>
&g
Bitcoin Core version 0.9.1 is now available from:
https://bitcoin.org/bin/0.9.1/
This is a security update. It is recommended to upgrade to this release
as soon as possible.
It is especially important to upgrade if you currently have version
0.9.0 installed and are using the graphical interfac
How is this different from just running in -regtest mode and asking the
nodes to generate a block after 1 or 2 seconds?
--
--
Gavin Andresen
--
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databas
normally,
have the other mine... however you like to simulate some attack (deep
chain re-org, double-spend,
whatever).
To simulate launching the attack, connect them together again, let the two
chains compete and see
what happen
s of people who understand how the system works
at a very detailed level.
And why do you think your blog is more public than this open, publicly
archived mailing list???
--
--
Gavin Andresen
--
Start Your Social Ne
..
not a good idea. The user should get feedback right away. Poking a
"pay now" button and then waiting more than a second or three to get "your
payment has been received and is being processed" is terrible UI.
--
--
Gavin Andresen
--
lementation NOW, while BIP70 is still a 'Draft'.
Because this type of "hey, I'm implementing your standard and it doesn't
work the way I think it should" mistake is exactly why BIPs take a while
before be
volving keypairs. And people's wallets continue to get lost or
stolen.
--
--
Gavin Andresen
--
EMC VNX: the world's simplest storage, starting under $10K
The only unified storage solution that offers unified management
ide a blockchain split is necessary.
There seems to be rough consensus that new, imperfect standard
transactions are a good-enough short term solution.
--
--
Gavin Andresen
--
EMC VNX: the world's simplest storage, star
en will the 1-of-3 and 3-of-3 cases be used? I included them
just for completeness, but perhaps they should be dropped for now so
there is less code to write and test. I just don't imagine there are
many cases where you have exactly three parties and 1-of-3 or 3-of-3
are required to spend
Key: m pubkey1...n n OP_CHECKMULTISIG
--
--
Gavin Andresen
--
EMC VNX: the world's simplest storage, starting under $10K
The only unified storage solution that offers unified management
Up to 160% more powerful than a
elease process. And
whatever else he thinks needs to be done to improve core bitcoin.
I'll be rewriting the m-of-n signature "standard transaction" proposal
to mitigate a potential denial-of-service attack that I realized it
would open up (details later, I don't want to give
to fix some chronic problems with bitcoind becoming
unresponsive due to deadlocks.
git shortlog --no-merges v0.3.24..
... will give you all the changes.
Thanks to everybody who contributed patches, and sorry if your
favorite patch is not included.
--
--
Gavin Andresen
ed on
transaction size, but still worrying)
--
--
Gavin Andresen
--
Special Offer -- Download ArcSight Logger for FREE!
Finally, a world-class log management solution at an even better
price-free! And you'll get a free
lock-in
the bad chain will be rejected.
Transactions are still checked for orphan blocks that come in during
initial block-chain-download (ConnectInputs will be called with
fBlock=FALSE) and for mined blocks (ConnectInputs called with
fMiner=TRUE).
--
--
s the dependencies (TxIns) of a transaction might be re-written
multiple times.
With this fix, each each transaction referred to by TxIns is written once.
--
--
Gavin Andresen
--
Special Offer -- Download ArcSight Logger for
, but we may have to.
--
--
Gavin Andresen
--
Special Offer -- Download ArcSight Logger for FREE!
Finally, a world-class log management solution at an even better
price-free! And you'll get a free "Love Thy Log
codepaths TRY and
some don't.
On Tue, Sep 6, 2011 at 7:55 AM, Pieter Wuille
wrote:
> My mistake: these are not actual potential deadlocks, as all locking
> of cs_vRecv/cs_vSend
> happens inside TRY_CRITICAL_SECTION blocks. Gavin, maybe you can add the rule
> to
> your debug code t
C call -- verify: coinbase
transactions have unique txids
--
--
Gavin Andresen
--
Using storage to extend the benefits of virtualization and iSCSI
Virtualization increases hardware utilization and delivers a new level of
a
e coinbase
transactions if you were generating bitcoins, with a locked wallet,
and ran out of keypool keys.
--
--
Gavin Andresen
--
Why Cloud-Based Security and Archiving Make Sense
Osterman Research conducted this study that outlin
't heard any objections to pulling it as soon as 0.4 is
officially released, a pull request is ready, and a couple of people
have a chance to read over the differences and ACKnowledge that
nothing sinister snuck in somewhere.
--
ential denial-of-service attacks, but if I
got it wrong it could be very bad for the network.
3) I'd really like to come to consensus on one or more
'multi-signature' standard transactions to enable much better wallet
backup and security.
Lets tal
ant to
produce blocks that the rest of the network will accept, run ntp on
your system.
I THINK that fixing (2) will make (1) a non-issue-- if miners can't
mess around with block times very much then it will be very difficult
for them to manipulate the difficulty for th
ould have to have 50+%
power to start, or you risk producing mostly orphan blocks.
> Also, this is going to cause problems for at least one pool operator.
I'll trade more security for "make at leas
abyte-block attack).
--
--
Gavin Andresen
--
BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA
Learn about the latest advances in developing for the
BlackBerry® mobile platform with sessions, labs & more.
Se
etwork into two pieces by broadcasting a series of
double-spends from two halves of the network, and waiting until the
nodes "in the middle" disconnected/banned across the 'seam'.
So: please let me know if or how I'm being an idiot.
--
--
Gavin Andresen
; I
think it is appropriate because a block/transaction's DoS score is
really meta-data and not part of it's state.
I'll make GetTime() unit-test friendly as you suggest.
--
--
Gavin Andresen
--
Doing M
age data?
Good question. Anybody see a reason not to? How much tolerance (if
any) should there be for sending garbage data (I assume the
lower-level network stack almost never garbles data, is that a good
assumption)?
--
--
Gavin Andresen
ave the
-maxreceivebuffer option to deal with those.
PS: I'll add Gregory's comment:
"There should be nothing I can give a node that it will
forward on that will make that node's peers drop it. (and this needs
to remain true while forwarding rules evolve)"
... as a comme
phantomcircuit's "here's a
python script that will kill any bitcoin node on the network" 0-day
exploit), then please start a new topic.
--
--
Gavin Andresen
--
Doing More with Less: The Next Generation Virtu
t.org -- it
should become a forum for developers to exchange ideas about the
direction of bitcoin.
--
--
Gavin Andresen
--
BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA
Learn about the latest advances in d
nk I like "BIP" (PEB sounds like a diet soda, and I don't know
if BER should be pronounced "bear" or "beer").
I generally don't care about names, but it seems like a little
planning now might save some confusion later. And I don
ss to be on a page boundary.
Dylan Noblesmith (1):
mlock() all private keys in memory
Eric Hosmer (1):
Added crypter to makefile.vc.
Fabian H jr. (1):
Updated checkpoints, maybe Tx fee should be reduced to 0.0001
from 0.0005 and maximum minimum tx should be 0.0010.
Gavin Andresen (24)
ownload from there.
--
--
Gavin Andresen
--
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, security
threats, fraudulent activity, and
eek or two, giving
time for a week or two of testing, and have the 0.5 release available
a month from now, assuming no major show-stopper bugs or network
stability or denial-of-service or security vulnerabilities turn up
between now and then.
--
--
Gavi
prev block not found is a
"should be impossible" case, because AcceptBlock is only called when
extending the best-block chain).
--
--
Gavin Andresen
--
All the data continuously generated in your IT infra
problems and it is a good idea for the DoS
code to kick in and kick either you or them off the network...
--
--
Gavin Andresen
--
All the data continuously generated in your IT infrastructure contains a
definitive rec
too-- I was thinking
blocks again, not transactions.
Good to get all of the wrong-ness out of my system on a Monday so I
know I'll be perfect the rest of the week. :-)
--
--
Gavin Andresen
--
All the data continuously ge
node sends ten of them it is disconnected/banned.
Requiring plausible proof-of-work for orphan blocks will make this
attack too expensive to attempt (you would have to generate valid
blocks at current difficulty).
--
--
Gavi
ppropriate, and, because it will be a
subtle bug or edge case, it seems to me keeping the DoS penalty is
also appropriate, because attackers look for subtle bugs and edge
cases that can be exploited.
--
--
Gavin Andresen
--
public key must
be known and in the wallet.
I'd really like to get this into the 0.5 release because it will
enable much better wallet security and backup in some future release
or alternative client (but these transaction types need to be relayed
and mined BEFORE then to make that possible).
ng more 'standard' transaction
types in the future.
--
--
Gavin Andresen
--
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, s
eded a way
of testing the new transactions).
--
--
Gavin Andresen
--
All of the data generated in your IT infrastructure is seriously valuable.
Why? It contains a definitive record of application performance, securi
I updated src/makefile.osx and doc/build-osx.txt today, assuming that
the MacPorts versions of dependencies will be used and the -mt boost
libraries will be used.
I also modified makefile.unix and makefile.osx to auto-build
dependencies using gcc's -MMD option.
--
--
Gavin And
s://github.com/bitcoin/bitcoin/blob/master/src/qt/locale
http://doc.qt.nokia.com/latest/linguist-manual.html
http://www.transifex.net/
--
--
Gavin Andresen
--
All of the data generated in your IT infrastructure is ser
recated JSON-RPC commands that have been REMOVED:
setlabel
getlabel
getaddressesbylabel
getamountreceived
getallreceived
getreceivedbylabel
listreceivedbylabel
Run: git shortlog --no-merges v0.4.0..
... to get a complete list of changes, and thanks to everybody who
r if there was a
non-profit organization like the Tor Project to pay core developers,
testers, a PR person, pay for the Jenkins nightly build server, etc
etc etc.
--
--
Gavin Andresen
--
All the data continuously gener
#x27;s willing, I propose that Amir take the role of BIP editor.
• I think bitcoin is still too small to have a specialized
"bitcoin-ideas" mailing list; I propose that new potential BIPs be
discussed either here or on the bitcoin-dev mailing
that had ... as the
input instead of .
The will be ignored by old clients. The transactions is
still considered 'standard'. But you could teach bitcoin to look for
signatures in wallet transactions...
--
--
Gavin Andresen
--
->script mapping
to the wallet, and returns the hash).
For use cases where all the keys belong to you... either a good,
automatic, in-the-cloud-backup or the equivalent of "-rescan" is
needed to recover in case the mappings are lost.
--
--
Gavin Andresen
is not mandatory, I'm proposing
that CHECKMULTISIG becomes a standard transaction type.
--
--
Gavin Andresen
--
The demand for IT networking professionals continues to grow, and the
demand for specialized networking s
sions on minimum fee per kilobyte or ECDSA signature check, and
how many free transactions (if any) they'll include in the blocks they
create. And bitcoin clients should be smarter about looking at what
transactions are and are not getting into the chain so they can
suggest ap
ave mac binaries available soon (let
me know if you can help test, especially if you have a 32-bit Intel
mac running 10.5).
On my wish list for builds (anybody want to volunteer?):
I think it'd be spiffy to have a .pro file to compile bitcoind;
maintaining N differ
bitcoin address built
on top of OP_EVAL that will be very easy for all of our existing
infrastructure to support.
--
--
Gavin Andresen
--
Get your Android app more play: Bring it to the BlackBerry PlayBook
in minutes.
gitian.zip
cec50f4b5d7222e475466143eb9e37aae026a582 bitcoin-0.5.0rc2-win32-gitian.zip
--
--
Gavin Andresen
--
RSA(R) Conference 2012
Save $700 by Nov 18
Register now
http://p.sf.net/sfu/rsa-
If you wonder where the bitcoin-0.5.0rc2-linux.tar.gz went...
I removed it because it is not sane (we need to teach the Qt build to
statically link dependencies).
Once the Mac and Linux deployment issues are fixed, expect a release
candidate 3...
--
--
Gavin Andresen
ay of preventing somebody
from endlessly spamming bogus, will-never-be-completed partial
transactions just to be annoying.
--
--
Gavin Andresen
--
RSA(R) Conference 2012
Save $700 by Nov 18
Registe
ous to use the
blockchain instead of directly connecting to, and finding out the IP
address of, the parties involved in the transaction.
--
--
Gavin Andresen
--
RSA(R) Conference 2012
Save $700 by Nov 18
Register now
htt
r protocol to gather signatures.
--
--
Gavin Andresen
--
RSA(R) Conference 2012
Save $700 by Nov 18
Register now
http://p.sf.net/sfu/rsa-sfdev2dev1
___
Bitcoin-development ma
I need help sanity testing these:
https://sourceforge.net/projects/bitcoin/files/Bitcoin/bitcoin-0.4.1/test/
https://sourceforge.net/projects/bitcoin/files/Bitcoin/bitcoin-0.5.0/test/
--
--
Gavin Andresen
--
All the
on that would be
extremely helpful.
--
--
Gavin Andresen
--
All the data continuously generated in your IT infrastructure
contains a definitive record of customers, application performance,
security threats, fraudulent act
figuring out what is going on (is it only bitcoin-qt
that is crashing? Is Ubuntu OK but other linux variations broken?
etc)
--
--
Gavin Andresen
--
All the data continuously generated in your IT infrastructure
contains a
x27;re there, and report
back
---
Previous Brain Dump:
https://sourceforge.net/mailarchive/message.php?msg_id=28223657
--
--
Gavin Andresen
--
All the data continuously generated in your IT infrastructur
not the actual hashes found.
---
PS: I proposed a different method for dealing with large hash power
drops for the testnet on the Forums yesterday, and am testing it
today.
--
--
Gavin Andresen
--
All the data continu
es off you'll pay to 'someb...@foo.bit'.
It seems to me that if it was DNS-based, the address should be
something like 'somebody.bitcoin.foo.com'. But I think it is unlikely
people will setup and run a custom DNS server just to sup
(or plugins in the clients) query
that trusted central organization and then the account holder's domain
to get a (possibly unique) public key or bitcoin address.
As long as IIBANs are not the ONLY way of aliasing bitcoin addresses
to more-human-friendly strings I thi
we've got).
And I'll reiterate that there doesn't have to be just one solution.
My only concern is that IIBAN is Yet Another Fledgling Standard, and
those little details that remain to be worked out could take years to
actually work ou
ht
be a tragedy-of-the-commons problem lurking there).
--
--
Gavin Andresen
--
Learn Windows Azure Live! Tuesday, Dec 13, 2011
Microsoft is holding a special Learn Windows Azure training event for
developers. It wil
c. now would be the time.
--
--
Gavin Andresen
--
Write once. Port to many.
Get the SDK and tools to simplify cross-platform app development. Create
new or port existing apps to sell to consumers worldwide. Explore the
eady has one,
please speak up!
--
--
Gavin Andresen
--
Write once. Port to many.
Get the SDK and tools to simplify cross-platform app development. Create
new or port existing apps to sell to consumers worldwide. Explor
is
done, I think it might make sense to do a bottom-up redesign of Script
based on what we've learned.
--
--
Gavin Andresen
--
Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex
infrastruc
LTISIG as 'standard' transactions) and
delaying EVAL rollout on the main network, but I worry that will just
encourage people to delay thoroughly reviewing/testing for a couple of
months, and we'll be right back here at the beginning of March.
--
--
Gavin Andresen
-
ike it."
I like it, too-- it is cleaner than OP_EVAL, more straightforward to
implement, and pretty much exactly matches the feature I care about
(moving code from the scriptPubKey to the scriptSig). There are no
special cases like "
are unrelated 0.6 pulls in those changes, too, but it should be
pretty obvious what is what.
--
--
Gavin Andresen
--
Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex
infrastructure or v
ctions is expensive enough to deter would-be
attackers.
--
--
Gavin Andresen
--
Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex
infrastructure or vast IT resources to deliver seamless, secure a
M_of_2_DRAFT
>
> It is a proposed alternative to BIP 16 ("/P2SH/").
>
> Thank you,
> Ben Reeves
>
--
--
Gavin Andresen
--
Keep Your Developer Skills Current with LearnDevNow!
The most comprehens
ral, BER encoding.
+ I'm tempted to require that the "filler item" to workaround the
OP_CHECKMULTISIG pops-one-too-many-items-off-the-stack bug be exactly OP_0.
Discussion welcome; I should be making a pull request for my patch this
afternoon.
--
Gavin Andresen
connected peer(s) react to all the fuzzy 'inv/tx'
protocol messages.
I built it to stress-test BIP 16, there are lots of useful features that
could be added. Patches welcome!
--
--
Gavin Andresen
--
Keep Your Develo
solution because it means a new 'type' of bitcoin
address every time we want a new transaction type and long addresses.
Its only advantage is it didn't use CHECKMULTISIG, so there were no
problems with maximum-sigops-per-block.
--
--
Gavin Andresen
---
I've started a discussion on BIP 16/17 support moving forward
(including trying to improve the testing process) here:
https://bitcointalk.org/index.php?topic=61922.0
(please reply there so the discussion stays mostly in one place)
--
--
Gavin And
esses I always connect fairly
quickly, and the DNS seeding hosts seems to be working nicely, too.
--
--
Gavin Andresen
--
Keep Your Developer Skills Current with LearnDevNow!
The most comprehensive online learning lib
RE: BIP 21 versus BIP 20: I like BIP 21; simpler is better.
RE: signing and dating URIs: good ideas. I think we should agree
that there is consensus around BIP 21 and then after there is some
experience with signing/dating URIs you should write follow-up BIPs .
--
--
Gavin Andresen
tests.
I'm going to start a separate discussion thread with some thoughts on
rolling out higher-level multisignature support.
--
--
Gavin Andresen
--
Try before you buy = See our experts in action!
The most compreh
llowing send-to-multisig-address via
the GUI (should be a very simple change to the address validation
logic). But creating multisig addresses via the GUI should wait until
the next release.
--
--
Gavin Andresen
--
ared "green"
(sender's wallet site/software would do this)
+ Give transaction ID, return boolean "has this transaction been
deeclared green?"
As I said, I think any design that relies on clients recognizing two
variations of a transaction is a v
re address support is included in this
release, as specified in BIP 16. Run with -bip16=0 to
turn off support for BIP 16.
--
--
Gavin Andresen
--
Keep Your Developer Skills Current with LearnDevNow!
The most comprehensive o
nbase
as a solution).
Then when we're done talking tech we can all send each other bitcoins
with addresses that are cute Valentine's day messages...
--
--
Gavin Andresen
--
Keep Your Developer Skills Current w
ct that the final version
of bitcoin-qt/bitcoind version 0.6 will be putting the block height
into coinbases that it creates.
--
--
Gavin Andresen
--
Virtualization & Cloud Management Using Capacity Planning
Cloud c
se, I think an attacker being able to create
singlesig/p2sh address collisions counts as a major flaw.
--
--
Gavin Andresen
--
Try before you buy = See our experts in action!
The most comprehensive online learning lib
why SCRIPT_ADDRESS_TEST is 196, my memory is fuzzy about
that (it always decodes to the same digit in base58 maye?)
--
--
Gavin Andresen
--
Virtualization & Cloud Management Using Capacity Planning
Cloud computing
201 - 300 of 302 matches
Mail list logo