Closed Rucknium closed 9 months ago
Log
< rucknium:monero.social > Meeting time! https://github.com/monero-project/meta/issues/965
< rucknium:monero.social > 1) Greetings
< jeffro256:monero.social > Howdy
< vtnerd > hi
< rbrunner > Hello
< hinto.janaiyo:matrix.org > hello
< rucknium:monero.social > 2) Updates. What is everyone working on?
< vtnerd > I'm investigating whether ssl trust-on-first-use for wallet2/simplewallet can be added without destroying the codebase
< vtnerd > the goal is to have a user interactive warning if a daemon ssl cert changes
< jeffro256:monero.social > Getting back to seraphis development after writing the pool handling PR
< rucknium:monero.social > me: Got the list of possible nonstandard txs from isthmus 🙏 , based on custom unlock time and possible cached ring members. I will combine that list with my own list based on nonstandard fees and Mordinal minting/transfers. There is another statistical step after these initial filters to identify the wallet2 rings by their distribution.
< hinto.janaiyo:matrix.org > working on cuprate's db thread/actor system
< rucknium:monero.social > 3. Discussion. What do we want to discuss?
< jeffro256:monero.social > I wanted to revisit issue https://github.com/monero-project/research-lab/issues/78 and seriously discuss removing the unlock time from future transactions
< rucknium:monero.social > hinto: When you are finished with cuprate's database, do you think it would be possible to directly read its contents without monerod? OK if not.
< rucknium:monero.social > I am in favor of prohibiting new txs with custom unlock time in the next network upgrade.
< jeffro256:monero.social > Regarding the unlock time, I went ahead and wrote a PR which would ban nonzero unlock times in the mempool : https://github.com/monero-project/monero/pull/9151
< hinto.janaiyo:matrix.org > do you mean without
cuprated
? Cuprate's db andmonerod
's db won't be compatible, but i'm sure we could make a separate tool that can work withcuprated
's db< jeffro256:monero.social > What DB format will cuprate use ?
< rucknium:monero.social > Yes, that's what I meant. Without
cuprated
.< rucknium:monero.social > Don't change your design plans at all if it would not be possible with your intended path. Just wondering.
< hinto.janaiyo:matrix.org > in terms of format, it is just a regular
.mdb
file, it's just the schema/tables & byte encodings that will differ thanmonerod
's db< hinto.janaiyo:matrix.org > and the other database backend we have planned doesn't use LMDB at all, i guess it is its own format
< jeffro256:monero.social > You have two different DB backends planned ?
< hinto.janaiyo:matrix.org > yes, one is basically a shim around LMDB, the other is an original rust db
< rucknium:monero.social > AFAIK, if I try to read monerod's database, I would get serialized C++ objects that only make sense to monerod. With cuprate would I get serialized Rust objects that only make sense to cuprated? It is ok if the answer is "yes".
< jeffro256:monero.social > Its even more specific than that, it's objects that only make sense to monerod on systems with the same ABI
< jeffro256:monero.social > but damn is it fast
< hyc > there's nothing C++-specific about the objects
< hyc > there are a bunch of 64bit and 256bit hashes
< hinto.janaiyo:matrix.org > i'm not sure about the more complex objects/types, but a lot of the things stored are language agnostic bytes
< 0xfffc:matrix.org > I thought we are saving the hashes, not the objects too.
< jeffro256:monero.social > Well you also know how your system packs the structs
< jeffro256:monero.social > IIRC most structs use the default compiler packing and not something like pragma pack 1
< rbrunner > Er ... I think the members get written one by one, each one after the other, never some struct as a whole
< rbrunner > I.e. 1 call for every value
< 0xfffc:matrix.org > If we store serialized objects, I think there will be some C++/compiler specific stuff that will be saved. But my points was I thought we are only saving the members
< hinto.janaiyo:matrix.org > yes rust structs are undefined, you can specify manual layout but i don't think any of our/monero-serai's type do that (yet)
< rucknium:monero.social > I'm basing my (maybe incorrect) knowledge of the database's contents on this answer: https://monero.stackexchange.com/questions/10919/understanding-the-structure-of-moneros-lmdb-and-how-explore-its-contents-using
< 0xfffc:matrix.org > https://github.com/monero-project/monero/blob/059028a30a8ae9752338a7897329fe8012a310d5/src/blockchain_db/lmdb/db_lmdb.cpp#L2530
< 0xfffc:matrix.org > Lets look at the code to make sure.
< rbrunner > I am quite sure that any compiler packing questions don't play any role because we simply don't write out structs
< jeffro256:monero.social > rbrunner7: this isn't always the case. Some structs are sent in their entirety to the DB in their arbitrary layout: https://github.com/monero-project/monero/blob/059028a30a8ae9752338a7897329fe8012a310d5/src/blockchain_db/lmdb/db_lmdb.cpp#L835
< 0xfffc:matrix.org > https://github.com/monero-project/monero/blob/059028a30a8ae9752338a7897329fe8012a310d5/src/blockchain_db/lmdb/db_lmdb.cpp#L814
< jeffro256:monero.social > Jinx
< hyc > how is any of this detail important?
< rbrunner > Ah, ok, that's one level deeper than I was thinking
< rucknium:monero.social > Ok, maybe this detail isn't important. We can move on to discussing jeffro256 's topic on prohibiting new txs with custom unlock time
< rbrunner > If I remember correctly unlock time is still with us and not long gone solely because we just could not get our act together and afterwards find somebody coding their end
< rbrunner > "loose consensus" failed to materialize for once, and then the subject was dropped ...
< jeffro256:monero.social > It's not super important but it does make it slightly easier to write debugging tools, especially in languages that aren't c++
< rucknium:monero.social > rbrunner: Can you remember why loose consensus was not reached? Does anyone here support keeping it the way it is, even a little?
< jeffro256:monero.social > Im very much of the opinion to move forwards and ban nonzero unlock times obviously which is why I alreafy wrote the code
< rbrunner > Not sure, I don't remember it to that detail. Maybe also mixed in was sheer lack of enthusiasm, lack of somebody who took the lead
< rucknium:monero.social > I don't really think it should be banned by tx relay rules before a network upgrade.
< jeffro256:monero.social > It comes up frequently that we have to engineer really tricky edge handling logic when we take into account unlock times, most recently with working with the new seraphis enote store
< rbrunner > If we have now somebody with jeffro256 we hopefully can get rid of that
< jeffro256:monero.social > Why not banned by relay rule ?
< hyc > jeffro256 the structs being written are just collections of 64bit and 256 bit values. no packing required, no padding present. https://github.com/monero-project/monero/blob/059028a30a8ae9752338a7897329fe8012a310d5/src/blockchain_db/lmdb/db_lmdb.cpp#L283
< rbrunner > I am pretty sure there is a high number of people out there processing Monero transactions that would get cought with their pants down if you send them a locked tx
< rucknium:monero.social > Maybe the biggest thing to work on is making sure users can have their say on banning new custom unlock time.
< rucknium:monero.social > Ban by relay rule is best for when there is a widespread active problem
< rbrunner > There were some long Reddit threads with some user opinions
< rucknium:monero.social > Like Mordinals
< rucknium:monero.social > Ban by relay rule might not be successful.
< rbrunner > I think somebody could achieve a "widespread active problem" if they spammed Monero processing entities left and right with tiny amount locked txs.
< rbrunner > Don't want to give anybody ideas, just saying maybe we just kill it, and get over it, and live happily ever after.
< rucknium:monero.social > Ok. But make sure there is rough consensus in the userbase first.
< rbrunner > I am with you here, but that's easier said than done :)
< rbrunner > First problem is, if I remember Reddit discussions, to get "pure users" to understand the problem and the "feature" properly.
< rucknium:monero.social > IMHO, it is acceptable to filter out opinions that are based on complete wrong understanding of the feature.
< rbrunner > A quick search on Reddit gave me this: https://old.reddit.com/r/Monero/comments/mwrm6g/how_to_lock_send_future_monero_to_yourself_with/
< rbrunner > Or this warning from MajesticBank: https://old.reddit.com/r/Monero/comments/z51c19/warning_incoming_payments_can_confirmed_but/
< jeffro256:monero.social > Basically everything, including that first post, that uses unlock_time for something can be done with a time lock puzzle
< rucknium:monero.social > AFAIK, not checking unlock time has been a security problem for multiple payment processors.
< jeffro256:monero.social > ^^^
< rbrunner > Yeah, but it's a fact of life that sometimes you get illogical if it's question to let go of something that you currency possess. Like this feature.
< rbrunner > *currently possess
< rbrunner > Yes, that's what I meant, I doubt that everybody is already "prepared". Not by a long shot.
< rbrunner > I could try to write a post on Reddit and fish for fresh opinions, and also giving enough background info to make the whole story understandable for "non-techies".
< hinto.janaiyo:matrix.org > does this mean users would have to compute the solution to their own transactions if done this way?
< rucknium:monero.social > rbrunner: IMHO, that would be wonderful 👍️
< rbrunner > Ok, maybe until Sunday.
< jeffro256:monero.social > @hinto: yes
< rucknium:monero.social > I will put it on next MRL agenda in the GitHub issue so there is "official" notice posted.
< rucknium:monero.social > I have read of time lock puzzles. I didn't understand how CPU power would not affect time to unlock.
< rucknium:monero.social > For example, I think some Monero payment channel ideas are based on time lock puzzles.
< jeffro256:monero.social > CPU power does affect time to unlock
< jeffro256:monero.social > I havent read those channel ideas, but would the network verify solutions to the timelock puzzles and give access to coins based on that?
< rucknium:monero.social > I don't know. I don't like payment channels much, so I put them in moneroresearch.info and moved on.
< rucknium:monero.social > Which apparently plowsof and I need to renew the SSL cert of
< rucknium:monero.social > Two days late
< rbrunner > Lol
< rbrunner > Happens to the very best webmasters
< hinto.janaiyo:matrix.org > Rucknium: https://certbot.eff.org
< rucknium:monero.social > I couldn't get certbot to work with my domain provider
< hinto.janaiyo:matrix.org > sounds like you need a new provider
< rucknium:monero.social > I think the paper was this one: https://moneroresearch.info/index.php?action=resource_RESOURCEVIEW_CORE&id=123 Thyagarajan, S. A., Malavolta, G., Schmid, F., & Schröder, D. 2022, Verifiable timed linkable ring signatures for scalable payments for Monero.
< plowsof > Oops
< rucknium:monero.social > Sounds like plowsof needs to set up auto reminders :P
< plowsof > Am i allowed to use the fluffy excuse of reminders going into my spam folder :(
< rucknium:monero.social > Anything more to discuss?
< jeffro256:monero.social > How's bp++ reviews coming along ?
< rucknium:monero.social > Diego Salazar: Sorry to bother. Any comments on the state of BP++ review?
< rucknium:monero.social > We can end the meeting here.
< k4r4b3y:karapara.net > Afaik caddyserver renews the certs for you automatically. Just throwing its name out there...
< diego:cypherstack.com > 80 hours into the review
< rucknium:monero.social > Diego Salazar: Thanks. IIRC, the CCS proposal did not have a specific number of hours. How many hours do the funds cover?
< 123bob123:matrix.org > Most do if you have certbot
< rucknium:monero.social > If the result after the funds are exhausted is "the soundness could not be verified or disproven", then that is a legitimate conclusion, too.
< 123bob123:matrix.org > Nginx,apache,nginx manager
< diego:cypherstack.com > We're roughly at the halfway point.
< diego:cypherstack.com > And we'll complete it until it's done.
< diego:cypherstack.com > Lol. Bad phrasing. We'll keep working until it's done.
< plowsof > Phew
< diego:cypherstack.com > If I can give a bit of a spoiler, my personal opinion is not high of bp++
< rucknium:monero.social > (I knew it)
< rucknium:monero.social > I assume you will follow any vulnerability response procedures. I want to make sure anything MRL is involved in follows good vulnerability procedures. I don't know if Blockstream is using it on mainnet yet. Or anyone else.
< rucknium:monero.social > any procedures if needed
< chaserene:matrix.org > it's not ideal, but it is the best temporary fix until a network upgrade enforces it on the consensus level, isn't it? anyone with the previous relay rules may relay it and even get it mined, but the chances of those happening will be reduced, which seems to be a net advantage.
< diego:cypherstack.com > always
Location: Libera.chat, #monero-research-lab | Matrix
Join the Monero Matrix server if you don't already have a Matrix account.
Time: 17:00 UTC Check in your timezone
Main discussion topics:
Greetings
Discuss: How to confirm security of Monero's multisignature protocol? Do we need mathematical security proofs, and can we get them? Info:
Discuss: Exploring Trustless zk-SNARKs for Monero's payment protocol. What are the bottlenecks for potential implementation?
Improvements to the decoy selection algorithm ( Decoy Selection Algorithm - Areas to Improve, Binning PoC, OSPEAD ) @j-berman @Rucknium
Seraphis. ( UkoeHB's Seraphis Proof of Concept work, Seraphis repo ).
MRL Meta: "Cat herding", i.e. prioritization of research areas and features. Active recruitment of technical talent, MRL structure, funding (@Rucknium & others) MoneroResearch.info repository of Monero-related research papers, Reddit discussion
Any other business
Confirm next meeting agenda
Please comment on GitHub in advance of the meeting if you would like to propose an agenda item.
Logs will be posted here after the meeting.
Meeting chairperson: Rucknium
Previous meeting agenda/logs:
963