diff --git a/README.md b/README.md index 9589e9c1..7de991d4 100644 --- a/README.md +++ b/README.md @@ -4,8 +4,8 @@ Copyright (c) 2014-2017, The Monero Project ## Development Resources -Web: [getmonero.org](http://getmonero.org) -Mail: [dev@getmonero.org](mailto:dev@getmonero.org) +Web: [getmonero.org](http://getmonero.org) +Mail: [dev@getmonero.org](mailto:dev@getmonero.org) IRC: [#monero-dev on Freenode](irc://chat.freenode.net/#monero-dev) ## About this Project @@ -20,7 +20,7 @@ Pages and formats should be based off existing pages to maintain a consistent lo - changes made to _layouts, _includes, and home.php will need to use {% t x.x %} translation tags to pull in the YAML tag from _strings_en.yml, as this is required for multi-language support later on - with the exception of something like blog/index.html (that is required to be a .html file for Jekyll's pagination to work) all pages should be .md files -- since all static content (CSS/JS/images) is hosted in a separate, non-public repository, changes can be suggested via Github issues and we will cross-apply them to that repo, crediting you in the commit message +- static content (CSS/JS/images) can be found in the [monero-forum](https://github.com/monero-project/monero-forum) repo - SVG should be used in header icons and diagrams, and FontAwesome icons can be used in text - Moneropedia entries require nothing more than creating the .md file in knowledge-base/moneropedia/, please use the 00-base-00 file as a boilerplate - To create a CLI screen shot, prefix the text block with {:.cli-code}, and use span elements for the colours; see getting-started/running.md, getting-started/accepting.md, and the account.md Moneropedia entry diff --git a/_data/merchants.yml b/_data/merchants.yml index 020452aa..679ad16a 100644 --- a/_data/merchants.yml +++ b/_data/merchants.yml @@ -44,10 +44,14 @@ url: http://moneroblocks.info - name: MoneroExplorer url: https://explorer.xmr.my/ - - name: Moneroworld Blockchain Explorer - url: http://explore.moneroworld.com/ + - name: MoneroHash Explorer + url: https://monerohash.com/explorer/ + - name: xmrchain.net + url: https://xmrchain.net/ - category: Payment Gateways merchants: + - name: Living Room of Satoshi + url: https://www.livingroomofsatoshi.com/?sc=xmr - name: Monero Merchants url: https://monero-merchants.com - name: Paybee (Private Beta) @@ -58,8 +62,8 @@ url: https://github.com/PsychicCat/monero-nodejs - name: python-monero (Python) url: https://github.com/tippero/python-monero - - name: pymonero (Python) - url: https://github.com/Monero-Monitor/pymonero + - name: MoneroPy (Python) + url: https://github.com/bigreddmachine/MoneroPy - name: moneronjs (NodeJS) url: https://github.com/netmonk/moneronjs - name: MoneroApi.Net (.NET) @@ -88,6 +92,8 @@ url: https://chrome.google.com/webstore/detail/monero-monitor/ojekadcfnkkihlleaafggfgbggdckpgo - category: Services merchants: + - name: Azur Samui - Luxury Apartment and Villa Development, Koh, Samui, Thailand + url: http://www.azursamui.com - name: California Fintech Network url: https://www.californiafintech.org/plans/ - name: Infield Loan Services - Atlanta, Construction Consulting, Contract review, Feasibility, Funds Escrow @@ -104,6 +110,8 @@ url: https://mymonero.com - name: Pradeep Atluri, Psychiatrist, New York url: http://dr.mindsci.com/ + - name: Simple, no non-sense hosting + url: https://rootbox.host/ - name: Web Developer - Stefanos url: http://www.stefanosioannou.com/web-development-monero-accepted - name: XMR.to Monero to Bitcoin Payment Service diff --git a/_posts/2016-12-22-monero-core-gui-beta-released.md b/_posts/2016-12-22-monero-core-gui-beta-released.md index f2bdbd14..697791d2 100644 --- a/_posts/2016-12-22-monero-core-gui-beta-released.md +++ b/_posts/2016-12-22-monero-core-gui-beta-released.md @@ -22,7 +22,7 @@ Download links are at the bottom of this post, and please take note of the known ## FAQ -- *Can I use a remote node?* This is certainly possible. In the wizard, change the daemon address from `localhost:18081` to the address of the remote node. For instance, if you want to use the remote node of moneroworld.com, change `localhost:18081` to `node.moneroworld.com:18081` or `2nodez.moneroworld.com:18081`. Alternatively, you can specify a daemon address on the `Settings` page. +- *Can I use a remote node?* This is certainly possible. In the wizard, change the daemon address from `localhost:18081` to the address of the remote node. For instance, if you want to use the remote node of moneroworld.com, change `localhost:18081` to `node.moneroworld.com:18081`. For more open node options, please check out the [MoneroWorld open node directory.](https://moneroworld.com/#nodes) Alternatively, you can specify a daemon address on the `Settings` page. - *What do I do if the GUI is showing `Wrong Version` at the bottom left?* If you see this message the daemon you are using is incompatible with the GUI. The daemon supplied in the binaries is compatible with the GUI. Thus, if you are seeing this message you are likely using a remote node, which is running a daemon that is incompatible with the GUI. Note that you will be able to receive funds. However, you *won't* be able to send funds. @@ -86,4 +86,4 @@ If you would like to verify that you have downloaded the correct file, please us - monero.gui.win.x64.beta.zip, cb8bdf36fb56739a0fa746bec8dd51fb3479d51a3b8f0ce41a771f1d5a924bdb - monero.gui.mac.x64.beta.tar.bz2, 907bfb4832c74de6cec7df730dfce5d9ccc1e6de09b6a4546cb9eee1f8242968 - monero.gui.linux.x64.beta.tar.bz2, cecbe4b23f777442de861bc0981af0857dab043ed63be98f768cdd00825a8d09 -- monero.gui.linux.x86.beta.tar.bz2, daabd11b271685cedf5d6321cbde5e6b7c2691630a4355a973fc0cb99b1d2dc9 \ No newline at end of file +- monero.gui.linux.x86.beta.tar.bz2, daabd11b271685cedf5d6321cbde5e6b7c2691630a4355a973fc0cb99b1d2dc9 diff --git a/_posts/2017-03-26-logs-for-the-Kovri-dev-meeting-held-on-2017-03-26.md b/_posts/2017-03-26-logs-for-the-Kovri-dev-meeting-held-on-2017-03-26.md new file mode 100644 index 00000000..e987febd --- /dev/null +++ b/_posts/2017-03-26-logs-for-the-Kovri-dev-meeting-held-on-2017-03-26.md @@ -0,0 +1,246 @@ +--- +layout: post +title: Logs for the Kovri Dev Meeting Held on 2017-03-26 +summary: Brief review of what has been completed since last meeting, Monero HackerOne Bounty, and code & open tickets discussion +tags: [dev diaries, i2p, crypto] +author: dEBRUYNE / fluffypony +--- + +*March 26th, 2017* + +# Logs + +**\** 1. Greetings +**\** 2. Brief review of what's been completed since the previous meeting +**\ {-vtnerd}** oh I guess there is one more thing. the backend was going to hopefully push updates to connected clients +**\** 3. Monero HackerOne Bounty https://www.reddit.com/r/Monero/comments/5zmywx/monero_bounty_for_hackerone/ +**\ {-fluffypony}** ok anonimal, all yours +**\** 3. Code + ticket discussion / Q & A +**\** 4. Any additional meeting items +**\** 5. Confirm next meeting date/time +**\** Greetings. +**\** hey! +**\** Hi +**\ {-olark}** o/ +**\** Sweet olark +**\ {-olark}** Yeah I missed the monero meeting unfortunately :/ +**\ {-olark}** I'll read the logs +**\** Really good meeting +**\** On topic please +**\** 2. Brief review of what's been completed since the previous meeting +**\** https://forum.getmonero.org/9/work-in-progress/86967/anonimal-s-kovri-full-time-development-funding-thread?page=&noscroll=1#post-90733 +**\** ^ for a summary on my part +**\** moroccanmalinois has done some great work since the previous meeting. We have a new utility binary with multiple features. He's also done work elsewhere in the codebase. +**\** :) +**\** guzzi has also contributed to the utility binary. guzzi can you link to your FFS if you're doing work summaries/reports? +**\** What does this utility binary do, in a nutshell ? +**\* anonimal** wants to say ./kovri-util -h +**\** I will add summary tonight +**\** On phone +**\** OK, I'll try to pull someday and check :P +**\** guzzi: then give us a tl;dr for point 2. please +**\** moneromooo base32, base64, routerinfo( reads a RI file) and su3file (reads an su3file) +**\** and the crypto benchmark +**\** Added benchmarks to utility +**\** guzzi: I already said that, didn't you do other things too? Like research, etc.? +**\** Starting in on instance class refactor a d todos +**\** Researched address book for possible lmdb +**\** Sgould be easy +**\** Should +**\** What should be easy? None of that looks easy... +**\** Anyway, we'll save that for later. Anything else on point 2.? +**\** Relatively easy from db perspective. Difficult from kovri perspective yes +**\** 3. Monero HackerOne Bounty https://www.reddit.com/r/Monero/comments/5zmywx/monero_bounty_for_hackerone/ +**\** fluffypony: ^ thoughts? +**\ {-fluffypony}** so my thoughts is that we should just do a general fund across all the projects +**\ {-fluffypony}** because HackerOne let's us basically apportion stuff as needed +**\ {-fluffypony}** so we don't have to give out the entire bounty for some stupid XSS attack +**\** Ok. I'll have to talk with them about setting up Monero. Do we include the GUI into /monero or create /monero-gui? We can probably wrap it into /monero if needed. Do we create /monero-site ? +**\ {-fluffypony}** anonimal: everything goes under the Monero umbrella / bounty, right? +**\ {-fluffypony}** just that each actual sub project can be represented +**\** I'm speaking purely about H1 accounts. +**\** We do whatever we want with fund management. +**\** fluffypony: it's possible but then all monero developers have access to all bug reports for all subprojects +**\** So that brings up a trust issue. I'm fine with the idea but it should be mentioned. +**\ \* fluffypony** ponders +**\** Also I'd like to have access to the account as account holder. This is something I couldn't do if we throw into one account. +**\** And whoever is the account holder for all subprojects has *that* responsibility. And if the single account is ever compromised... +**\** In other words, it's not very decentralized in terms of who controls accounts. +**\ {-fluffypony}** anonimal: doesn't really matter if it's compromised, because there's no money there? +**\** fluffypony: it's about access to reports. If we don't care about who has access to reports, then there's not much reason to use HackerOne +**\ {-fluffypony}** mooneroo: for the monero-project GitHub account the core team all have the password, because there's no easy way to share that control otherwise - could we not do the same for H1? +**\** I mean, there are features/benefits, but access to vulnerabilities is a big issue. +**\ {-fluffypony}** amongst maintainers I mean +**\** pinging mooneroo or moneromooo? +**\** We could do that I think. +**\** Well, some members of hte monero core team are pretty much inactive AIUI. So no need to get them access to this. +**\ {-fluffypony}** whoops +**\ {-fluffypony}** I meant anonimal +**\ {-fluffypony}** sorry ignore typo +**\ {-fluffypony}** anonimal: for the monero-project GitHub account the core team all have the password, because there's no easy way to share that control otherwise - could we not do the same for H1? +**\ {-fluffypony}** moneromooo: would be among maintainers +**\ {-fluffypony}** lol +**\ {-fluffypony}** the core team have passwords for stuff like this as a fallback +**\** I don't think inactive people should have access to H1. Only on a as-needed basis. Maybe when they become active again? +**\* moneromooo** misread anonimal's ping, nevermind +**\** The drop dead theory +**\ {-fluffypony}** ^^ +**\ {-fluffypony}** it's just an anti-bus factor +**\ {-fluffypony}** the main people using it would be maintainers, which are currently just me and anonimal +**\** I was given access a while back (though might have been rescinded by now). +**\** No, you have access to kovri +**\ {-fluffypony}** and I don't think there's a big issue with maintainers having visibility on other reports +**\** As does EinMByte but is he still alive? +**\** Alright, so any other big issues with merging everything into a single account? +**\** And how many subprojects do we apply this too? I can PR the VRP to all appropriate subprojects and update docs as needed. +**\ {-fluffypony}** we can always split it out later +**\ {-fluffypony}** I think the only relevant projects are: GUI, CLI, Kovri, site +**\** I imagine the site and forum could gain from this too. +**\ {-fluffypony}** forum is being deprecated, so let's leave it off +**\ {-fluffypony}** but there will be some forum functionality moving into the site (FFS in particular) +**\ {-fluffypony}** so keeping the site there is necessary +**\** Ok +**\ {-fluffypony}** anonimal: maybe an infrastructure one too, which is pigeons' domain? +**\** Nodepool code perhaps? +**\** Meh. And no real maintainer. +**\** Snipa's work +**\ {-fluffypony}** @JacobJeweler no, that's not a core project +**\ {-fluffypony}** external projects can do their own H1 stuff +**\** fluffypony: sure, as long as we can communicate that to people e.g., use the Meta repo has a point of contact + place to post VRP etc. +**\ {-fluffypony}** I think we should come up with a paragraph for the READMEs +**\** Ok. We need the VRP somewhere though. It's solid (moreso than having nothing). +**\** we lost irc2p again +**\ {-pigeons}** ok i'll file a few reports as someone else for a bounty then +**\ {-fluffypony}** works here pigeons +**\** One thing also that's probably needed: a list of "this does not count". Like all that's known already. +**\ {-pigeons}** hmm yeah, just some selective drops, oh well +**\** But this is easily a bone of contention otherwise. +**\** moneromooo: that's included in H1. We can incorporate that into one of the features they have. +**\ {-fluffypony}** moneromooo: agreed +**\ {-fluffypony}** every report is subjective +**\** (iirc) +**\** Ok, so I will contact them and move these into a single account. +**\** And do all the related things necessary. +**\** As for funding, +**\* anonimal** reads backlog for fluffypony's message +**\** "general fund across all projects" +**\** Ok, +**\** separate from the dev fund? i.e., separate address too? +**\ {-fluffypony}** this will be an FFS +**\ {-fluffypony}** just open-ended with some minimum +**\** Ok, so no separate donation address. All FFS, and funds are held like the dev fund? +**\** (or like any FFS project) +**\ {-fluffypony}** yes +**\ {-olark}** How much money should we aim to raise for H1? +**\ {-olark}** Assuming this will need to be replenished every now and then. +**\ {-fluffypony}** I have no idea - suggestions? +**\** https://forum.getmonero.org/6/ideas/87597/monero-bounty-for-hackerone suggested 500 total for all projects +**\** (500 XMR) +**\* anonimal** checks value +**\ {-fluffypony}** olark: yes but bounties are normally denominated in USD +**\ {-fluffypony}** so potentially it wouldn't need to be replenished, or hardly +**\ {-fluffypony}** unless we have lots and lots of exploits +**\** Hmmm... well, at current price, 500 seems reasonable IMHO. That could attract some serious researchers. +**\** Thoughts? +**\ {-olark}** Probably easier to outline what the rewards should be for LOW, MEDIUM, and HIGH severity of vulnerabilites and then figure out how much money should be raised. +**\** We don't have X thought: X being how many of Y. +**\** *though +**\** If we run out of the fund, we can always open a new FFS. +**\ {-olark}** 500 xmr seems like a good start anyway. +**\ {-fluffypony}** yeah let's just stick to that and see how it goes +**\** Ok +**\ {-olark}** Right. +**\** Awesome. Anything else on point 3.? +**\ {-fluffypony}** next? +**\** Do we extend 20 minutes or are we screwed because of earlier? +**\** There are two point 3s. +**\** Extend, and whoever wants to leave leaves :) +**\ {-fluffypony}** we can extend to finish up, but let's do it ASAP so I can move on to tagging and releasing +**\** lol, yes. Github turns that into 4 if I copypasta. If I get original text, it's 3. +**\** 4. Code + ticket discussion / Q & A +**\** Damn, well, I could easily spend 20-30 minutes on this point because we haven't had a meeting in so long. +**\* anonimal** grabs link instead +**\** Ok, here we are https://github.com/monero-project/kovri/issues?q=is%3Aopen+is%3Aissue+milestone%3A0.1.0-alpha +**\** A little question about the reload : what is supposed to happen if no param changed ? +**\** #187 isn't as obvious as I had hoped. I'll have to approach it differently, from the basics, and start by actually getting some unit-tests for ntcp. +**\** if the user didn't specified a port, should it get a new random one ? +**\** So that will be fun. +**\** As for #340, #369 is moot because of the other open ticket for cutting out all unnecessary sig types, +**\** #305 should actually be closed for now, +**\** guzzi is working on #96. It's not mandatory for 0.1.0-alpha release so I may move it to next milestone, +**\** #9 needs review and may not really be needed after all +**\** I can work on those unit tests for ntcp if u want +**\** No that's fine guzzi, thank you. +**\** All that leaves is #46 and #362 +**\** ajs is on #46. He's supposed to be in talks with pigeons I think. I haven't heard from ajs in a little while though. ping ajs. +**\** #362 comes at the very end once we tag. I'll throw it on AUR and away we go. +**\* anonimal** reads moroccanmalinois's lines +**\** moroccanmalinois: if no port specified in config, that would be a default option. I don't like that though. +**\** What I think we should do is add a default random port to the config somehow. +**\** Otherwise we jump through these kinds of hurdles. But doing that for binary releases... hmm... +**\ {-olark}** We could just set a random port when a new router context is initialized. +**\** moroccanmalinois: worst case scenario, if the app is still running during restart (assuming because client and core are the only things being restarted), we reuse the previous port. +**\** ok +**\ {-olark}** It currently just defaults to 0 afaik. +**\** ? +**\ {-olark}** In router context. +**\ {-olark}** m_Port +**\ {-olark}** Assuming we are talking about the same thing. +**\** Nope, you're not looking in the right area. +**\ {-olark}** k +**\** I can explain more after the meeting. moroccanmalinois can probably too because it sounds like he understands the design as well. +**\** m_Port == 0 means choose a random one. another question : i read somewhere in the java doc about a "Laptop mode", i think the pb it tries to solve is more about dynamic ips. Is it on the roadmap ? +**\** Nope, not on the roadmap but it can be. +**\** Just open a feature request. +**\** :) ok +**\** it was just brought to my attention yesterday? that there's a ticket for pr'ing the logo - i was under the impression that my involvement with that was done, but looks like there's some miscommunication and i can get around to that soon-ish +**\** Anything else on point 4.? We don't have to rush this part if needed. +**\** What/ +**\** ? +**\** Link? +**\** Learning the instance class +**\** what what +**\** Anyone apposed to creating member variables for router context and client context. +**\** And giving them proper constructors +**\** It was a todo to find out why they are this way currently +**\** guzzi: please provide line number and file +**\** pero: what's your question? +**\** there is no question +**\** guzzi: for the TODO +**\** pero: there's a question mark. What is your point? +**\** where is there a question mark +**\** After "yesterday". +**\** Looks like a typo for "". +**\** this is ticket discussion isnt it - i was chiming in on something that was ostensibly assigned to me without my knowledge +**\** anonimal: pigeons said he got a server for #46, but waiting for access to move over files +**\** pero: nothing was assigned to you +**\** ajs: ok thanks +**\** alright well i guess there's nothing to do then +**\** Instance.cc +**\** Initialize function +**\** First comment inside +**\** Sorry github mobile has no li e numbers +**\** Line +**\ {-fluffypony}** ok maybe this discussion should happen later when you're at a computer, guzzi +**\** Good idea. +**\ {-pigeons}** i'm gonna confirm some things from ya'll in a few, fqdn and git repo to pull from +**\** Anything else on 4.? +**\** I will comment in the pr later +**\** guzzi: I know what you're talking about and see what you want, let's talk more later +**\** Cool +**\** 5. Any additional meeting items +**\** No additional items from me afaict +**\** One last question : an external app that wants to use kovri (like monero GUI), should it includes only the libs ? or it can include things from src/app ? +**\** Nothing from app. I see no reason for it to include anything from app. +**\** Which means we get things out of app that we need elsewhere. I wrote TODO's. +**\** Perfect. thx +**\** Anything else on 5.? +**\** not for me +**\** k +**\** 30 seconds... +**\** 6. Confirm next meeting date/time +**\ {-fluffypony}** 2 weeks (tm) +**\** 18:00 UTC two weeks from today as usual? +**\** Ok +**\ {-fluffypony}** April 9th +**\** Thanks everyone \ No newline at end of file diff --git a/_posts/2017-03-26-overview-and-logs-for-the-dev-meeting-held-on-2017-03-26.md b/_posts/2017-03-26-overview-and-logs-for-the-dev-meeting-held-on-2017-03-26.md new file mode 100644 index 00000000..ca188f73 --- /dev/null +++ b/_posts/2017-03-26-overview-and-logs-for-the-dev-meeting-held-on-2017-03-26.md @@ -0,0 +1,342 @@ +--- +layout: post +title: Overview and Logs for the Dev Meeting Held on 2017-03-26 +summary: 0.10.3.1 release, light wallets, fireice-uk's proposal, and 0MQ +tags: [dev diaries, core, crypto] +author: dEBRUYNE / fluffypony +--- + +*March 26th, 2017* + +# Overview + +An overview [can be found on MoneroBase](https://monerobase.com/wiki/DevMeeting_2017-03-26). + +# Logs + +**\** 2. Brief review of what's been completed since the previous meeting +**\** ok so since the last meeting I guess the main thing is we tagged and released 0.10.3 +**\** which we're about to deprecate +**\** lol +**\** are there any issues with 0.10.3 besides the cumulative block size thing? +**\** now's the time to point them out +**\** no idea, but I'm running a build from a couple days ago +**\** me too. no issues so far +**\** Been running on OSX since yesterday. No issue. +**\** moneromooo: any idea why the issue seems to affect so few? +**\** Smart Mining is not working for me on newest macOS +**\** Dunno. Low level processor specifics I guess, but... shrug. +**\** hundehausen: it only works on Linux +**\** not on anything else +**\** I have smart mining running on Windows right now +**\** yeah. windows + linux iirc +**\** but not osx i think +**\** lunch time +**\** I like to pretend that Windows doesn't exist +**\** :-P +**\** lol +**\** What is it ? +**\** moneromooo: you open them to let air in +**\** Ah, doors. +**\** usually lets bugs in too +**\** smaller sized doors basically +**\** drumroll +**\** lol hyc +**\** winblows sucks +**\** windows and doors in Ireland have no screens. I dunno what's with these people. +**\** anyhoo +**\** let's move on +**\** 3. Discussion of fireice-uk's proposal (as started in #1828 +**\** I'd like to move this to Funding Required +**\** and fireice-uk updated the funding costs based on current pricing +**\** obviously there are some consensus-critical aspects to it, so I think it's worth discussing +**\** Wasn't this a wallet thing ? +**\** https://github.com/monero-project/monero/issues/1828 +**\** Yes. Speedup on Intel/AMD processors, which is helpful considering RingCT has slowed sync down. +**\** it is a wallet thing (unless you want to use it somewhere else) +**\** ringCT has slowed wallet sync? +**\** moneromooo: if we replace SUPERCOP then it's consensus critical +**\** I don't see how ringct slowed down wallet sync ... ? +**\** Then no consensus issue. And if it proves good for a while, *then* it can be used in consensus. +**\** xmreric: how has ringct slowed down sync? +**\** I thought I had heard that from others +**\** the additional work comes when a output match is found +**\** so I guess wallets with thousands and thousands of ringct outputs? +**\** https://monero.stackexchange.com/questions/3718/when-syncing-moneros-blockchain-from-scratch-why-does-it-begin-fast-and-end-sl +**\** xmreric: that's daemon, not wallet +**\** 1828 is a proposal for a wallet change +**\** ok +**\** its more work on the node verifying the block, but not the wallet since its not reading it. I suppose there is some additional time for transmission/marshalling/unmarshalling, but this is smaller than any crypto +**\** The bottleneck's the daemon anyway. +**\** daemon sync time seems a lot more important than wallet sync time (in comparison) if our primary goal was to encourage more full nodes. +**\** Unless you're using a remote node, no? +**\** this complicates the build if we want a crypto/ subtree just for wallet and one just for daemon +**\** Hmm, fair point. +**\** ok so then here's a suggestion +**\** the amount of tx's/day is higher since the date around ringct was activated. So wallet sync slows down. but not really related to ringct +**\** what if we had cryptoopsbuilder run on build +**\** build won't be more more complicated - just more symbols +**\** and use the existing stuff by default, but optionally use the newer SUPERCOP / whatever +**\** my suggestion would be to use ge64* symbols for the new code +**\** BTW, is that not what you wanted to replace by... tweetnacl or whatver it was ? +**\** moneromooo: yes +**\** but only when TweetNaCl has finished formal verification +**\** And that proposal replaces it with this, or another replacement ? +**\** Alright... +**\** I'd prefer we just keep the generated code statically committed to git +**\** no idea what environment the builder might break on +**\** hyc: the builder is pretty simple (just splicing text really), but it does add a python dep to the build process +**\** yeah, let's not do that. +**\** fireice-uk: did you try running a wallet refresh without any crypto to see how much faster it was at best possible gain ? IIRC, my bottleneck is the daemon (SSD, though CoW fs). +**\** either way, in the long run I'd like to have a default "safe" crypto implementation, and an optional fast one +**\** s/without any crypto/with the actual tx scanning disabled/ +**\** moneromoo: bottleneck is the poor fetching from the daemon +**\** So changing the crypto won't do a thing right now, right ? +**\** it somehow mananges not to max anything +**\** that is the part 2 +**\** crypto is part 1 +**\** so likely this is a premature optimization for now +**\** pigeons: want to swap round the order? +**\** why not swap the orders fireice-uk? And do daemon fetching optimization +**\** not a bad idea +**\** Oh ok. There are two things that should be easy win there: store non prunable separately, and maybe fetch a bunch of them at once (wallet refresh always has pretty much N..N+dN txes). +**\** so part 2 is the actual optimization? and part 1 is... ? +**\** I wanted to do the daemon thing for a while, but looks like I won't have to :D +**\** gingeropolous: part 1 is crypto optimziation, part 2 is parallelism opt +**\** but current discussion says crypto opt will be overshadowed by daemon +**\** ok so we swap them around and do part 2 first, and then revisit how to structure part 1 after that? +**\** makes sense +**\** fireice-uk: that sound ok? +**\** Well, that's my recollection of my particular machine anyway. Might differ for others. +**\** my suggestion would be to do part 1 first - this way you can have a loot at it before merging +**\** \*look +**\** I want to have a look at 2 also before merging. +**\** lol +**\** lol. +**\** of course, but i assume 1 will require more time +**\** lol +**\** but if its has more immediate benefits, why not go with 2 first? +**\** yeah it's sounding like 1's benefits will be unmeasurable for now +**\** it makes even more sense to do part 2 first if it is less complex/faster to implement. +**\** +1 +**\** Yes, do the easy wins first, and the possibly dangerous stuff might not be needed (and will only work on x8664 anyway AIUI). +**\** ok, that's fine with me +**\** Keeping in mind you also need the full blocks to serve syncing peers. +**\** great! +**\** ok cool - I'll move the proposal to funding after the 0.10.3.1 tag +**\** so in like 3 months /s +**\** hah hah +**\** touché +**\** Since we are on a similar topic, could I bring up ZMQ? That should also speed up sync time/provide faster wallet func at some point no? +**\** nah, fluffypony doesn't run on tewinget Time™ +**\** vertp: it should provide better scalability for multiple wallets hitting the same daemon +**\** but I don't think it'll provide speed benefits beyond that +**\** so light-wallets. Is there anything new on that front tewinget. +**\** agreed +**\** well, I've been working on merging from upstream this morning +**\** I think I've *just* got it sorted +**\** yay +**\** woo! +**\** !!!! +**\** Nice +**\** let's stick to the schedule plx +**\** few things changed in core that threw wrenches in the merge >**>** +**\** sorry fluffypony :) +**\** yes, sorry. +**\** ok so +**\** 4. Remote nodes (ie. a discussion of #605) +**\** Well, I was thinking about this, and I will do a wallet mode where a full wallet (ie, phone) can connect to a view wallet (ie, home server), and update from it. That should be super fast. +**\** moneromooo: that's exactly what vtnerd is doing +**\** tewinget: I think I kinda added a new RPC... a few days ago... +**\** so would be duplication of work +**\** Oh, OK. +**\** Won't that only show incoming though? +**\** but let's back up a second +**\** so a wallet can sync from another wallet? +**\** because I think that maybe there's some value in the *idea* of 605 +**\** In my idea, yes (really, transfer output data). +**\** but the specifics aren't great +**\** for eg. +**\** But I dunno what vtnerd is doing. +**\** Lots of GUI users want this on some level or another. +**\** I'm pretty big on emphasizing away from using remote nodes as best-practice. +**\** what if an unsynced daemon, when it has a wallet client requesting outputs from a certain height, picks a random peer and asks that peer for the data +**\** But for people in developing nations, etc it's a good option to offer +**\** I know that we all want everyone to run a full node, but I imagine less than half actually will, and that percentage will only decrease over time with new, non-technical users +**\** ie. without range proofs / sigs / etc. +**\** the random peer has its rpc open? +**\** the peer could lie, but the node will eventually know that it has +**\** gingeropolous: no +**\** we don't need RPC for this, we're already talking to the peer using the p2p protocol +**\** Why would the wallet request outputs for a given height, if the daemon isn't synced to that yet ? +**\** moneromooo: restored wallet, or loading a wallet file +**\** if the daemon isnt synced it shouldnt be used by the wallet +**\** or creating a new wallet +**\** Restored wallet would not, it has no idea about where it has outputs. +**\** moneromooo: restored from seed has a hardcoded restore height +**\** It is similar to how hadoop works +**\** New wallet wouldn't either. They'd get that info from the daemon, who'd necessarily be synced up to that point. +**\** Here is the first answer it may be wrong +**\** Unless you delete your blockchain after the wallet learns abvout those. But then, your problem. +**\** moneromooo: in each of the instances we either have a block height or we have a date that we can correlate +**\** Oh, you want *all* outputs ? +**\** from that height or date, yes +**\** I like it. The attack would bre someone setting up a ton of fake nodes. +**\** basically have the daemon tunnel "remote node" functionality to a peer +**\** OK, so essentially, syncing the chain with no vcerification whatsoever. +**\** moneromooo: yes - "pre-syncing" it +**\** because the node will catch up, and then the wallet will know if outputs have been withheld +**\** I actually had an idea about this a few days ago, where you could sync to a daily set of key images and outputs. Daily, verifying nodes hash it into the blockchain. +**\** Basically a no lock read +**\** So you can sync to that, check hash, then sync the last day's chain on top. +**\** but this would leave the wallet in a state where it can't create transactions until proper sync'd? +**\** moneromooo: the problem with that model are the oracles +**\** It does require *some* trust, though. +**\** Go on ? +**\** so the tricky part is the rules to make the block invalid if the miner lies +**\** er, until the daemon is proper syncd? +**\** gingeropolous: the daemon could also tunnel requests for ring outputs or whatever +**\** the trust model is the same as using some random guy's remote node +**\** good idea. but still doesnt help users without enough disk or those on a slow connection +**\** True +**\** That's what I proposed #602 for +**\** People who do not want to run a full node +**\** i had a kind of mostly trustless idea for this +**\** people that don't want to run a full node at all have to then use something like the MyMonero apps using the MyMonero backend instead of their own +**\** or Exodus or Coinomi or whatever else exists +**\** that would poll multiple nodes for the same outputs and verify them +**\** and store those locally +**\** pero: that's even worse than a remote node +**\** fluffypony: +1 +**\* pero** sees himself out +**\** Or this and never sync tge daemon +**\** Lol +**\** What if the time connected to a remote node is limited? Just setting up the GUI it connects to a remote node, and they can use right away, while stuff is going on in the background? (Sorry, just an idea I had. Not a developer so I don't know if possible) +**\** the larger issue here is that we can't do something like SPV +**\** so we really have nothing between "run your own node" and "use a centralised service" +**\** Stuff = syncing +**\** Should we looking at people connecting to their own remote node form say a mobile device? +**\** rehrar: that's exactly what I'm suggesting, but let the daemon "tunnel" the requests through +**\** ArticMine: the model here is people who don't want to run a node at all, not at home, not on a VPS, not at all +**\** rehrar: that's what #605 does +**\** we already have a solution for people who are willing to run a node +**\** Sorry. A lot of the tech is going above my head to catch it all. :) +**\** Well, they can use paypal, and come back in 5 years. +**\** Tech talk +**\** #605 connects to a remote node while local node is syncing +**\** I agree, fluffy. I think the real issue is people not having enough knwoledge to install nodes. An installer on windows and .deb in apt would increase full nodes immensly. +**\** i like it. the pre-sync idea. using the daemon. it opens up the whole network as a source of remote nodes, which decentralizes the effort +**\** What if all this work gets done, but then this audience just uses web/mobile wallets anyways +**\** keep improving the ability for people to run their own node before making it easier for people to use a different model +**\** and because the daemon *is* running +**\** it will be synchronizing its own copy of the blockchain +**\** @xmreric that's the most likely outcome +**\** that is trickier +**\** people *are* going to use MyMonero / Exodus / Coinomi even if we have a magical remote node model that doesn't vampire the network +**\** It could even hold part of the chain and randomly ask for missing parts +**\** block data sync'd this way will need to be stored differently than from regular syncing +**\** peopl are going to use worse options than those even +**\** hyc: agreed +**\** pigeons: store on an exchange :-P +**\** I like the pre-sync as well. But until we have MyMonero/Edodus/Coinomi, people will use a remote node in an inefficient way +**\** @samsunggalaxyplayer then let's not make it easier by having a drop-down +**\** ^ +**\** why not make it easy while waiting for a better solution? +**\** remember that a lot of decisions we make today, we're stuck with for 5+ years +**\** the effort wall to hack the system to use a remote node isn't that steep anyway +**\** Jaquee: because ^^ +**\** people become reliant on quick fixes +**\** So somewhere we need the doc to say "you must have a computer with at least xx GB of disk space that you are willing to leave running 24/7" +**\* tewinget** knows this, and as such leaves most decision making to fluffypony so he can be blamed in 5 years. +**\** Ah, tewinget the Wise. +**\** in 2023 +**\** i just don't think we should be holding back on UX just because we don't have a better solution yet +**\** have a nice message, now that you have verified the blockchain, we notice you have been screwed, pick a better node next time +**\** lol +**\** Anyway, this has turned to a disparate set of confusing stuff now. +**\** Lol +**\** Jaquee: the GUI is meant to operate with a full node that you operate, it's not a lightweight GUI +**\** Do we want to encourage people connecting to a untrusted random node +**\** ArticMine: no we don't +**\** Summary: for smart syncing with fluffy's "pre-sync" approach, against anything that makes using a remote node easier +**\** For ppl who want to use a phone could it never sync? +**\** sounds like we need a monero node appliance, like the wifi router that everyone has in their house / flat +**\** I agree #602 is a short-term solution. I think it's better than telling people to go to MoneroWorld to get a random node, but if we have a better solution going forward, that's preferable +**\** Good idea +**\** yes but wifi routers tend to be 32bit +**\** Thats why i think installer for windows and adding .deb to apt repositories will have it so people can be guided through an install and proper installation can be verified +**\** And always use a random? +**\** guzzi: phone would be MyMonero + your own node / MyMonero backend OR Exodus OR Coinomi +**\** and they're not cheap +**\** Ok thanks +**\** Adoption rate will increase full node usage +**\** @JacobJeweler we're definitely working on improving that with the GUI +**\** I say make it easy for people to set up their own node to connect to. Appliance like +**\** That is horse poop +**\** with the auto-update thing +**\** perhaps there's room for an unofficial gui fork +**\** No way ppl walñnt full nodes +**\** gingeropolous: http://imgur.com/a/3mMBE +**\** in my mind the remote node thing has 2 components: 1) instant on 2) no blockchain storage. +**\** gingeropolous: pigeons is working on it +**\** right now the only way I see to make this easy is with kovri, so we can ignore firewall and port forwarding issues +**\** hyc: +1 +**\** we can address instant on with lots of things +**\** we can't address no blockchain storage. And those that don't want to store the blockchain will always use some lighter weight thing, so ... i think im rambling. +**\** Good point hyc! +**\** How about creating SD card images with the blockchain preloaded for a specific monerod release. You'd "just" have to download the image, flash it and start up monerod +**\** +1 hyc +**\** ah, like for the Pine64 or something similar +**\** pretty big downloads. they don't compress well at all. +**\** 13GB now +**\** and pine64 is to slow +**\** Does it even have native AES? +**\** pine64 isn't too slow? +**\** hyc: didn't you say you're running your full node fine on yours? +**\** pine64 yes +**\** pine64 can run a node +**\** yeah pine64 works ok as a fullnode. buy an expensive microSD +**\** alright +**\** I'll brb in like 10 min, fyi +**\** let's move on +**\** 5. Code + ticket discussion / Q & A +**\** ok. so #605 will not be merged? +**\** (we can carry on discussing this after the Kovri meeting) +**\** all right +**\** Jaquee: no not with the drop down +**\** you can release the bootleg edition +**\** lol +**\** I've gotten the impression that there should be more unit tests from reading the last dev meeting +**\** amiuhle: yes +**\** Lets be honest, most users have windows. And harddisks that can easily fit the lmdb database. If you want great adoption and more full nodes on the network (people installing and usong their local node for gui/cli). Thats where the focus on something like an installer should be at. +**\** what if we at least request tests for new PRs? +**\** Then you won't get PRs. +**\** that would help, but could be frustrating in a few components +**\** amiuhle: we don't want PRs from new contributors mired in a list of things-the-PR-must-have +**\** for instance, I added some to epee::stringtools, but those are isolated functions so its easy to setup the test env +**\** some of this stuff won't be easily detected in tests anyway. race condition with mining blocks, etc. +**\** one more thing regarding wallet2.cpp +**\** Sorry am on phone typing, slow to respond. +**\** hyc: yup. but figuring out a base framework for some areas might be helpful to get a baseline. but its decent chunk of work +**\** it is already at an unwieldy 5kloc, what's the opinion on splitting it into smaller parts? +**\** can't detect some of these with code coverage testing either. code cov can't tell you about logic you're missing. +**\** Tests can be added after the fact btw. +**\** Is there a split that makes sense ? +**\** And 5k is wieldy for any sane editor. +**\** moneomoo: takes 2gb+ to compile +**\** yeah I wouldn't worry about wallet2.cpp at the moment. +**\** mooo Im guessing vim ? +**\** 2GB+ to compile comes from all the boost headers and shit +**\** What I want is avoiding spamming the git log, as I use it a lot. +**\** ok +**\** vim works fine with 5k, but most other editors are also not shit. +**\** fireice-uk: thats partially coming from the epee headers though, but some split may help a bit +**\** Or... I assume. 5k is not much. +**\** I've done the experiment before. +**\** bbedit handles it fine +**\* anonimal** coughs +**\** splitting the file up to try to fit it under 2GB +**\** ok guys +**\** Kovri meeting +**\** made no diff. it's the headers, not the cpp source +**\** next meeting in 2 weeks, no time for Q&A, thanks for coming \ No newline at end of file diff --git a/_posts/2017-04-09-logs-for-the-Kovri-dev-meeting-held-on-2017-04-09.md b/_posts/2017-04-09-logs-for-the-Kovri-dev-meeting-held-on-2017-04-09.md new file mode 100644 index 00000000..08408176 --- /dev/null +++ b/_posts/2017-04-09-logs-for-the-Kovri-dev-meeting-held-on-2017-04-09.md @@ -0,0 +1,282 @@ +--- +layout: post +title: Logs for the Kovri Dev Meeting Held on 2017-04-09 +summary: Brief review of what has been completed since last meeting, Monero HackerOne Bounty, website discussion, and code & open tickets discussion +tags: [dev diaries, i2p, crypto] +author: dEBRUYNE / fluffypony +--- + +*April 9th, 2017* + +# Logs + +**\** 1. Greetings +**\** 2. Brief review of what's been completed since the previous meeting +**\** 3. Preparation for [96boards.org OpenHours showcase for Kovri / Monero](https://github.com/monero-project/meta/issues/46) +**\** 4. Status of [Monero HackerOne umbrella and bounty](https://github.com/monero-project/meta/issues/39) +**\** 5. Code + ticket discussion / Q & A +**\** 6. Any additional meeting items +**\** 7. Confirm next meeting date/time +**\** Hellloooo +**\ {-olark}** Hello party people +**\ [gingeropolous]** howdy! +**\** Hello +**\** hi +**\** Hi (observing excitedly) +**\ {-iDunk}** Hi +**\* moneromooo** greets again +**\ [endogenic]** no excitement allowed rehrar +**\** hi +**\** I'll see myself out then. +**\** 2. Brief review of what's been completed since the previous meeting +**\** For me, the past two weeks have spent focusing on 4 things: fixing the OpenBSD dynamic build, PR review/fixes/collaboration, NTCP, and RI (router info). +**\** a. Jeff at crypto++ has not been responsive lately so my CMake fix for their dynamic OpenBSD is still sitting in PR hell. +**\** b. Both moroccanmalinois and rakhimov have been PR'ing some great work +**\** c. Over time I've done bits and pieces of work on the NTCP implementation but hadn't had the chance to do a full study in java I2P's implementation until recently. +**\** Combined with more spec review (forunately, the spec is small) I've come up with 33 questions/TODOs specifically about, and for, our implementation. +**\** Once that was done, it turned out that I couldn't move forward until I worked out any potential RI issues. +**\** d. That lead me to the unmaintainable mess of our forked RI implementation, which has been neglected, so now at a minimum I'm working on a RI parser/reader/writer refactor. From there, unit-test *and then* back to NTCP so I can close that damn milestone issue >:| +**\** So, that's just on my end. Anyone else? +**\** I know guzzi is doing study for RAII refactoring. +**\** Salti's holding pattern for webextensions in FF is making progress +**\** Oooo cool +**\** How are they doing on that front? +**\** 1 of two issues i'm tracking are finished, second is still a ways off +**\** Review client context implimenting raii +**\** and no dev docs yet +**\** Looking at reload server tunnels https://github.com/monero-project/kovri/blob/master/src/client/context.cc#L321 +**\** Excellent, that all sounds good. Anything else before we move onto 3.? +**\ {-olark}** I have been slowly evaluating what will be needed to replace supercop with tweetnacl +**\** (well, I'm hoping FF will move faster but it sounds like they're at least *moving*) +**\ {-olark}** Can rip out all the ecdsa sig types at the same time to work towards the identity refactor work +**\** anonimal: yes. progress is progress. +**\** olark: ok this is for #485, sounds good. Would you be able to resolve #345 in the mean time? +**\ {-olark}** For EdDSA +**\ [fluffypony]** major thunderstorm here, so if I don't respond it's because I've been struck by lightning (or my house has) +**\** Eeek! No charred pony! +**\ {-olark}** anonimal: Sure +**\** fluffypony can you see the meeting or is internet intermittent? +**\** olark: nice! +**\** Ok, moving forward, +**\ {-olark}** I will find the time. I have been neglecting kovri :( +**\** Yes, come back soon ;) +**\** 3. Preparation for [96boards.org OpenHours showcase for Kovri / Monero](https://github.com/monero-project/meta/issues/46) +**\** Speaking of neglecting, I hope we don't let this opportunity slip by ^ +**\** Does anyone know of any effect voice masking software? Military grade (if there is such a thing). +**\** \*effective +**\ [fluffypony]** anonimal: nothing I know of, but I also don't know if that would be worthwhile or weird +**\ \* fluffypony** tries to convince anonimal to come out the pseudonymous closet +**\ {-pigeons}** yeah its annoying as hell to listen to +**\ {-pigeons}** mouthful of marbles works ok though +**\** I hear that Barry Manilow recently came out of the closet. +**\** Pennies +**\* anonimal** not that I'm a fan, nor am I in that sort of closet +**\** Well, I'm curious to hear the public's opinion on whether I should de-anon. Thoughts? +**\ [endogenic]** yes! +**\** moneromooo ^ #monero-dev +**\ [endogenic]** i will be your bodyguard +**\** lol awesome! X) +**\ [fluffypony]** anonimal: only reason I suggest it is because Kovri does need a voice, but ultimately it's your call +**\ [gingeropolous]** weren't you already on the monero missives? +**\ [fluffypony]** gingeropolous: no, that was jeff +**\** What ? What's in #monero-dev ? +**\ [endogenic]** anonimal: just think… we can hang out at meetups and such :) +**\ {-olark}** Ultimately your choice anonimal. +**\ {-olark}** Don't feel pressured to come out becuase people want you to ;) +**\** ^ seconded +**\** gingeropolous: ^ not Jeff at crypto++, Jeff a former problem contributor who, as he said, has family in U.S. intelligence. +**\ [gingeropolous]** he's satoshi. +**\** moneromooo I meant 'what's your opinion if any?' +**\* anonimal** and also threw question at #monero-dev in same line, sorry +**\ [gingeropolous]** my apologies. I obviously know whos who here. +**\** Of whether you should de-anon ? I wouldn't want to influence you to. +**\** Oh np, just clarifying since I said "Jeff" earlier. +**\** My view is that the more people actively keep their privacy, the less the massive pressure on everyone else to shed their privacy is. +**\** Hmm, good point. +**\** Not really related to this particular case, but having 99% of people not care about their privacy means that companies and everyone can just screw privacy and not get any noticeable blowback. +**\ [endogenic]** think only anonimal's in the position anonimal's in as kovri lead tho +**\** So I use Tor for random run off the mill browsing partly for that reason too. +**\ [fluffypony]** moneromooo: yes, but this is about his status as a contributor and maintainer +**\ [fluffypony]** after all, things get really boring if I'm the only one talking at conferences +**\** Well, his choice, and I don't want to interfere in it. But thanks for asking :) +**\ [endogenic]** \<3 +**\ [endogenic]** i wouldn't go that far fluffy +**\ [gingeropolous]** you could just "hire" a spokesperson to be your IRL talking head +**\ [gingeropolous]** and they *just* happen to know a *whole* lot about everything +**\ [endogenic]** rent-a-body +**\** Ok, so I'm hearing that if I de-anon I get a free(?) bodyguard and can freely promote more-so than what I can do now. I'm also hearing that no one wants to put that kind of pressure of a decision on me. +**\** I have to say though, I'm wearing more than 1 cap at any given time. Maybe one-too-many? It was a relief to finally sit down and write some code this week. It had been way too long since I've done that and I'm ALWAYS HERE working on kovri! +**\** I think gingeropolous suggested you should invent an alter ego for public appearances :) +**\ [endogenic]** you can choose when to do talks and when to reply to ppl imo +**\ [endogenic]** and i bet others will jump in to help +**\ [fluffypony]** "I'm fluffy...errrr...fluffynonimal, and I'm a Kovri developer" +**\ [endogenic]** just a question of letting us know how we can help +**\ {-pigeons}** even if you do come out, still consider the marbles for talks +**\ [gingeropolous]** well iDunk now its ruined +**\** Damn +**\** lol, I'll just show up with marbles in my mouth. +**\** I must say that, adding public-relations, I love the thought, but I do also love writing code. +**\** And people love targets, so that's always something to concern myself with. +**\** You can still do both. Choose the proportion you want +**\** "just a question of letting us know how we can help" \<-- thanks endogenic. I think what will help are 2 things: +**\** sgp good point +**\ [fluffypony]** anonimal: I think that there's probably less scope to talk about Kovri at conferences right now anyway, but it would be nice for someone to do some podcasts etc. in future +**\ [endogenic]** podcasts are a great idea. i honestly doubt most ppl who want to use something like tor even know tor needs an alternative +**\ [endogenic]** and i'd enjoy learning more about the kovri tech in that format +**\** What would help: 1. more people get more familiar with kovri technology so they can answer questions and promote too. And 2. maybe everyone present can give me a solid "yes" or "no" on if they want me to de-anon (i.e., putting aside any other thoughts and responding purely on instinctual feelings) +**\** bigreddmachine: ^ re: podcast, my decision sooner than later will effect that +**\ [gingeropolous]** just go full Mr. Robot. Loose touch with reality, veer into psychosis, and then even *you* don't know who you are. +**\** lololol gingeropolous X) +**\** I just started watching that show. 1 season in. No spoilers please! +**\** To de-anon should be personal chice in my opinion +**\** Ok I'd say we're on a tangent for point 3 but this kind of needs to be done IMHO. +**\** choice +**\** All in favor of me de-anoning: yay or nay? +**\* anonimal** don't be shy! +**\ [endogenic]** i personally agree it must be personal too. sry to be difficult. there are tradeoffs for sure +**\** Pros: can talk about it more openly, attract new talent with greater outreach, better inform community about developments. Cons: more likely to be a target, maybe you're really ugly +**\ [endogenic]** it's a kind of burden i think +**\** (just kidding on second con) +**\ [fluffypony]** anonimal: I don't know if we should vote for that, it's your call +**\** lol sgp maybe I'm missing a face entirely... +**\** fluffypony ok +**\** So resolving 3., fluffypony + pigeons, how's your schedule lately? +**\ [fluffypony]** pigeons is down my side of the world for a couple of weeks, so we can make time around that +**\** Oh neat! Should I contact Robert to schedule a definitive date now? +**\ [fluffypony]** well it depends on if you want to do me + pigeons or you + pigeons +**\** anonimal: soory, was afk. re the podcast bit, if you do decide to de-anon yourself, i'd be happy to host your coming out of the closet party! but garbling voice is doable too. +**\ [fluffypony]** or all 3 of us +**\** fluffypony: I would think either all 3 (or at minimum just you 2). bigreddmachine I'd like to hear/learn more about any garble tech available, even if it's annoying. +**\ [fluffypony]** anonimal: ok let's talk afterwards, and we can schedule it with them +**\** Ok will do +**\** bigreddmachine: I'll PM you later too +**\** Anything else on 3.? +**\** Voice garbling sounds very reversible (unless it's voice recogniation plus text to speech). +**\** TTS certainly would work. +**\* anonimal** considered TTS, maybe I should learn to type faster first +**\** (or prepared statements?) +**\** (defeats the fun of interviews/speeches/conferences?) +**\** Ok, we'll talk more later. +**\ [endogenic]** hehe seems a little creepy +**\** 4. Status of [Monero HackerOne umbrella and bounty](https://github.com/monero-project/meta/issues/39) +**\** Copy and "paste" words from movies, paste them one by one to make up sentences. Like the old words cut off from a newspaper :D +**\** lol moneromooo, not serial-killer-like in any way whatsoever... +**\** re: 4. We have hackerone.com/monero ! +**\ [fluffypony]** anonimal: has anything for 4. been written up in the style of an FFS proposal or not yet? +**\* anonimal** grabs only FFS for 4. +**\** Links is in the meta issue, one moment. +**\** https://forum.getmonero.org/6/ideas/87597/monero-bounty-for-hackerone +**\** Is that what you mean? +**\ [fluffypony]** ok - do you want me to move that to Funding Required in its current form? +**\** Eek, I should update? +**\** The prop looks unclear as-is +**\ [fluffypony]** probably worthwhile +**\** We decided on 500 to start +**\** Ok, I'll edit after the meeting or do you need me to do that now? +**\ [fluffypony]** no after is fine +**\** Ok +**\** So for 4, I still have to PR VRP's to the various repos. +**\** Also invite the appropriate people to H1. But fluffypony I think you'll want to do that? +**\ [fluffypony]** sure +**\** moneromooo is already in there. luigi is not yet though. +**\** Alright. From there we should raise the funds first and *then* start inviting hackers on H1. +**\** Any agreements/disagreements? +**\** I agree +**\** Btw, many hackers are already *on* H1, by invite I mean invite to start looking at our projects. +**\** Ok. Anything else on 4.? +**\** 5. Code + ticket discussion / Q & A +**\ [fluffypony]** nothing else from my side on 4 +**\* anonimal** takes peek +**\** re: website issue, is ajs here? +**\** present +**\** Hi! +**\** Any news the website front? +**\ {-pigeons}** No I am the holdup there +**\** Ok. ETA on resolving any holdups? +**\** shoot, i was just about to ask about that. didn't realize we had monero-project/kovri-site. how can i help? +**\** have backed up work that has been done and waiting for access to a server +**\** Btw rehrar popped in recently and said him and/or his wife would give a try a logo redesign. +**\** Hi. Yes. :D +**\ {-pigeons}** i'll try to set something up in 24 hours or so +**\** Wow, that fast? Cool. +**\ [pero]** so what happened to the logo i did +**\** pero: it was NACK'ed. This was clearly stated in github issue that I posted in the previous meeting. +**\** I'd also like to give the Kovri website a go, pending on the logo and branding. :) +**\ [pero]** why? +**\** pero: I don't have the files though if that's what you mean. +**\** fluffypony: ^ +**\ [pero]** you were sent the files +**\ [pero]** so as i see it, a contributor contributed a bunch of time and spiffied up the previous logo +**\** Not anymore. Tis' the magic of deleted emails. +**\ [pero]** the community was involved too... +**\ [pero]** then it unilaterally 'nack'd' +**\** Yes. This was all clearly stated in the github PR. +**\** Where is your logo work PR? +**\ [pero]** wow what a shitty way to waste contributor's time +**\** You PR'd nothing. Community opinion does not equal final decision. +**\** Off you go pero, the resident troll. +**\ [pero]** lol? +**\** You knew from the start that fluffypony and I would make a final decision. Do I really need to bring up logs from months ago? +**\ [pero]** the logo assets were emailed to you and pony +**\ [pero]** there was no request to pr anything +**\** rehrar bigreddmachine - I made a very basic Jekyll site.. files at: https://github.com/anonimal/kovri-site +**\ [pero]** the request was for the files to be emailed +**\ [pero]** and your 'troll' remark is uncalled for and rude? +**\ [pero]** wtf is that +**\** pero you have two options: 1. being kicked from this channel for disrupting a meeting or 2. venting into https://github.com/monero-project/kovri/pull/488 for all the world to see. +**\ [bigreddmachine]** ty ajs. will this be affected by the re-design that rehrar is doing? +**\** Well, I think ideally the redesign that is done for getmonero.org should have an influence on the Kovri website (just influence, not dictate) +**\** and the logo redesign I will propose (just a proposal) I think definitely should have a larger influence on the website +**\ [pero]** whats so hard about contacting the person that did the work? +**\** rehrar: that sounds good +**\** So before I start working on anything Kovri website related, we're going to try to get a logo to you guys before this week is over. +**\** I'll drop it on here and the Kovri repo as an issue to look over when it's done. +**\** And it is obviously open to suggestions or tweaks when we show it +**\ [bigreddmachine]** ty rehrar - but from a content standpoint, the re-design is sort-of content agnostic, right? as in, i could write a page and the formatting might change but if it's in a markdown file jekyll will just ingest it and reformat, right? +**\** for Kovri, not getmonero.org, right? +**\** Did you have any plans to re-use material from monero site (as to save time, etc.)? +**\ [bigreddmachine]** well, both i suppose, but kovri specifically +**\** bigreddmachine: site design is rudimentary and could be easily changed if need be +**\** The content is going to be restructured for getmonero.org, I'm not going to do a lot of work on copy, unless people think it's really needed. +**\ [bigreddmachine]** (sorry, i got us off topic) +**\* anonimal** whatever is easiest to maintain IMHO +**\** Pages will be shuffled around, and some things within pages will be shuffled around (all of this will be submitted in designs prior to everything being built) +**\** as for Kovri, it won't have nearly as much content yet, so I don't think it'll be a huge issue. +**\** does that answer your question? +**\** If not, the short answer is yes, it should be content agnostic, and I will work with you guys in the rare cases where it is not. +**\ [bigreddmachine]** not entirely but close enough, thanks. +**\ [bigreddmachine]** ahh, yeah that last bit helps +**\** great! +**\** Question: +**\** rehrar: IMHO, from the work of yours I've seen, since you're an actual designer/creator/implementer, I'm wondering if you, bigreddmachine, ajs and pigeons would consider being the 'website team' to get this up-and-running. I can move the repo when we're online. Does this sound fair or something of interest? +**\** It sounds like you're already doing that, I'm just wondering for my own piece of mind (e.g. do I need to re-schedule my work load for website work, etc.) +**\ [endogenic]** But not both! +**\** That sounds fine with me. Pardon me for my ignorance, but what will be bigredmachine, ajs, and pigeons roles? +**\ [bigreddmachine]** i'm happy to help with some content, as i am trying to learn about the tech anyway so documenting it is an obvious step. +**\** endogenic too, hop on the site train! +**\** if you can focus more on Kovri, I would do it. +**\** rehrar: re: bigreddmachine ajs and pigeons, let's chat after the meeting since we're out of time +**\ [bigreddmachine]** design-wise, i can give my two cents but i'd like to be hands off there. just more of a feedback guy, like "hey, this isn't intuative" or whatever +**\** I don't think any of us have a problem bugging you if we need something. +**\** I'm not able to stick around for much longer, actually. +**\** We can set up a meeting time for alter this week? +**\** \*later +**\** rehrar: just pop in anytime if you want to make an official website meeting +**\** sounds good +**\** gotta split. Seeya homes. +**\ [bigreddmachine]** i can't, but just summarize discussions on github issue and tag me +**\** bigreddmachine: that's right, you're not always irc'able. +**\ [fluffypony]** Can I take the bot down? I'm in a YouTube show mow +**\ [fluffypony]** Now +**\ [bigreddmachine]** anonimal: i try to stay off during week to stay focused on my job. +**\ [endogenic]** anonimal: oh no not me, i was just trolling about "fair or of interest" +**\ [bigreddmachine]** meow\* +**\** Ok, moving on 6. Any additional meeting items +**\** None from me. guzzi said like 2 lines. +**\ [endogenic]** I think pero could be of help on the site too as i think he has lots of exp there +**\** 7. Confirm next meeting date/tim +**\ [bigreddmachine]** just that i'll keep tracking FF proxy and looking for alternatives. +**\ [bigreddmachine]** 23 Apr? +**\** Yes, same time in two weeks. +**\ [fluffypony]** Yep +**\** Thank you everybody! \ No newline at end of file diff --git a/_posts/2017-04-09-overview-and-logs-for-the-dev-meeting-held-on-2017-04-09.md b/_posts/2017-04-09-overview-and-logs-for-the-dev-meeting-held-on-2017-04-09.md new file mode 100644 index 00000000..b7e9312f --- /dev/null +++ b/_posts/2017-04-09-overview-and-logs-for-the-dev-meeting-held-on-2017-04-09.md @@ -0,0 +1,277 @@ +--- +layout: post +title: Overview and Logs for the Dev Meeting Held on 2017-04-09 +summary: 0.10.3.2 release, repository naming, website redesign, decoy output selection algorithm, and static ring sizes +tags: [dev diaries, core, crypto] +author: dEBRUYNE / fluffypony +--- + +*April 9th, 2017* + +# Overview + +An overview [can be found on MoneroBase](https://monerobase.com/wiki/DevMeeting_2017-04-09). + +# Logs + +**\** ok +**\** 2. Brief review of what's been completed since the previous meeting +**\** so the main thing was the 0.10.3.1 release +**\** which has mostly been fine, no major breaking issues +**\** there are some GUI fixes that will go into 0.10.3.2, which we aim to tag and release soon +**\** before or after the fork ? +**\** which brings us to +**\** There's this bug with not merging destinations, which is overeager in not merging. +**\** 3. Code + ticket discussion / Q & A +**\** medusa: probably before, due to the thing that moneromooo just pointed out, which is a bit of an annoyance for exchanges +**\** allright thats good. i think a possible bugfix release after the fork shoudl be completely seperate too +**\** medusa: is there something you're expecting will break at the fork? :-P +**\** lets hope nothing is needed \<3 +**\** no +**\** ok shew +**\** I'm planning on merging PRs over the next couple of days +**\** are there any that are don't-merge-yet? +**\** The one I have outstanding for bin2hex +**\** Before merging the PR to name Monero GUI back to Monero Core, I thought it would be good to have a discussion here about that. But perhaps that can be saved for the end of today's meeting. +**\** Oh, I'd kinda forgot-ish about that one... +**\** #658 and #667 obviously +**\** It's currently unmergeable and I don't know if anyone looked at it recently +**\** xmr\_eric - we can discuss it now, it's part of this section anyway +**\** monermooo I will revise and push later today +**\** is he copying me +**\** rebase, damn phone +**\** vtnerd1112: I haven't since looking at it the first time, sounds good +**\** lol +**\** luigi1112: yes +**\** /nick fluffypony1112 +**\** Ok, well I'd like to hear from Jaquee. But my thoughts are that we rename Monero GUI back to Monero Core. Gingeropolous originally named it back to Monero GUI at the time, which was a decent idea, but I think in the end the central Monero software that the public is going to use should be called Core +**\** @xmr\_eric that was among the reasons for calling it Core initially +**\** I spent some time yesterday trying to find a word other than Core to differentiate ourselves from Bitcoin, like Monero Essentials or something, but none really work as well. +**\** Right. I think we should go back to that. +**\** also because I think that the current monero repo will become libmonero +**\** and then monero-cli? +**\** yeah +**\** makes sense +**\** so we end up with 3 repos? +**\** gui, cli and lib? +**\** Jaquee: yes eventually +**\** ok cool +**\** Jaquee: what are your thoughts on GUI vs. Core +**\** libwallet API is only used by gui for now. so i'm thining it could be moved to gui repo. +**\** i would prefer GUI +**\** https://github.com/monero-project/monero-core/issues/663 +**\** how about 'official' instead of 'core'? cause it'll be specified as the official 'gui', cli etc +**\** This isn't just naming the repo, this is naming the piece of software the repo produces +**\** As for names, I assume "Monero Qt" is out? That was once the standard for cryptocurrency wallets but seems to have lost favor. +**\** Essentially, it is branding +**\** if we're going to have lib and cli, and those seems like the optimal nomenclature for those, then i think the logical one for the gui is gui +**\** +1 +**\** or maybe core gui.. +**\** The public doesn't think in terms of CLI GUI +**\** People won't know what GUI means +**\** do they know what core means? +**\** i don't :P +**\** yea but core is kind of confusing since core seems to be lib +**\** pero: I was thinking more like libmonero, monero-tools, monero-core +**\** pero: i'd argue the optimal name for a gui should *not* have "gui" in the name. They aren't called FireFox GUI, Chrome GUI, Word GUI, etc +**\** just Monero +**\** No, but the point is Core is a word that people will begin to associate with that piece of software +**\** gingeropulos I agree +**\** What does Linux mean? +**\** I think core does have a bit of stench to it now +**\** at worst, monero app +**\** The application has to be the most atomic +**\** bigreddmachine: there's no lynx like version of firefox or chrome tho +**\** that I'm aware of +**\** To the public I mean +**\** The problem with naming it just Monero is that no other piece of software gets to be called Monero +**\** Which I'm ok with +**\** yes i can see reason in that argument bigreddmachine +**\** MoneroUser +**\** But it isn't good from a nomenclature standpoint +**\** "Monero Wallet"? +**\** what's monero-tools fluffypony ? the cli? +**\** pero: yes +**\** especially since they ship with the GUI +**\** ^ anyone can make their own wallet +**\** Could we maybe get on with the *dev* meeting... +**\** so that seems to make some sense +**\** ok let's table this for the next meeting, we can open a thread or discuss it further under an existing one +**\** s/thread/issue +**\** Great +**\** At least "Monero node", "Monero wallet cli", "Monero wallet gui" +**\** moneromooo, I like this bike shed. It can fit many bikes +**\** and then we'll make a decision at the next meeting +**\** sounds good +**\** Two cents: 2 repos: libmonero and monero. monero has optional cli build alongside gui. +**\** ok so 4. GetMonero.org redesign discussion +**\** rehrar wanted to show us the designs and get our input on it +**\** I don't want to take much time. Just want to get a special opinion from all the devs about the two proposed designs. +**\** If you haven't seen them already, you can find them here +**\** Design 1: http://imgur.com/a/MwyxX +**\** Design 2: http://imgur.com/a/H9i3z +**\** github link too? +**\** design 1 third draft imo +**\** The idea will be to redesign the current website and also to make an assets document that will have the HTML and CSS framework that we make so anyone can easily make more pages. +**\ {-olark}** Will these sites still be usable with javascript disabled? +**\** No JavaScript will be used. +**\** https://github.com/monero-project/monero-site/issues/245 +**\** All in Jekyll +**\** Sorry, thank you anonimal +**\** design 1 - draft 3 is the most popular on reddit. Most people are asking to add some of the community sponsored youtube vids to the homepage as well. +**\** 1 totally. Marketing addicted +**\** im pretty big on the 2nd one +**\** will these sites still be editable via github by random people, like the current site? +**\** design 2 is nice, but a little too clean +**\** gingeropolous: yes +**\** the first one is too generic and reminds me of shitty webapps/startups +**\** first one with some tweaks +**\** erm +**\** i agree, maybe some pretty-fication to #2 +**\** I think it's important to include one of the Monero introductory videos on the frontpage of whatever design is chosen. +**\** second one\* +**\ {-olark}** Ok +**\** cause it's an OSS / tech project after all +**\** vertp: I don't know if we really need multiple videos on the home page, just the intro one +**\** I think the second design is the most modular and easy to adapt to others making more pages as the site progresses after I'm done with it. +**\** i also prefer #2 +**\** As I mentioned, I still like 1.3 the best. 2 is still better than what we have right now though +**\** Since no one here will probably read that github issue, #2 looks like a tech spec but #1 can be worked with. If reddit has good response for #1 draft 3 then that direction is something to consider. +**\** endogenic / pero: I'm leaning that way too +**\** didn't realize we were doing a meeting this week; I'll be around in like an hour, have to catch a bus. +**\** fluffypony: yes, good point. shouldn't have used the plural tense. +**\** We were playing with adding some color to design 2 +**\** anonimal: otoh we can take some of the elements from design 1, draft 3 and incorporate them into design 2 - @rehrar? +**\** And I think we have a good idea of how to do it. +**\** We should have something for it soon. +**\** Yes, we'll work on that. +**\** site should be an information portal ultimately, the first design is getting the user to download an app asap imo +**\** Any particular things from that design to Port? +**\** it is not aligned with what the site's goals should be +**\** i like #2 +**\** I agree. +**\** Site's goals? It's a website. +**\** yes the goal of providing information +**\** Monero is a unique project, and having a standard site is doing Monero a disservice imo. +**\** @rehrar the world background and the different sections are nice +**\** backgrounds for different sections I mean +**\** I agree that design 2 is a bit sterilized. +**\** Old people need to be able to use this too. Old people don't like to read most of the time because fonts are too small and if they are computer illiterate they don't know how to zoom. +**\** Technical illiteracy = most of planet earth. +**\** Websites are absolutely about a main goal first. That's what good design is about. Funneling people into a path that they already want to go. Eg "What is this Monero thing?" +**\** that argument is pointless anonimal +**\** old people that are actively using the internet have learned how to deal with those issues +**\** anonimal: old people aren't going to use Monero, they'll use some L2 or L3 system on top of it +**\** pero this is a dev meeting, feel free to leave anytime. +**\** You are not a dev. +**\** else they wouldnt be using it +**\** lol +**\** so it's also got to serve the target audience +**\** Yeah, maybe we could have dev meeting and monero meeting. +**\** If the overwhelming majority thinks design 1 even after draft 3 of design 2 then I will probably go with it +**\** moneromooo: this is specifically to get dev input on the design +**\** But we're going to add some color to the design 2. +**\** I think it should be given more underlining about how to buy Monero. Where do you think to put the link? +**\** Monero just has very...Specific branding colors. XD +**\** @rehrar let's see what you come up with on design 2 and then see +**\** Aight. Will do. +**\** hrumag2: no, definitely not, that sort of funnel makes us liable +**\** ... more than "get involved" I think +**\** When I say 'old', I mean plebeian elders of planet earth. +**\** That's all from me. +**\** Any last second opinions? +**\** i have a concern with project scope/budget +**\** i think the work effort is being underestimated and it's underbudgeted +**\** Not underestimated, but underbudgeted for sure. +**\** @rehrar well we do a second FFS if needed, let's see how it goes +**\** On purpose. Part of it is my donation to the community. I believe in it. +**\** Ok. :) +**\** ok on that note +**\** let's move on to 5. Any additional meeting items +**\** only thing I want to ask is just to find out from Jaquee if he managed to get hold of Qt +**\** no, sorry. i've had a busy week +**\** Well, I had this list of bugs I think can be closed. Which should be greppable with mooo.\*bug.\*clos +**\** will take care of that issue in a couple of days +**\** np +**\** moneromooo: yep I'll be closing issues in the next few days too +**\** Thanks. +**\** anything else? +**\** I have a Q: What is the "correct" way to propose an improvement / protocol change to Monero? Bitcoin has the BIP system, whereas for Monero things are basically handled via GitHub issues in the main repo. That means that, though discussions are documented permanently, they can be difficult to find and track over time. Is Monero getting to where it is big enough and has enough contributors that maybe we s +**\** hould have a BIP-like process? +**\** bigreddmachine: easiest way is just for us to have a label on Github (for consensus-critical changes) +**\ {-olark}** I have a few things I would like to talk about regarding https://github.com/monero-project/monero/issues/1673 I should post another update soon +**\ {-olark}** I can wait +**\** fluffypony: but is that the ideal way to do it? after getting merged, closed, etc, those discussions are very tough to find. Something like BIP is a much better long-term place for those discussions +**\** bigreddmachine: I think that changes should be written up as an MRL paper +**\** I'm not asking because I have a specific proposal to make, but because it seems we don't have an ideal system that can grow well +**\** fluffypony: and submitted to MRL? +**\** yes +**\** available permanently as an MRL research bulletin, which makes recommendations to the implementors, and exists as a living document +**\** okay - then shouldn't that be the case for anything consensus changing? +**\** what got me thinking about it is that the discussions behind this month's hard fork are very tough to find. i know it's a small change, but i feel like we don't have a precedent set +**\** bigreddmachine: mostly yes, although I think some things are a little small to write up and might have to be bundled together +**\** let's give that a spin and see how it goes, we can always change the process later on +**\** what makes something "too small" though? I guess my point is that maybe we need to add guidelines to the main repo that explain all this for people to see in the future +**\** olark: do you want to discuss 1673 now? we still have 19 mins before the Kovri meeting +**\** I am happy to do that and make the PR, +**\ {-olark}** Sure +**\ {-olark}** I just wanted to talk about a couple quick things +**\** bigreddmachine: it's subjective - when we changed the block time from 1 min to 2 mins, for eg., the reasons were obvious - yes please do write it up and PR it +**\ {-olark}** What people think about having 3 static ringsizes for monero similar to how we have static fee priorities. +**\ {-olark}** This was an idea moneromooo had brought up in the issue +**\** What ringsizes are you proposing? +**\ {-olark}** To protect users from making foolish mistakes reusing irregular ringsizes +**\** I was about to write "I like it", so I now see why I do... :D +**\** olark: I like it because it removes fingerprinting / metadata leaks +**\ {-olark}** Well if September is mandatory 4 i was thinking like 4, 12, 50 or something similar the details don't matter at this moment but just what people think about having this in place. +**\** I'm fine with it, but 4 is way too small as the minimum, even per the old MRL recommendations +**\ {-olark}** The other thing was since I have been surveying the bitcoin blockchain for a while there is large bias for spent outputs in the past day +**\** to clarify - unlike fees, which *could* be changed on the user-end to something else, this will make non-standard ring sizes be against the consensus protocol? +**\ {-olark}** and how this affects the attack in MRL-001 +**\** bigreddmachine: yes +**\** We could wait to see luigi1112's final ringct sizes, then see how those vary with increasing mixin. +**\** moneromooo: agreed +**\** why only three choices? +**\** jwinterm: so that people actually use the two other than the default +**\** To avoid splitting txes in too many classes. +**\** So how about 10, 20, 50, 100? Something like that. Pending the research of course +**\** you want to get lost in the mix, remember :) +**\** So fireice\_uk is working on the rpc download changes before any crypto stuff ... ? +**\ {-olark}** The assumption in MRL-001 is that an attacker would need roughly 80% of outputs in the entire blockchain to de-anon a transaction but in reality if we use an output selection algo similar to what my survey results convey than in reality an attacker would only need 70%ish of spent outputs in the past day to reliably de-anon some transactions +**\** Oops thought that topic was done +**\** ^ with what ringsize? +**\** vtnerd1112: yes - we decided in the last meeting that he'd switch milestone orders around +**\** Oh, that ought to be done on 0MQ then. +**\ {-olark}** Smooth and myself had come to a conclusion that mixin 4 is fine but if the attack in MRL-001 is made easier with a selection algo like I am suggesting we may need to increase the mandatory ringsizes to protect against an attack like MRL-001 +**\** olark: this changes with zipf, right? +**\** ie. a great portion of the ring uses the past day's outputs +**\** Ok, pigeons told me mymonero seemed to be under lots of load. Ive got some preliminary work done that he could continue to completion +**\** Just enough to give mymonero a bump hopefully +**\** vtnerd1112: that's fine, maybe ping him and tell him that? fireice\_uk never attends dev meetings and is never on IRC +**\** Maybe that's not actually bad. +**\ {-olark}** What to increase it to is up in the air obviously. Still have more work to do +**\ {-olark}** fluffypony: Yes. Based on the survey I have done so far roughly 70% of spent outputs are from the past day. Future surveying will be going over 2011-2012 to see if there is any change in the distributions. +**\** ok I'm fine with that - olark, what are your thoughts on writing it up as an MRL paper later on once the discussion is finalised? +**\** I think current min is still 2. We could go to 4 in september, and still increase later. +**\** I think we should increase it >4 in September +**\** -olark: is there a way to see what the distribution looks like for txs not related to mining? i'd guess a lot of the quickness in spending is from pools transfering out coins to miners, but in the future this might be a much smaller proportion +**\** Are we still playing around with having a static ringsize? +**\** Pool payment txes are often with more than 2 outputs. +**\** @xmr\_eric yes +**\** Cool +**\** moneromooo: with the new range proofs etc. it might be worthwhile just making the min based on that +**\** Not a guarantee of course. Especially now -\_- +**\ {-olark}** fluffypony: Sure I can write an MRL paper once I have more of it fleshed out. +**\** can always use like a 10 output tx as a measuring bar +**\** fluffypony: sounds good +**\** ^ interesting +**\ {-olark}** xmr\_eric: The idea is having 3 static ringsizes for varying levels of paranoia similar to the different fee priorities we have. +**\** Right +**\** moneromooo: if we're just looking for a filter on pool txs, we can always use the pools' apis to get txids. my point was those txs might be 50% of all txs now, but 5% two years from now, which impacts the math. +**\** are disposable / one-time addresses happening? I didn't see it make the list of things not to pull in. +**\** That allows me to... +**\** luigi1112: is kenshi84's disposable address patch ready in the theoretical sense, you think ? ie, can I go over it again assuming the math/crypto's final ? +**\** I haven't looked at it in a while, I'll have to re-review the PR to both the MRL and normal repos +**\** ok we need to wrap up - let's discuss it further later on +**\** 6. Confirm next meeting date/time +**\** April 23 \ No newline at end of file diff --git a/_posts/2017-04-19-an-unofficial-response-to-an-empirical-analysis-of-linkability.md b/_posts/2017-04-19-an-unofficial-response-to-an-empirical-analysis-of-linkability.md new file mode 100644 index 00000000..fa642dd2 --- /dev/null +++ b/_posts/2017-04-19-an-unofficial-response-to-an-empirical-analysis-of-linkability.md @@ -0,0 +1,103 @@ +--- +layout: post +title: An Unofficial Response to "An Empirical Analysis of Linkability in the Monero Blockchain" +summary: A community-drafted response to Andrew Miller, et al. +tags: [core, crypto, research] +author: Justin Ehrenhofer (SamsungGalaxyPlayer) and the Monero community +--- + +# Preface + +This release attempts to contain the opinions of the Monero community. It is possible that not every viewpoint is expressed, but this paper includes the best response to the author's ability that encapsulates all these opinions. The author opens all discussion to how certain viewpoints are represented, and the purpose of this response is solely for easier documentation by interested parties. He has done the best to include sources wherever possible, and to be as accurate as possible. For any concerns with this publication, please express them to the [author's Reddit account](https://www.reddit.com/u/SamsungGalaxyPlayer) or on [the Monero subreddit](https://www.reddit.com/r/Monero/). This version has been updated for clarity, though the core content has remained unchanged. + +The Monero contributors and community at large always appreciate any research done on Monero's technology. They heavily encourage constructive criticism of all cryptocurrencies. + +# Notable Findings + +The Monero contributors appreciate the effort that has gone into this mentioned publication and research methods. It helps quantify several realizations that had already been known to the Monero community at large for a long time (ref: [MRL-0001](https://lab.getmonero.org/pubs/MRL-0001.pdf) and [MRL-0004](https://lab.getmonero.org/pubs/MRL-0004.pdf)), including the following: + +1. 0-mixin transactions (those that only include the real input and no others) are traceable on the blockchain. [MRL-0001](https://lab.getmonero.org/pubs/MRL-0001.pdf) (published September 2014) also points this out, and Monero reacted to the concern by prohibiting 0-mixin transactions from the network in April 2016. The current minimum mixin allowed on the network is 2, which was mandated in March 2016. In September 2017, the minimum will be increased to at least 4, though there is [some discussion](https://github.com/monero-project/monero/issues/1673) going on in the community to choose the exact value. For clarification of terms used, ringsize is a newly-adopted term to replace mixin with the intentions of removing comparisons to traditional mixing services. Ringsize = mixin + 1. + +2. The prohibition of 0-mixin transactions has allowed the network to recover relatively quickly by making it harder to know which input is used. This paper helps quantify this recovery, from about 95% traceable to 20% traceable (see appendix). + +3. The proportion of transactions that have their inputs deducible has fallen substantially from 1 January 2016 to 1 Feb 2017 with 2 and 4 mixin transactions. Respectively, these fell from 82% and 72% to 41% and 23% (see appendix). Furthermore, this proportion is down to 0% with RingCT transactions, which are now [over 99% of all new transactions on the network](http://moneroblocks.info/stats). + +4. The phenomenon where the most recent input is the real one is a concern when using Monero. There is no way to prove that this input is indeed the correct one, and with recent transactions, the assertion is nearly impossible to prove and is accurate less than half of the time. As the report states, there is about a 40% chance that the most recent input in a default transaction is the real one. Ideally, this number should be closer to 20% (1 in 5). Note that this does not mean that there is a 40% chance that this transaction is traceable (see appendix). Increasing the transaction ringsize has only a marginal improvement. + +# Recommendations and Responses + +The following are the recommendations listed in the paper and responses to them: + +1. The mixing sampling distribution should be modified to closer match the real distribution. We agree with this recommendation. The discussion covering the possible ways to do this, along with all associated research, [can be seen on GitHub](https://github.com/monero-project/monero/issues/1673) . As the paper acknowledges, we made a temporary improvement to the selection algorithm to choose more recent inputs (instead of pure random selection) in December 2016. Further improvements are required, and they are planned to be ready before or at the September 2017 hardfork date. As the paper notes, this change is not consensus-critical. It can be done the day after completion without a hardfork. + +2. The Monero community should engage in further data-backed analysis of privacy claims. We agree with this recommendation. Data-backed claims are an excellent way to improve the Monero privacy and security features. As stated in the paper, the threats discussed in the paper were discussed in the community previously. Unlike the paper claims, these discussions were not "informal"; instead, they were published in our [MRL-0004](https://lab.getmonero.org/pubs/MRL-0004.pdf) research paper in January 2015. Nevertheless, several of these attack vectors explained in the Decentralized Systems Lab paper are quantified for the first time. + +3. Monero users should be warned that their prior transactions are likely vulnerable to linking analysis. We mostly disagree with this recommendation. The vulnerabilities of 0-mixin transactions were well-documented and continuously shared with the Monero community while they were still allowed. The first research paper shared in the Monero community ([MRL-0001](https://lab.getmonero.org/pubs/MRL-0001.pdf)) was published in September 2014. Furthermore, most of Monero's community growth occurred after these 0-mixin transactions were prohibited across the network. + +# Concerns + +The Monero community would like to list several concerns with this research paper. They are documented below: + +1. We believe that a large proportion of 0-mixin transactions are pool payouts. These transactions should come to no one's surprise that they are traceable, since the pools themselves publish the payment amount to each transaction hash. Thus, we believe that the claims stemming from the traceability of transactions before 0-mixin transactions were banned to be misplaced. If, for example, 50% of non-pool payouts used a positive mixin and 0% of pool payouts did, then the traceability is less for the transactions that use these mixins and greater for pool payouts. We recommend that this is acknowledged in a later iteration of the paper. Ideally, the proportion of pool payouts can be found and compared to the proportion of non-pool payouts, with different traceability proportions for each. There are several reasons why these transactions neither reduce the anonymity of the transaction itself or other users. In regards to the former, coinbase transactions (ie: new rewards given to the pool) are 0-mixin, since having mixins is useless if the input is brand new and seen for the first time. Anyone who mines understands that the source of their money is clear, and so pools received little pressure to increase the ringsize for payout transactions. In regards to other transactions, the pool payouts occur within the day, reducing the negative impact spending these transactions has on other users who may have borrowed the input for their transaction. Thus, pool payouts should include additional mixins, but excluding them has relatively minimal harm. The larger threat is the opportunity cost, where the additional mixins could provide greater levels of privacy for other users. Furthermore, all transactions are still unlinkable by the MRL definition of the word (see "Other Information" point 4) ([source](https://www.reddit.com/r/Monero/comments/65dj7u/an_empirical_analysis_of_linkability_in_the/dga1rza/?context=1)). + +2. We think further emphasis should have been placed in the paper to explain that the claims are only minimally applicable with the state of Monero transactions since March 2016, with the relevance decreasing over time. Though it is mentioned that their first analysis method has little if any current or future relevance, the claims still include these transactions. 0-mixin transactions were prohibited in March 2016, and most transaction volume for the year occurred during and after August. Nevertheless, many of these post-March transactions have inputs that can be deducible, but the traceability typically is not as severe as with 0-mixin transactions. The transactions that are most vulnerable are those in 2014 and 2015, as well as some time needed for the network to recover. + +3. Under the "ethics" section, they state that the paper was published immediately before countermeasures could be deployed. While this is understandable from the given perspective that the blockchain history is not going away anytime soon (or ever), we wish that they had given us an advance copy of the finished draft so that we could have discussed our concerns with the report itself. We wish not to censor any of the research (instead, we encourage research!); however, we hope that future care can be taken before the release of misleading assertions. + +4. Andrew Miller was named in the paper as a consultant to the Zerocoin Electric Coin Company and a board member of the ZCash Foundation. ZCash is a cryptocurrency with a focus on privacy that uses different technology than Monero. However, [he downplayed his involvement in an interview](https://cointelegraph.com/news/monero-transactions-history-can-be-revealed-and-exposed-research) about this paper. We feel author involvement in cryptocurrencies with similar interests should be fully disclosed, though he did refer people to the first page of the report. Nevertheless, we feel that Miller's disclosure of his contribution to a competing project was unsatisfactory, given the severity of the allegations in the paper. + +# Other Information + +1. The timing of the publication. This paper was released approximately an hour before the hardfork. While it is impossible to know the reason for the specific timing without an admission, we speculate that this was timed to draw as much attention to the paper as possible. More people would have been tuning in to see how the hardfork was proceeding than typical community participation traffic. Andrew Miller has responded to this criticism in a Reddit comment, saying "the timing of our release with the imminent hard fork was totally unintentional and a coincidence. No one on the team noticed there was a hardfork planned, and we'd definitely have delayed till afterward if we had." + +2. This paper was shared as "new research" about Monero. While the research is itself new and some of the analysis is the first time that some concerns have been quantified, these concerns themselves are not new. In sharing the paper, the authors often posted misleading claims that asserted these concerns were new. + +3. The Monero Core Team was given an advance draft of the report on 15 March 2017. This report at the time looked only at transactions before January 2017. All further edits to the paper were published before consulting with the Core Team. Riccardo Spagni, known to many as fluffypony or fluffyponyza, responded commending the efforts and stated at the time that the 0-mixin analysis confirmed previous work on [MRL-0004](https://lab.getmonero.org/pubs/MRL-0004.pdf). During the email exchange, Spagni suggested that the research also be published in the Monero Research Lab research, an idea Andrew Miller seemed open to at the time. Furthermore, the real release date was later than the target given to the Core Team, and the Core Team was not given a new estimated date of release. + +4. The paper refers to the traceability of transactions in the blockchain as "linkability". We encourage the authors to change the terminology to "traceability", since linkability typically refers to the ability to connect cryptocurrency wallet location to real-world locations. This will help clear up misconceptions held by many community members, since the Monero Research Lab refers to the connection of funds within the cryptocurrency as "traceability." + +5. This paper has not yet been published, is not finalized, and is not yet peer reviewed. Thus, there will most certainly be changes to this research paper before publication. We suggest that all claims and research be taken as preliminary and not concrete, since not enough people have evaluated their methods of research yet. + +# Conclusion + +We appreciate the effort that went into this research paper, but we suggest the following changes for later improvements: + +1. A re-evaluation of recommendation #3. + +2. A consideration among 0-mixin transactions for pool payouts. + +3. A clearer explanation of claims made in the paper, with separations for the history of all transactions and those used since March 2016. It is disappointing to treat the blockchain data as static when the technology has evolved significantly since Monero's launch. + +4. Future drafts to be shared with the Monero Core Team before release. Their contact information is [dev@getmonero.org](mailto:dev@getmonero.org). + +5. Be more conservative sharing the results. We understand that the authors have an incentive to share the results with others and we also want them to be shared, but we ask that they refrain from using misleading claims to gather traffic (see appendix for example). + +6. Consider cooperating with Riccardo Spagni to permanently include the research portion of this paper in our Monero Research Lab documents. + +# Appendix + +**Figure 5 from the report showing the fraction of deducible inputs. Notice the large drops following block height 1,000,000, when 0-mixin transactions were prohibited. Furthermore, these inputs likely do not include all those used in a single transaction. For instance, for a mixin 9 transaction, 5 may be deduced. This means that the inputs would be reported here as deducible, even if the transaction is not traceable.** + + + +**Table 2 from the report showing the proportion of transactions with a positive mixin that can be deduced. We want to make clear that the findings of this chart and analysis method have absoutely zero relevance to RingCT transactions.** + + + +**Table 3 from the report showing the proportion of deducible transactions where the real input is also the most recently used one in the transaction.** + + + +**Examples of statements we find misleading** + +This is a tweet from a contributor to the paper. + + + +This image is from the [CoinTelegraph interview](https://cointelegraph.com/news/monero-transactions-history-can-be-revealed-and-exposed-research). Based on the wording, you may think an attacker could determine with certainty which input is yours. However, the attacker can guess and be correct less than half of the time. Furthermore, even if the attacker guesses correctly, there is no way of proving this with certainty with data from the blockchain alone. + + + +Andrew Miller asked us to include other statements from the researchers or ZCash Foundation members that we feel is misleading. This paper is not supposed to be a comprehensive list of such statements. It is only useful in providing a few examples. + +This draft was shown to Andrew Miller before release on the website. Some of his considerations have been included in this response. diff --git a/_posts/2017-04-23-logs-for-the-Kovri-dev-meeting-held-on-2017-04-23.md b/_posts/2017-04-23-logs-for-the-Kovri-dev-meeting-held-on-2017-04-23.md new file mode 100644 index 00000000..fb227551 --- /dev/null +++ b/_posts/2017-04-23-logs-for-the-Kovri-dev-meeting-held-on-2017-04-23.md @@ -0,0 +1,91 @@ +--- +layout: post +title: Logs for the Kovri Dev Meeting Held on 2017-04-23 +summary: Brief review of what has been completed since last meeting, Monero HackerOne Bounty, 96boards OpenHours showcase, Github repo privilege discussion, website discussion, and code & open tickets discussion +tags: [dev diaries, i2p, crypto] +author: dEBRUYNE / fluffypony +--- + +*April 23th, 2017* + +# Logs + +**\** 1. Greetings +**\** 2. Brief review of what's been completed since the previous meeting +**\** 3. More preparation for [96boards.org OpenHours showcase for Kovri / Monero](https://github.com/monero-project/meta/issues/46) (@fluffypony @danrmiller location status, @anonimal "de-anon consideration" status) +**\** 4. Status (again) of [Monero HackerOne umbrella and bounty](https://github.com/monero-project/meta/issues/39). [hackerone.com/monero](https://hackerone.com/monero) is online but we need to resolve FFS funding before inviting researchers. VRP status for all projects + bounty status +**\** 5. Website status (@rehrar @bigreddmachine @alvinjoelsantos @danrmiller) +**\** 6. Code + ticket discussion / Q & A +**\** 7. Any additional meeting items +**\** 8. Confirm next meeting date/time +**\** Hello. It looks like fluffypony is MIA. +**\** 2. Brief review of what's been completed since the previous meeting +**\** https://github.com/monero-project/kovri/pulse/monthly \<-- #615 to #629, in particular #627 +**\** Anything else before we move onto 3.? +**\** 3. More preparation for [96boards.org OpenHours showcase for Kovri / Monero](https://github.com/monero-project/meta/issues/46) (@fluffypony @danrmiller location status, @anonimal "de-anon consideration" status) +**\** fluffypony is MIA, I think pigeons is MIA, I'm not de-anoning for the time being. +**\** Anything else on 3.? +**\** on 2 i am working on removing the global client context. +**\** Whatever your strategy is, the same strategy *should* apply to core context, just FYI. +**\* anonimal** we can talk more in 6. +**\** 4. Status (again) of [Monero HackerOne umbrella and bounty](https://github.com/monero-project/meta/issues/39). [hackerone.com/monero](https://hackerone.com/monero) is online but we need to resolve FFS funding before inviting researchers. VRP status for all projects + bounty status +**\** fluffypony needs to move this to funding required https://forum.getmonero.org/6/ideas/87597/monero-bounty-for-hackerone +**\** We can't move forward until that happens. +**\** I've submitted a VRP to monero/#1995 +**\** luigi1112: is that something you have privs to do ? +**\** (also surae's). +**\** Once #1995 is fleshed out, I'll submit to the core repo and the website with relevant adjustments (as we discussed in previous meeting(s)) +**\* anonimal** not sure if luigi is around, anything else on 4.? +**\** Before the alpha release, if i find a bug that can, for example, crash a router, should i go through the process or is it cool to just PR ? +**\** moroccanmalinois: PR. We probably won't even apply our VRP until we are in beta, btw. +**\** We should add a note if that will be the case. +**\** ok +**\** 5. Website status (@rehrar @bigreddmachine @alvinjoelsantos @danrmiller) +**\* anonimal** has nothing on 5., will await any response +**\** Alright, more no-shows AFAICT :/ +**\** 6. Code + ticket discussion / Q & A +**\** like you said move to the other contexts after client context for me. +**\** moroccanmalinois: re: #624, I received a response saying that he'll look into the issue. +**\** ok +**\** guzzijones12: you can PR the client one first before moving onto core. There may be related issues to resolve anyway. +**\** (as long as it works) +**\** yes ok. +**\** Anything else on 6.? Questions? +**\** 7. Any additional meeting items +**\** None from me. Anyone else? +**\** i am good. +**\** I am good +**\** 8. Confirm next meeting date/time +**\** Two weeks, same time. +**\** Thanks everyone. In under 20 minutes! +**\** Sorry here. +**\** Lel. I was expecting meeting at 1. +**\** tumbleweeds +**\** ;) +**\** hows the Kovri site? +**\** any news on that end? +**\** Well, I showed the design for it, which was based off of the chosen Monero design. +**\** I've been making Monero wires. +**\** The Kovri site should be easier since there's not as much info. +**\** cool - great work +**\** Because of that, I'd like to make custom pages for each Kovri page based on the same CSS framework that will be developed for Monero. +**\** The goal for both sites is to make upkeep and adding/editing pages as simple as possible. As simple as copy and pasting out of a HTML/css assets document to construct the blocks of pages. +**\** fab +**\** sounds good my man +**\** If you'd like to take a look at the wires, let me know. +**\** I'm still toying with the garlic logo when I feel inclined. :P +**\** :) +**\** got a link to the latest wires? +**\** hard to make the logo and make it look garlic with those colors. imo +**\** Sure. I'll PM them to you. +**\** sorry afk. will be around later, ping again if you think about it +**\** luigi1112: can you move this to funding required? fp said he would do it soon after the last meeting IIRC https://forum.getmonero.org/6/ideas/87597/monero-bounty-for-hackerone +**\** I probably can, not at computer right now though +**\** k +**\** moroccanmalinois: new proposal open. #630 +**\** 5. Website status: @pigeons got the site I worked on up and running on a server, but I guesss we will go with @rehrar design since it is better +**\** as far as the deanon goes, I actually like that our figurehead working on Kovri is anonymous +**\** just food for thought +**\** Perhaps I'm in the minority, but I think it's both prudent (from a rubber hose attack perspective) and aligns with the ethos of the project. +**\** @anonimal +**\** Sounds fair. \ No newline at end of file diff --git a/_posts/2017-05-07-logs-for-the-Kovri-dev-meeting-held-on-2017-05-07.md b/_posts/2017-05-07-logs-for-the-Kovri-dev-meeting-held-on-2017-05-07.md new file mode 100644 index 00000000..b7c199a6 --- /dev/null +++ b/_posts/2017-05-07-logs-for-the-Kovri-dev-meeting-held-on-2017-05-07.md @@ -0,0 +1,201 @@ +--- +layout: post +title: Logs for the Kovri Dev Meeting Held on 2017-05-07 +summary: Brief review of what has been completed since last meeting, Monero HackerOne Bounty, 96boards OpenHours showcase, website discussion, and code & open tickets discussion +tags: [dev diaries, i2p, crypto] +author: dEBRUYNE / fluffypony +--- + +*May 7th, 2017* + +# Logs + +**\** 1. Greetings +**\** 2. Brief review of what's been completed since the previous meeting +**\** 3. More preparation for [96boards.org OpenHours showcase for Kovri / Monero](https://github.com/monero-project/meta/issues/46) (@fluffypony @danrmiller location status) +**\** 4. Status (again) of [Monero HackerOne umbrella and bounty](https://github.com/monero-project/meta/issues/39). [hackerone.com/monero](https://hackerone.com/monero) is online but we need to resolve FFS funding before inviting researchers. VRP status for all projects + bounty status +**\** 5. Open forum for https://github.com/monero-project/kovri/issues/630 +**\** 6. Website status (@rehrar @bigreddmachine @alvinjoelsantos @danrmiller) +**\** 7. @EinMByte ...where is he? Github repo privilege discussion +**\** 8. Code + ticket discussion / Q & A +**\** 9. Any additional meeting items +**\** 10. Confirm next meeting date/time +**\** Hello +**\** hi +**\** hey! +**\** o/ +**\** Here +**\** \o +**\ {-fluffypony}** hi! +**\** Here for a bit, then gone, then back. +**\** Yay, enough people for a party. +**\** Hello +**\** 2. Brief review of what's been completed since the previous meeting +**\** 3...2...1... KOVRI!!! +**\** hello +**\** For me, see http://forum.getmonero.org/9/work-in-progress/86967/anonimal-s-kovri-full-time-development-funding-thread?page=&noscroll=1#post-90900 +**\** moroccanmalinois can fill us in on his work. +**\** i've been playing with fuzz testing +**\ {-fluffypony}** nice +**\** I've looked through the PR's, looks like fun. +**\** it's the beginning. More tests to come +**\** Any questions/comments on point 2? +**\ {-fluffypony}** and guzzi ? +**\** guzzi is not here, ...again... +**\** He says he's doing work but I haven't seen a commit or question from him in over 7 weeks, AFAICT. +**\** I think he's trying to separate the contexts from the singleton. At least that's the end goal. +**\ {-fluffypony}** guzzi: when you read this, please make an effort to attend meetings +**\ {-fluffypony}** I know you're around at other times, but meetings are important +**\** Yes, please. +**\** Ok, anything else on 2.? +**\ {-fluffypony}** no +**\** 3. More preparation for [96boards.org OpenHours showcase for Kovri / Monero](https://github.com/monero-project/meta/issues/46) (@fluffypony @danrmiller location status) +**\** Is pigeons still in Africa? This point was moved from last meeting. +**\ {-pigeons}** i returned yesterday +**\** Are you suggesting pigeons migrate ? +**\ {-pigeons}** i saw rock doves +**\** fluffypony? How's it going? +**\ {-fluffypony}** anonimal: it's a podcast, right? +**\** https://www.96boards.org/openhours/, there are videos too. +**\ {-fluffypony}** ok well I'm ready whenever +**\ {-fluffypony}** I don't really prepare for stuff like this +**\** sorry i'm late! +**\** Ok well what time/date works for you? +**\** fluffypony ^ +**\ {-fluffypony}** anonimal: my PA would have to schedule it - probably best to get my PA to schedule myself and pigeons and them +**\ {-fluffypony}** she's good at that +**\ {-fluffypony}** it's literally her job :-P +**\ {-pigeons}** I was thinking ask hyc if he's interested, he's been playing with arm and monero i think +**\ {-fluffypony}** cool +**\ {-fluffypony}** hyc is a beautiful man +**\** +1 Ric's PA. She was great when i wanted to schedule a podcast +**\* anonimal** pinged him in #monero-dev +**\** Ok well at this point, IMHO, fluffypony I think it would be good for you to touch base / introduce yourself to sdrobertw in #OpenHours on freenode. +**\** I think I can only play the middleman for so long. +**\ {-fluffypony}** email is better for Shay, I don't think I can teach her IRC :-P +**\** Contact info? I have none. +**\ {-fluffypony}** for them? +**\ {-fluffypony}** didn't we reach out to them via email first? +**\ {-fluffypony}** \* can't remember +**\** For Shay +**\** No, not via email, all IRC. +**\ {-fluffypony}** oh lol +**\ {-fluffypony}** pa@spagni.net +**\** Alright, anything else on this point before moving on? +**\** 4. Status (again) of [Monero HackerOne umbrella and bounty](https://github.com/monero-project/meta/issues/39). [hackerone.com/monero](https://hackerone.com/monero) is online but we need to resolve FFS funding before inviting researchers. VRP status for all projects + bounty status +**\** I've sent a VRP to monero, it's been merged. I believe we're funded at ~500 XMR, which is great. +**\** Any questions? +**\** We just need to launch after submitting VRP to the GUI (and site?) +**\** Sound good? +**\** Is the bounty held in xmr or something else? +**\** Yes. Link to FFS in the meta issue. +**\** https://forum.getmonero.org/8/funding-required/87597/monero-bounty-for-hackerone It was funded to 500 XMR and then increased to 1000 XMR for further funding +**\** ty +**\** I think we can start now before funding is at 1000. +**\** (it won't mean we'll find researchers immediately anyway) +**\** Any questions/comments before moving onto next point? +**\ {-fluffypony}** yrah +**\ {-fluffypony}** agreed +**\ {-fluffypony}** we can continue to increase it as necessary +**\** Ok. Moving on, +**\** 5. Open forum for https://github.com/monero-project/kovri/issues/630 +**\** Comments needed before we move on this. +**\ {-fluffypony}** I agree with MoroccanMalinois, but I think it's manageable if we set a severity +**\ {-fluffypony}** and some caveats +**\** Maybe a strict validity domain definition would do good (ie, "we only accept vulns in the following categories"). +**\** And then expand the list as stuff matures. +**\** moneromooo - why would we restrict? +**\** To prevent known problems from being reported, or problems in stuff that is known to be unfinished. +**\ {-pigeons}** because the code has a bunch of legacy mess and is early state with low hanging fruit that is just later on the to fix when that section gets refactored +**\** Yes. So, with that said, I don't know what categories we could even have. +**\** *at this stage* +**\** moneromooo: did you have any ideas on categories for this stage? +**\** No. I've not really looked at kovri yet, despite saying I would (sorry). +**\ {-pigeons}** i2p consensus related issues +**\ {-pigeons}** if we implement like X we might cause incompatibility +**\ {-pigeons}** maybe those but again maybe those are known and will be fixed when those sections are given love +**\** Anything which can leak keymat. Good starting point. +**\** Ideally you'd start giving bounties when you know you've done what you could, and the bounty to find bugs is less than what your time is worth looking at it :) +**\** pigeons: Well, then I think that's java I2P's problem because they would then have to keep up with us. What we could do now though is start with a research-related category for general specifications? +**\** So it's a bit subjective. +**\** moneromooo: indeed, and this is border-lining on simply hiring a new dev too with the funds available. +**\** Well, the draw is that the bounty ensures results for the money. +**\** So expert time. +**\** What if we opened bounty for non-implementation research? I know this is an MRL area though. +**\** Or we could open more categories for implementation but the payout is smaller because code is Alpha? +**\** For finding bugs in the theory, definitely worth doing so (for monero anyway, I expect kovri's following established research already). +**\** (then they would risk waiting to beta to 0day to get bigger payout?) +**\** what up kids? I'm here. +**\** I think monero's research is more vetted than I2P's, even though I2P has been around longer. Simply because there are less moving parts. +**\** +1 for bounty for non-implementation research +**\** Interesting. +**\** Just my opinion. I've read the I2P papers available, I'm not blown away but it's better than nothing. +**\** And not like I'm in a position to drop everything to do purely research so... +**\** We'll add categories for bounty? One obvious one being research. Maybe crypto implementation sooner than later since that's a big one. +**\** Sound fair? +**\** From a relative outsider, it seems like a sensible start. +**\** yes. is "leaked info" too broad of a category? +**\** yes for me +**\** Yes because a leak would cover too much code that hasn't been vetted. +**\** \* could cover +**\** Ok, I'll get that going then. +**\** Moving on. 6. Website status (@rehrar @bigreddmachine @alvinjoelsantos @danrmiller) +**\ {-pigeons}** I need to talk with fluffypony about a potential dns thing +**\** aight, so just in case somebody hasn't seen the Kovri web design here it is: http://imgur.com/a/An8K8 +**\** it's the top one +**\ {-pigeons}** then the demo of ajs' site should be up +**\ {-fluffypony}** I got msgs about it +**\ {-fluffypony}** will look at it tomorrow +**\** it's based on the same framework as the getmonero.org website, so once the custom framework is made for one, it is easy to make pages for the other +**\** my update is that we're making the framework even now, and it's coming along well, I should be able to make a few experimental Kovri pages soon +**\** The question is content. +**\** I think the "It's I2P, but in C++" phrase should go; we should use our standard "A secure, private, untraceable C++ implementation of the [I2P anonymous network](https://getmonero.org/knowledge-base/moneropedia/i2p)" +**\** I will work with rehrar to write up some content, but need direction on what should be included. +**\** that's fine. Copy is not indicative. :) +**\** My past month has been packed getting ready for my phd comprehensive exam (1 step before the defense). So I haven't looked at the site yet, but talked briefly with ajs about it and plan to get more involved now that that's done. +**\** Other than that, can we move this item to the website meeting in #monero in 10 minutes? +**\** sure, that sounds alright. +**\** It looks nice (says the cow who's got no clue about design). +**\** K +**\** bigreddmachine ajs: will you be around in 10 minutes in #monero? +**\** Yes +**\** yeah, i'm also editing tonight's podcast episode so i may take a minute to reply +**\** rehrar: yes, what moneromooo said, looks nice +**\** cool. If people have ideas for content that are not on the demo site +**\** Ok, moving on. 7. @EinMByte ...where is he? Github repo privilege discussion +**\** let me know +**\** I'd like to have a simple website for alpha release :) +**\** fluffypony: so... his last commit was from Septemeber 19th, he's not responded to 99% of my pings since then... +**\** i haven't seen him since i started getting involved in Jan +**\** I speak highly of him and his work, I think he's a great contributor and wish he was around more. +**\** could be a legal issue? +**\** The problem is he's not around anymore, he has assigned issues of which I've had to assign myself since he's not around to do them. +**\** And he has repository push access. If something happened to him and his account is compromised, we could be left in an embarrassing trolling situation where someone deletes the repo. +**\** I don't want to send any wrong signals but I also think access privileges should be on an as-needed basis. +**\** i think that's fair. can always be re-established if he comes back and he can be verified +**\** in that vein, should things like Salti tracking be moved to another place? +**\** I don't know, we'll have to bring that up at the next meeting I think since we're running out of time. +**\** fluffypony: any thoughts about this? Will you remove EinMByte's github push access privileges? +**\** I think it's fair to revoke for inactivity and failure to reply to pings. Reinstate when back. +**\** okay, can we add #619 to next meeting's agenda? +**\** I'd also want to remove warptangent's key (unlikely to be back to use it) and a few others. +**\** bigreddmachine: oh, sure I guess, more research/info needed. +**\** k i'll just reply to the issue and talk about it there for now. sorry to jump into other discussion about that. +**\** No problem +**\** Since we're running out of time, 8. Code + ticket discussion / Q & A +**\** last update from me — mozilla work continues with the proxy stuff, but not ready yet. i don't have a good feel for how long +**\** Anything pressing? Questions/comments that can't be answered on github or after the meeting? +**\** Ok, thanks bigreddmachine +**\** not from me, I'll be in contact :( +**\** :) +**\** 9. Any additional meeting items +**\** none. thanks anonimal! +**\** Nothing from me, other than I need to AFK rehrar so, bigreddmachine ajs pigeons if you want to talk more about kovri-site then I'll have to read backlog +**\** aight, thanks. +**\** Now over to monero! +**\** K +**\** Thank you all if you keep the torch burning for the site, awesome. +**\** 10. Confirm next meeting date/time +**\** 2 weeks, same time? +**\** indeed +**\** Ok. Thanks everyone :) \ No newline at end of file diff --git a/_posts/2017-05-07-overview-and-logs-for-the-dev-meeting-held-on-2017-05-07.md b/_posts/2017-05-07-overview-and-logs-for-the-dev-meeting-held-on-2017-05-07.md new file mode 100644 index 00000000..0443fc29 --- /dev/null +++ b/_posts/2017-05-07-overview-and-logs-for-the-dev-meeting-held-on-2017-05-07.md @@ -0,0 +1,291 @@ +--- +layout: post +title: Overview and Logs for the Dev Meeting Held on 2017-05-07 +summary: Sub / disposable addresses, smart mining GUI, 0MQ, and MyMonero-in-tree discussion +tags: [dev diaries, core, crypto] +author: dEBRUYNE / fluffypony +--- + +*May 7th, 2017* + +# Overview + +An overview [can be found on MoneroBase](https://monerobase.com/wiki/DevMeeting_2017-05-07). + +# Logs + +**\** 1. Greetings +**\** 2. Brief review of what's been completed since the previous meeting +**\** 3. Code + ticket discussion / Q & A +**\** 4. MyMonero-in-tree discussion +**\** 5. Any additional meeting items +**\** 6. Confirm next meeting date/time +**\** so let's start with 1. Greetings (aka roll call) +**\** hi +**\** hi +**\** present +**\** hello! +**\** tewinget apologises, he'll be late +**\** Sup +**\** o/ +**\** Yo +**\** hyc / luigi1111 / ArticMine / othe / smooth / anonimal / binaryFate / dEBRUYNE / dnaleor / gingeropolous / iDunk / IPGlider / Jaquee / jwinterm / kenshi84 / knaccc / luigi1112 / luigi1115 / NoodleDoodle / papalazzarou / pigeons / RedLion[m] / redlion +**\** hhelo +**\** :) +**\** also me +**\** medusa +**\** anyone I forgot +**\** o/ +**\** oh those are not present whoops +**\** lol vtnerd +**\** ok so +**\** 2. Brief review of what's been completed since the previous meeting +**\** merged a bunch PRs +**\** kenshi84's GPG key changed +**\** I've confirmed it via sidechannel +**\** we have a new sweepbelow function in the CLI, which you may find useful +**\** we also have a new heavier bias in output selection towards newer outputs +**\** moneromooo can fill us in on that +**\** Hi +**\** oi +**\** smart mining is enabled in the GUI +**\** as in the selection box +**\** Hmm, I just twiddled the settings for the recent output selection, really. To match some data in the Miller et al paper. +**\** which is pretty cool +**\** indeed +**\** also Jaquee has done some work on getting iOS back on track after it borked (visually) +**\** well iOS / mobile +**\** which brings us to +**\** 3. Code + ticket discussion / Q & A +**\** yes. and there's some new translations added to gui +**\** we have a number of open PRs +**\** when tewinget is off his bus he can update us on 0MQ +**\** which I'd REALLY like to move forward with ASAP +**\** it's been sitting in a holding pattern for ages +**\** Snipa: also if you're around maybe you can update us on the testing on that ? +**\** I'd like it to be optional, so it can be merged (and thus tested), without causing massive breakage if it does break. +**\** afaik that was the case +**\** sounds like a good idea +**\** also disposable addresses is still hanging around - I think that's pending a review from one of the luigis? +**\** AFAIK yes. Also RandomRun had an idea to make it better. +**\** I don't think there's a problem with that hanging around and being improved +**\** as long as the parallel MRL write-up is there +**\** I'd like to discuss 1998 +**\** the PR, not the year +**\** https://github.com/monero-project/monero/pull/1998 +**\** at this point in time I'm still swaying towards prevent-user-stupidity-by-default +**\** at the slight inconvenience for a power user / sysadmin who might go "omg really" and then add the flag +**\** I know vtnerd feels the same way, which is why he added it in the first place +**\** I'd be interested in strong arguments for removing the flag +**\** wouldnt a text disclaimer be enough? +**\** i don't have a strong opinion +**\** Jaquee: if you try bind externally and start it without the --confirm-external-bind flag then it refuses to start +**\** and it tells you why +**\** ok. apparently hyc started the discussion. Are you around? +**\** I know hyc doesn't like it +**\** vtnerd: has anyone else expressed disdain for it? +**\** AFAIK, just the people on that PR and the one referenced +**\** and possibly one person in IRC, but they seemed to be questioning why it was necessary (I think) +**\** its somewhat low effort to get around it, so most people just add the flag I thnk +**\** no one has privately contacted me about it for any reason if that was the question +**\** ok +**\** unless hyc comes in I move to close the PR, we can always re-open it later +**\** ok with me +**\** ok next PR for discussion is 2011 +**\** moneromooo had concerns that it was touching consensus critical issues +**\** so/issues/part of the code +**\** Yes, but it turns out it's actually bypassed when a tx comes from a block. The patch is fine. +**\** I OK'd it since. +**\** ah ok' +**\** Well, wait. +**\* fluffypony** stops...hammer time +**\** It's really uneeded (only the wallet bit was wanted). But it's not forkworthy. That said... +**\** Older wallets *might* create txes which aren't relayed by newer daemons. +**\** That's fairly unlikely, since my code targets 2/3 of max size, but the size approximation is not very precise. +**\** That said, I think it's fine to merge. +**\** hey. just popped in. reading history +**\** hi hyc ! +**\** Re: 2011, perhaps it also should be dependent on the fee priority level used +**\* fluffypony** plays elevator hold music +**\** ok, if n0b0dy else cares about that external bind thing then whatever. to me it's redundant +**\** ok +**\** since you had to explicitly request a non-localhost address already +**\** sure, but you'd be surprised how few people know that 0.0.0.0 exposes everything :-P +**\** ^ +**\** it d0esn't protect against typos/accidents. it only pisses off people who expect the computer to do as it's told +**\** hyc: view it like a weak password warning +**\** you can't just expect the computer to accept 1234 as a password +**\** yeah, ok... +**\** Well, I would... +**\** lol +**\** moneromooo is the exception to every rule :-P +**\** now on the GUI side, the only thing I wanted to bounce around is 688 +**\** tooltips are fine, but if we're going to do some sort of unified help then I would veer towards an overlay that shows once the first time you enter a screen, and can be re-called by clicking the [?] button on the taskbar +**\** https://s-media-cache-ak0.pinimg.com/originals/c1/e1/bf/c1e1bfd7fb2770f6745d95af8bf89865.jpg +**\** like that style +**\** https://s-media-cache-ak0.pinimg.com/originals/43/6e/74/436e746b35142f41d5f9bb8e765963e4.jpg +**\** http://eyeviewportal.com/filecache/b38/73d/85-cropped-w545-h409-of-1-FFFFFF-evappguiguidecontentimage002.jpg +**\** like that +**\** sounds good +**\** :+1: +**\** problem is [?] is not around if you use native title bar +**\** Jaquee: where else could we add a help button? bottom left? +**\** one suggestion i'd make for that is to make it c lear to the user they can recall it easily by doing "X" so that they don't fret about having to memorize everything before it's closed +**\** recall it -> the help screen +**\** i think ^ is good as a start +**\** Where is it on the title bar then, since it's not a WM thing ? +**\** endogenic: agreed +**\** s/Where/Why/ +**\** but some buttons could need longer desriptions +**\** like sweepunmixable and paymentid for example +**\** Jaquee: there's enough space in the help overlay, we can use a smaller font to explain them +**\** how breadwallet on ios handles it when setting up is quite good +**\** or move the help to somewhere where there's space +**\** and use an arrow +**\** yeah. we could find a place for that help button +**\** ok - any other PRs that need discussion or can we move on? there's general Q&A shortly +**\** I'd like to merge 261 on monero-site +**\** sgp: there's a website meeting after the Kovri one +**\** so we can discuss it then +**\** ok +**\** ok so +**\** 4. MyMonero-in-tree discussion +**\** so basically this is about nose-covering and making sure I'm not abusing my position as a maintainer and member of the Monero Core Team +**\** currently MyMonero has a working API (largely unspecced to be sure), two client implementations (website and app), two server implementations (the live backend and OpenMonero), with a third one coming +**\** I'd like to make sure there is general acceptance and buy-in that the API can be implemented as the general API for lightweight wallets (ie. wallet that use remote viewkey scanning) +**\** is it carved in stone now +**\** if we need to tweak it we can still do that? +**\** is the license unrestricted? +**\** and that MyMonero-written or MyMonero-derived code is generally acceptable to be merged into the source tree (ie. the open-source backend implementation that vtnerd is working on) +**\** redlion: BSD 3-clause +**\** hyc: as long as mWo12 changes it, and we match the changes in the live backend and the new backend then yse +**\** yes +**\** we can make any changes, and we WILL make changes to make it smarter +**\** If it's beneficial to monero and it works fully by itself without needing proprietary gunk, then I'm OK with it. +**\** eg. tx history comes in raw, instead of paginated +**\** so that needs to change +**\** +1 moneromooo +**\** moneromooo: yeah the new backend will use LMDB instead of mysql +**\** so it will be unencumbered in the source +**\** As long as there are no proprietary dependencies I am fine +**\** I like it even more now ;) +**\** I think it beneficial too +**\** Maybe a separate repo (similar to monero-core) might be best, but that's details. +**\** \*its +**\** it's +**\** it's +**\** can't wait to run a mymonero node myself! +**\** also the current "primary" wrapper around the DB is actually C, so theres that for you guys +**\** moneromooo: I thought about that, but it's a single daemon that *should* exist in the repo alongside the wallet RPC etc. +**\** doesn't it supersede wallet-rpc? +**\** now +**\** hyc: no +**\** wallet-rpc is good for integration, this isn't +**\** there is obviously an element of centralisation, but it’s nearly impossible to avoid +**\** also on this topic +**\** Jaquee has begun working on client integration in the CLI and GUI +**\** "client integration" ? +**\** you mean for light-wallets? +**\** that will mean that both CLI and GUI will be able to run in lightweight / remote-scanner / MyMonero mode +**\** moneromooo: as opposed to implementing the server protocol +**\** sounds good +**\** Oh, mymonero client integration ? +**\** moneromooo: let's call it something else +**\** That went pretty damn fast :D +**\** "lightweight wallet" +**\** it's not really centralization if any `monerod` acts as a server +**\** but I'm still missing why we need old wallet-rpc if this mymonero api exists +**\** it's literally my monero :) +**\** hyc: wallet-rpc is completely different +**\** so the core GUI will be able to interact with MyMonero backend too? +**\** for people that want to run VPS node but keep their viewkey ? +**\** Yes, would be nice to see what bits are needed where, and the actual API (even if roughly). +**\** it provides an API for integrators +**\** @johnalan yes +**\** so basically +**\** is this needed with the MyMonero Desktop wallet? +**\** With what as the backed / server +**\** That can be posted later though, :49 now. +**\** monerod? +**\** lightweight wallets will have 3 server options: +**\** 1. OpenMonero +**\** 2. the new in-source backend that vtnerd is working on +**\** 3. the live MyMonero backend +**\** it will also have multiple client options: +**\** afaik the main difference btw an ordinary wallet and mymomero is you tell mymonero your viewkey +**\** 1. OpenMonero's web wallet (clone of the current MyMonero web wallet) +**\** and the ordinary wallet has all your keys +**\** 2. the MyMonero applications +**\** 3. monero-wallet-cli +**\** 4. monero-wallet-rpc +**\** 5. the Monero GUI +**\** hyc: monero-wallet-rpc can still use this on the backend +**\** so it's unrelated +**\** ok +**\** ok +**\** about #2011 - you could modify it to (median)+0.6% for it to be mine-worthy, or even have the wallet check for fee setting and then it would be matched like 1: +0.6%, 2: +2.4%, 3: +12%, 4:+100% +**\** also this will mean that the GUI / CLI may end up supporting the MyMonero 13-word seed derivation by virtue of the integration effort +**\** does anyone have a fundamental issue with that ? +**\** no +**\** I mean, I do, because I don't want to be abusing my position, but it is what it is :-P +**\** didn't you deprecate 13-word? +**\** Did you not say the 13 word seed was going to be obsoleted ? +**\** jollymort: working on it +**\** no +**\** but client still needs to be able to read 'em +**\** electrum/mycelium support a few different seed lengths iirc +**\** works well +**\** also luigi was playing around with an idea for 17-word, integrating creation height in it etc +**\** moneromooo: it's import only +**\** not create +**\** https://github.com/mymonero/mymonero-app-js/issues/77 +**\** doesn't it put a huge load on mymonero when someone asks it to scan the blockchain from zero with their view key? How long does mymonero take to scan the entire blockchain? +**\** Anyway, I'm fine with that as presented. +**\** that all sounds like a win to me. people have been whining about not being able to import their 13-word seed into regular CLI wallet +**\** so monero-wallet-cli/monero GUI will not be able to create light-wallets? +**\** knaccc: yes it does - about 10 minutes +**\** yeah import only sounds lovely +**\** If we are setting the stage for a competitive market based upon FLOSS then I am fine with it +**\** I do have the ASM code working, so hopefully that will tighten up some too (altough there is something else blocking that) +**\** shuannelson: yes they will +**\** but with 25 word seed, not 13 +**\** we have 7 minutes left - so I'd like to move on to the last item +**\** awesome! +**\** we can discuss MyMonero more after the meeting +**\** @shaunnelson, I think it's just that the CLI/GUI won't create 13-word seeds, but will accept already created ones +**\** yeah sounds fine +**\** 5. Any additional meeting items +**\** 10 mins is quite a speedup vs downloading the entire blockchain, so sounds awesome. +**\** any thoughts on future of penalty/blocksize? i kind of left the research open-ended +**\** ^^ get a faster CPU and it'll be quicker ') +**\** Does anyone have a working monero-core or mymonero build on ios currently? I've been fiddling around and I can't seem to get either properly functional on the sim/device, though I may be missing something +**\** lol hyc +**\** redlion: pls come join #mymonero but yes i do :) +**\** redlion: i have. it has some nasty bugs but it's running +**\** ok thanks, I'll talk to you after this +**\** btw iOS still limits process VM size to 4GB so we won't be running monerod native on iOS any time soon +**\** @jollymort let's discuss it after the meeting, or maybe next week - there are 2 more meetings to go tonight :) +**\** and that's a large topic +**\** sure, another time +**\** thanks jaquee, are there any build instructions or a (sort of) working build posted somewhere? +**\** 6. Confirm next meeting date/time +**\** May 21 +**\** day before Consensus +**\** cool +**\** oh. this week I expect to have wolf miner fully ported to Android, with GPU support too +**\** endogenic can come to my hotel and we can do the meeting together :-P +**\** oooh +**\** anyway, I have the daemon's side of the code rebased and *nearly* ready to PR and merge. I mean, it could be merged now, but I should clean it up a little/address a few more of the comments on the existing PR first. +**\** the wallet side of things will be based on that, and won't take too long. I just thought it made sense to separate it into two PRs (and rebase while I'm at it because why not?) +**\** suweet +**\** just check the meeting logs for the bit from moneromooo about it +**\** (the wallet stuff is still "done already", but as with the daemon side there are comments/suggestions to address as I rebase it as well.) +**\** at any rate, I plan today to finish with the cleanup of the daemon side of things, close the existing PR, and open a new one for the daemon that should be mergeable. +**\** great stuff +**\** pigeons: did you see the 96boards thing? +**\** fluffypony: sorry I didn't respond right away to your pinging on the github PR, but when I said it was already rebased I meant on a different branch, as I'm leaving that branch up (and separate) until I finish rebasing. +**\** ok cool +**\** tewinget: is the 0MQ stuff deselectable if needed (so if it somehow breaks, you can run the wallet with the existing JSON comms) ? +**\** wallet/daemon +**\** moneromooo: I'll make it so when I rebase the wallet side of things. +**\** Excellent, thank you :) \ No newline at end of file diff --git a/_posts/2017-05-17-disclosure-of-a-major-bug-in-cryptonote-based-currencies.md b/_posts/2017-05-17-disclosure-of-a-major-bug-in-cryptonote-based-currencies.md new file mode 100644 index 00000000..e04f4ea5 --- /dev/null +++ b/_posts/2017-05-17-disclosure-of-a-major-bug-in-cryptonote-based-currencies.md @@ -0,0 +1,49 @@ +--- +layout: post +title: Disclosure of a Major Bug in CryptoNote Based Currencies +summary: Patched in Monero and others, but still in the wild +tags: [core, crypto, research] +author: luigi1111 and Riccardo "fluffypony" Spagni +--- + +# Overview + +In Monero we've discovered and patched a critical bug that affects all CryptoNote-based cryptocurrencies, and allows for the creation of an unlimited number of coins in a way that is undetectable to an observer unless they know about the fatal flaw and can search for it. + +We patched it quite some time ago, and confirmed that the Monero blockchain had NEVER been exploited using this, but until the hard fork that we had a few weeks ago we were unsure as to whether or not the entire network had updated. + +Once we were certain that the network had updated, we notified all active and affected CryptoNote coins, including CryptoNote themselves, Bytecoin, Forknote, Boolberry, DashCoin, and DigitalNote. + +***Note that, at this time, only Monero, Aeon, Boolberry, and Forknote have updated.*** We have given the other currencies as much time as possible, but cannot hold back disclosure any longer. + +***We strongly caution against anyone using, trading, exchanging, or running services involving the following currencies affected by this issue: Bytecoin, DashCoin, DigitalNote*** + +# Timeline + +2017-02-19: A member of the Monero Research Lab discovers the exploit, triggered by a detailed discussion of the [XEdDSA signature schemes](https://whispersystems.org/docs/specifications/xeddsa/) on the [Curves mailing list](https://moderncrypto.org/mail-archive/curves/2017/000846.html) +2017-02-20: The Monero blockchain is scanned to see if this had ever been exploited; thankfully it had not and the blockchain is intact. +2017-02-21: The patch is surreptitiously snuck into the Monero codebase in [pull request #1744](https://github.com/monero-project/monero/pull/1744). It is kept secret to prevent it being used to attack other CryptoNote coins. +2017-02-22: A [point release of Monero is rushed out](https://github.com/monero-project/monero/releases/tag/v0.10.2) so that exchanges and mining pools can update, under the guise of it preventing a RingCT DoS attack (such attack did not exist, but it seemed a fair explanation). +2017-03-15: The hash of the details of the problem is committed to the Monero blockchain in tx dff7a79e44f9392e19fe5205c389d3e799f89c62d90d624219618d754b806e04 +2017-03-26: A further [point release of Monero](https://github.com/monero-project/monero/releases/tag/v0.10.3.1) is put out to prepare for a hard fork in April. +2017-04-14: The Monero network hard forks to increase the dynamic block size minimum median, but this has the added bonus of ensuring the entire network is protected. +2017-04-17: All CryptoNote coins are contacted, and told that they have until mid-May to patch their coins, before there will be a public disclosure of the issue. +2017-04-17: As noted by [Riccardo "fluffypony" Spagni on Twitter](https://twitter.com/fluffyponyza/status/854029169667309569), the hash of the message sent to the various CryptoNote currencies is committed to the Monero blockchain. + +# Problem + +The so-called "key image" as used in CryptoNote coins utilising elliptic curve ed25519 can be modified in a special way, allowing double-spends. This effectively allows someone to create an infinite amount of coins in a way that is impossible to detect without knowing about the exploit and explicitly writing code to check for it. + +# Mitigation + +Several options exist for mitigation. The simplest, least invasive is noted below. + +To mitigate, check key images for correctness by multiplying by the curve order l. Check that the result is the identity element. + +Hexadecimal values of each: + +Identity element = "0100000000000000000000000000000000000000000000000000000000000000" + +Curve order (little endian) = "edd3f55c1a631258d69cf7a2def9de1400000000000000000000000000000010" + +For each transaction key image, check ((key image * curve order) == (identity element)); reject transaction if false. diff --git a/blog/assets/linkability-response/cointelegraph.jpg b/blog/assets/linkability-response/cointelegraph.jpg new file mode 100644 index 00000000..992841e8 Binary files /dev/null and b/blog/assets/linkability-response/cointelegraph.jpg differ diff --git a/blog/assets/linkability-response/figure5.jpg b/blog/assets/linkability-response/figure5.jpg new file mode 100644 index 00000000..cc5765a8 Binary files /dev/null and b/blog/assets/linkability-response/figure5.jpg differ diff --git a/blog/assets/linkability-response/table2.jpg b/blog/assets/linkability-response/table2.jpg new file mode 100644 index 00000000..7c8db57d Binary files /dev/null and b/blog/assets/linkability-response/table2.jpg differ diff --git a/blog/assets/linkability-response/table3.jpg b/blog/assets/linkability-response/table3.jpg new file mode 100644 index 00000000..106960ad Binary files /dev/null and b/blog/assets/linkability-response/table3.jpg differ diff --git a/blog/assets/linkability-response/tweet.jpg b/blog/assets/linkability-response/tweet.jpg new file mode 100644 index 00000000..8b76d405 Binary files /dev/null and b/blog/assets/linkability-response/tweet.jpg differ diff --git a/knowledge-base/moneropedia/block.md b/knowledge-base/moneropedia/block.md index cb452b0c..cadae194 100644 --- a/knowledge-base/moneropedia/block.md +++ b/knowledge-base/moneropedia/block.md @@ -7,7 +7,7 @@ summary: "a container of transactions, a sequence of which forms a blockchain" ### The Basics -A block is a container of @transactions, with a new block being added to the @blockchain once every 60 seconds, on average. +A block is a container of @transactions, with a new block being added to the @blockchain once every 2 minutes (see constant `DIFFICULTY_TARGET_V2` defined as 120 seconds), on average. Blocks also contain a special type of transaction, the @coinbase-transaction, which add newly created Monero to the network.