It's not good news for bitcoin users.
malleability attack can only work in a tiers payment processor ... NOT with connected wallet to Bitcoin network.
Topic: Bitcoin maleabity attack - who made it and is it still running? - page 2. (Read 3862 times)
October 09, 2015, 12:25:26 PM
malleability attack can only work in a tiers payment processor ... NOT with connected wallet to Bitcoin network.
October 09, 2015, 12:00:23 PM
Thanks for explaining your view on the things gmaxwell. I think this attack can only help bitcoin. Showing if the attack vector is really a problem, pushing the funding of code to go against.
I think the influence on the network is rather small anyway.
The "test" did a number on my bitcoind + electrum server machine, saturating the CPU completely, with the node falling behind the block chain. Fortunately, this was easily fixed by changing the config file. I deliberately run a slow processor, so I get a preview of "coming attractions". Based on ealier "tests" I had surmised that my little Atom based machine would be (barely) able to handle 8 MB blocks running bitcoind. (Electrum server code is hopelessly inefficient and would require a faster processor or more efficient code.) However, for some reason this new "test" was more effective at consuming my CPU cycles than previous tests.
It strikes me that the developers do not have node performance under control. Software that runs real-time transaction critical software needs characterization of its performance and how this relates to transaction load, not just average transaction load but also "worst case" transaction load. This is one of the reasons that I disagree with gmaxwell's response to my earlier post in this thread. Perhaps there are models, measurements and benchmarks for node performance as a function of a number of parameters, but I haven't seen them.
October 09, 2015, 10:49:28 AM
The problem is that a known bug in the bitcoin protocol has festered for years. If the "core" developers had been doing their job, this problem would have been fixed long ago.
There are a dozen different malleability vectors in the protocol as originally designed; some are quite useful and important intentional features-- others are not. Though the harm from malleability is very moderate-- and because of the intentional features and the potential for ordinary double spends, wallets must have basically sane handling for it--, unwanted third party malleability is a nuisance. In Bitcoin Core's wallet the nuisance can be greatly mitigated by setting spendzeroconfchange=0.Because of it being a nuisance all of vectors for malleability except for one were blocked as non-standard transactions in Bitcoin Core years ago. The remaining one could not be simply blocked because it requires transactions to confine their signatures to a particular form-- low-S-- and all software was violating before the issue was known. Because of this applying that final constraint would have blocked almost all transactions on the network-- something not justified for a nuisance level attack. Bitcoin Core changed constrain its own transactions to this form in 2013 but it has taken a long time for other software to update themselves. Fortunately, the final remaining type of malleability was ever so slightly trickier to exploit, so people haven't been doing so at scale. In the meantime a proposal was made, as part of BIP62, for a v3 transaction type where parties creating transactions could opt into the protective behavior if they were recent enough to support it. Unfortunately BIP62 is fairly complex and no one outside of a small group of contributors to Bitcoin Core have cared at all about advancing it. So we've been breaking up parts of them and applying them to the consensus incrementally (e.g. BIP66).
Current git master Bitcoin Core enforces the requirement for all transactions it relays or mines, once this is in a release and widely deployed it will end this irritation; but it will also block most transactions from small portion of the network on software which is out of date or hasn't been updated to produces anti-malleability-friendly low-S signatures (on the order of 5% of all transactions now; due to ongoing efforts to harass parties to fix their wallet software).
I've called for assistance several times in identifying the origin of a list of lowS violating transactions in order to help speed deployment of this, but it seems that the Bitcoin community is a lot more interested in whining and throwing blame then stepping up and doing a little bit of the non-development work needed to get this deployed.
Thanks for explaining your view on the things gmaxwell. I think this attack can only help bitcoin. Showing if the attack vector is really a problem, pushing the funding of code to go against.
I think the influence on the network is rather small anyway.
October 09, 2015, 09:39:23 AM
you are right, seems BTC is loosing decentralization
but that just means... nothing can be decentralised for real
but that just means... nothing can be decentralised for real
Only primitive organisms. Worms for example.
Ants have primitive centralization. They can build an anthill.
People can work in fully centralized community. They are launching rockets to Mars.
BTC lost its decentralization when some smart guy decided to mine on his video card and another clever guy organized a pool.
The development of bitcoin was never decentralised, looking at it from a wider angle, the blockchain itself is a centralised system(the blockchain) on which we entrust the bitcoin economy. The meaning of decentralisation is that there is not a single entity but the blockchain itself, until there is someone who can make and overtake a mining rig so powerfull it will mine all the remaining blocks and will not share the technology.
This will however result in a non trustworthy blockchain and the whole thing crumbles before the one investing so hard to gain control will have the biggest loss. "Now you're king of the mountain, but it's all garbage!"
I disagree with how he expressed his opinion (doing an attack) about the whole Bitcoin getting centralized but I do agree to some extent that he is right, maybe right now it's not the case but in future the bigger pools will completely take control of the mining operation and then they'll make their own rules and that will again result in a non trustworthy blockchain and maybe these stress test are done by them to increase the miner's fee. I don't think this is how Satoshi envisioned the mining to be, I think it was meant to be completely decentralized and people mining from different parts of the world and not just from few mining farms.
October 09, 2015, 07:41:03 AM
And by this attack affected mining pools - some pools got transactions outputs of which valid but other ones. So after this attack all chains of 0-confirmed transaction very very slowly propogated through bitcoin network I send valid fine fee transactions but they are not confirmed a long time - somebody changed iut and rebroadcasted with other TxID
As i understand should BIP62 help?
I send valid fine fee transactions but they are not confirmed a long time - somebody changed iut and rebroadcasted with other TxID As i understand should BIP62 help?
October 09, 2015, 07:08:47 AM
I think anybody monitors only transactions which have only 0-confirmed parent transactions, and then they change its and rebroadcast.
After many wallets affected to this when user try to send new transaction based on 0-confirmed old transactions - a wallet software make new transaction from itself TxIDs, but network knows about other TxIDs...
After many wallets affected to this when user try to send new transaction based on 0-confirmed old transactions - a wallet software make new transaction from itself TxIDs, but network knows about other TxIDs...
October 09, 2015, 06:59:17 AM
Now i did a payment to myself by Mycelium 2.5.2
After transaction was made, after 1 minute i tried to send new transaction (parent transaction had 0-confirmation). Mycelium allows to send transaction based on 0-confirmed.
But Mycelium could not send a new transaction - "transaction was declined by network"
I think for 1 minute (because blockchain.info & tradeblock.com shows to me different cashes of my first (parent) transaction) while i did new payment in this time anybody changed my transaction and some miners got other and inputs of second transaction after this referered to invalid TxID.
I think this type of attack affects user wallets too - if wallet software can spend unconfirmed outputs (Mycelium, Breadwallet, Electrum and etc.). And user can think that payment was not sent but some peers got normal valid transsacion, other got invalid... It's not good news for bitcoin users.
After transaction was made, after 1 minute i tried to send new transaction (parent transaction had 0-confirmation). Mycelium allows to send transaction based on 0-confirmed.
But Mycelium could not send a new transaction - "transaction was declined by network"
I think for 1 minute (because blockchain.info & tradeblock.com shows to me different cashes of my first (parent) transaction) while i did new payment in this time anybody changed my transaction and some miners got other and inputs of second transaction after this referered to invalid TxID.
I think this type of attack affects user wallets too - if wallet software can spend unconfirmed outputs (Mycelium, Breadwallet, Electrum and etc.). And user can think that payment was not sent but some peers got normal valid transsacion, other got invalid... It's not good news for bitcoin users.
October 09, 2015, 06:46:58 AM
you are right, seems BTC is loosing decentralization
but that just means... nothing can be decentralised for real
but that just means... nothing can be decentralised for real
Only primitive organisms. Worms for example.
Ants have primitive centralization. They can build an anthill.
People can work in fully centralized community. They are launching rockets to Mars.
BTC lost its decentralization when some smart guy decided to mine on his video card and another clever guy organized a pool.
The development of bitcoin was never decentralised, looking at it from a wider angle, the blockchain itself is a centralised system(the blockchain) on which we entrust the bitcoin economy. The meaning of decentralisation is that there is not a single entity but the blockchain itself, until there is someone who can make and overtake a mining rig so powerfull it will mine all the remaining blocks and will not share the technology.
This will however result in a non trustworthy blockchain and the whole thing crumbles before the one investing so hard to gain control will have the biggest loss. "Now you're king of the mountain, but it's all garbage!"
October 09, 2015, 04:11:44 AM
People can work in fully centralized community. They are launching rockets to Mars.
If I may use an unfortunate term (or two), the decentralization of space exploration is literally exploding.
October 09, 2015, 03:56:29 AM
I've called for assistance several times in identifying the origin of a list of lowS violating transactions in order to help speed deployment of this, but it seems that the Bitcoin community is a lot more interested in whining and throwing blame then stepping up and doing a little bit of the non-development work needed to get this deployed.
Altruism is centralized - who knew?
October 08, 2015, 11:46:03 PM
you are right, seems BTC is loosing decentralization
but that just means... nothing can be decentralised for real
but that just means... nothing can be decentralised for real
Only primitive organisms. Worms for example.
Ants have primitive centralization. They can build an anthill.
People can work in fully centralized community. They are launching rockets to Mars.
BTC lost its decentralization when some smart guy decided to mine on his video card and another clever guy organized a pool.
October 08, 2015, 09:11:11 PM
From what I can see, it's somebody who is out to destroy bitcoin. What is there to gain by carrying out the attack only to cause inconvenience to the users.
I am not sure if he is out to destroy Bitcoin. If anything there is benefit out of all this - many noobs who did not understand what the malleability attack was prior to this now do. For most systems it is not too difficult to build countermeasures against this. Of course, if someone's system depends on the abitlity to react instantly to unconfirmed transactions the moment it sees them ... well then it is their stupidity.
October 08, 2015, 08:44:33 PM
i read somewhere that somebody said its him doing the attack yet i cannot find this post.
so my questio nis - who did this attack and is it still running?
so my questio nis - who did this attack and is it still running?
marcotheminer said something about maleability issues with the bot that affected some users from the bit-x campaign.
I thought the problem has been solved long ago after the Gox thing
October 08, 2015, 08:33:01 PM
Well according to this article, a fix might get pushed soon.
Bitcoin is decentralized. Nobody can "push a fix soon".Yes, I do understand, that today we have a very small number of miner pools.
And it is quite possible to developer team to communicate with admins and ask them to implement a "small and very good patch" in code.
What does it mean?
This means, that all words about the "real decentralization" have been forgotten.
And the community is under the control by core devs and pool owners.
you are right, seems BTC is loosing decentralization
but that just means... nothing can be decentralised for real
October 08, 2015, 05:33:34 PM
Bitcoin developers are already planning to block the malleability attack with an update that will enforce lowS according to the chat in bitcoin-dev.
October 08, 2015, 05:17:26 PM
Soo why not to join the team of bitcoin to clear the bugs and the hole that you looks like you are taking advantage to explore ,would be better clear it instead use it .
October 08, 2015, 05:28:22 AM
What if there is another wave of malleability attack whilst the spam attack is underway, it could really turn things upside down. 
Should we test this case?I can resume malleability stress-test in any moment
Would be an interesting experiment... in the name of science of course
October 08, 2015, 04:07:04 AM
Well according to this article, a fix might get pushed soon.
Bitcoin is decentralized. Nobody can "push a fix soon".Yes, I do understand, that today we have a very small number of miner pools.
And it is quite possible to developer team to communicate with admins and ask them to implement a "small and very good patch" in code.
What does it mean?
This means, that all words about the "real decentralization" have been forgotten.
And the community is under the control by core devs and pool owners.
October 08, 2015, 03:52:15 AM
What if there is another wave of malleability attack whilst the spam attack is underway, it could really turn things upside down.
Should we test this case?I can resume malleability stress-test in any moment
Well according to this article, a fix might get pushed soon.
Quote
But Maclin’s window may be closing. A Bitcoin update designed to fix the malleability issue has been in the works for over a year, and the latest attack could be just the spark to light a fire under it.
And until then, you can do whatever you want to do.
On the brighter side of things, all of my transactions just got confirmed.
October 08, 2015, 03:36:24 AM
What if there is another wave of malleability attack whilst the spam attack is underway, it could really turn things upside down.
Should we test this case?I can resume malleability stress-test in any moment
Jump to: