Socratic Seminar 49

2024-07-29

Housekeeping

• This meetup is generously sponsored by Digital Garage, Bitrefill, and Bitnomial.
• Questions are encouraged, including basic ones!
• Socratic Seminars are held under the Chatham House Rule: share the information you receive, but do not reveal the identity of who said it.
• For the privacy of other attendees, please refrain from taking photographs of other people without their permission.
• Socratic seminars are best when the moderator can let the conversation flow, so try to keep things concrete and focused.
• The reading list covers June 23rd to July 27th.

Chain Weather Report

• Clark Moody Dashboard
• Mempool
• Block Fee Rates
• Block Rewards 1m

News & Announcements

• Mt. Gox starts repayments
• Charting the Course to Mt. Gox Repayments
• Proton launches Bitcoin wallet
• Mempool Accelerator is now live
• Nunchuk releases wallet rollover feature

Discussion

Tweets & Blogs

• BitAxe mines a block
• Report on bitcoin ownership
• Script state from Lamport signatures
• StatechainJS

FROST

• FROST Federation
• FROST Threshold Signatures for Multiple Channel Updates
• BIP Draft: "ChillDKG: Distributed Key Generation for FROST"
• RFC 9591 The Flexible Round-Optimized Schnorr Threshold (FROST) Protocol for Two‑Round Schnorr Signatures

bitcoin-dev

• A "Free" Relay Attack Taking Advantage of The Lack of Full-RBF In Core
• Octojoin: Payjoin with no interaction between sender and recipient
• BIP Authors: These BIPs could be Final

Delving Bitcoin

• FE'd Up Covenants
• FE'd Up Covenants paper
• Introduction to cluster linearization
• Bitcoin OP_CAT Use Cases
  • OP_CAT: THE PURR-FECT SOLUTION FOR COVENANTS?
  • #1: Covenants
  • #2: Merkle Trees
  • #3: Vaults
  • #4: Recursive Covenants
• Empirical Data Analysis of Fee Rate Forecasters for ASAP (next-block) Fee Estimation
• B’SST: Bitcoin-like Script Symbolic Tracer v0.1.3 released

CVEs and Research

Research

• Concurrently secure blind Schnorr signatures
• Adaptor Signatures: New Security Definition and A Generic Construction for NP Relations
• Blockchain Space Tokenization
• Simple Logarithmic-size LSAG signature
  • Simple Logarithmic-size LSAG signature pre-print
• Shared-Custodial Password-Authenticated Deterministic Wallets
• Unforgeability of Blind Schnorr in the Limited Concurrency Setting

Disclosures & Advisories

• Public disclosure of 10 vulnerabilities affecting Bitcoin Core < 0.21.0
• Optech on Disclosure of Vulnerabilities
• Security Advisories
• Wasabi Wallet Security Incident Disclosure: July 9th-10th 2024

InfoSec

• Cloudflare blames recent outage on BGP hijacking incident
• DNS hijacks target crypto platforms registered with Squarespace
• Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor
• Polyfill supply chain attack hits 100K+ sites

Pull Requests

Bitcoin Core

• net: Allow -proxy=(::1) on nodes with IPV6 lo only
• assumeutxo: Don't load a snapshot if it's not in the best header chain
• rest: Reject negative outpoint index early in getutxos parsing
• refactor: add coinbase constraints to BlockAssembler::Options
• Wallet: Add max_tx_weight to transaction funding options (take 2)
• Fix cases of calls to FillPSBT errantly returning complete=true
• Make it possible to disable Tor binds and abort startup on bind failure
• script/sign: avoid duplicated signature verification after signing (+introduce signing benchmarks)
• kernel: De-globalize static validation variables
• net: fix race condition in self-connect detection
• MiniMiner: use FeeFrac in AncestorFeerateComparator
• test/BIP324: disconnection scenarios during v2 handshake
• psbt: Check non witness utxo outpoint early
• #28984 package rbf followups
• wallet: Migrate legacy wallets to descriptor wallets without requiring BDB
• prune, rpc: Check undo data when finding pruneheight
• Assumeutxo: bugfix on loadtxoutset with a divergent chain + test
• kernel: De-globalize validation caches
• validation: Check if mempool exists before size check in ActivateSnapshot
• Several randomness improvements
• rpc: Avoid getchaintxstats invalid results
• assumeutxo: Check snapshot base block is not in invalid chain
• kernel: remove mempool_persist
• init: Add option for rpccookie permissions (replace 26088)
• policy: Add PayToAnchor(P2A), OP_1 <0x4e73> as a standard output script for spending

BDK

• feat(electrum)!: Update bdk_electrum to use merkle proofs
• refactor(wallet)!: Add support for custom sorting and deprecate BIP69

rust-bitcoin

• Move locktimes and Sequence to primitives
• Specify required_height in variable name when comparing to other height
• Optimize base58 on small inputs
• Add TxIdentifier trait
• Move opcodes to primitives
• bip152: check if indexes do not overflow
• bip158: Hash data instead of copying first
• OP_RETURN standardness check

Releases

• Additive RBF Batcher
• Bitcoin Core 26.2