Delivery-date: Tue, 19 Mar 2024 05:57:27 -0700 Received: from mail-oo1-f61.google.com ([209.85.161.61]) by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from ) id 1rmZ1y-0004W2-Ve for bitcoindev@gnusha.org; Tue, 19 Mar 2024 05:57:27 -0700 Received: by mail-oo1-f61.google.com with SMTP id 006d021491bc7-5a47e5eec78sf3655706eaf.0 for ; Tue, 19 Mar 2024 05:57:26 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1710853041; cv=pass; d=google.com; s=arc-20160816; b=CldzCV0Yj4v+92QjIuM98eeEcFENnvCzY2fQdLTlXaU7wjaHFJ1vsEjdxsUj7dIECv yNHjMKoYJQ5mBhv20DAuEocufRqgmiT56Is4hAk73E0qw9A+TBn8dtoG+Vfj3cbz7s// FBI6y2NzJw9wLtEsEfEF9hbraWUmihCf2xAN/78FQpLSa5P+SyOxCaT05m9kBlWPX/6R uRMIHIlS1BtE52Z+MKFtcQd/pn7WTctk281MD3BN9FPomgGjAwzad/uJgbbQgDtOWhBg gSCycpjRYCebSUwyQO0eA6B8giMkekxBw83S5c6hHGdjvv3D3A2oFStzGxH+vYwSmdrP zNiw== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:content-transfer-encoding:cc:to :subject:message-id:date:from:in-reply-to:references:mime-version :sender:dkim-signature:dkim-signature; bh=lroUTnnqElOgiTN60KMAO505VgHEki2mZhYt8gLSSSU=; fh=TQkuBzjO7Gt/BxFLb8ewZ8YX2SRzZTLGSx8iMxjI/UE=; b=A1nN2l4kV1xuWAIVvIvsGeuZVYsG9eMrmtj+IZQHRT3CIOe8O6c9apk4WsOQtXjQ5J iGRMobCRh3iGI4gPalDtR7jZlkYgeO2shEtMJx8MTPG6UE0TwUGrqcr7QdmS7vPp68VN OizmoCE7idWTU1CQkpl7OHpVyr13K39VIMJPk72TiisUwSlHQs2EoA2InbStcPUFN9U6 cR2CjLl24TWhMpse0tAQ/xEVGRJ2rupJpbkP1TQcLtgndjdz8fC1JNWKRDPTlJfIb6GM NO4fFAlDurMGibfXP5KnP2Obc34v3hpS8fdgZtqPL5fksdBr21A7rCc227qzHOZQnTep w11Q==; darn=gnusha.org ARC-Authentication-Results: i=2; gmr-mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=IO+9gZMk; spf=pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::130 as permitted sender) smtp.mailfrom=bnagaev@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20230601; t=1710853041; x=1711457841; darn=gnusha.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version:sender :from:to:cc:subject:date:message-id:reply-to; bh=lroUTnnqElOgiTN60KMAO505VgHEki2mZhYt8gLSSSU=; b=uWNA445RKqxpVx361xmpLnoCRavClCjLur8NmZFYiZAwUDElb3jzJtROn3Oef9nHUt W177kCjK5weNgpmn1MOXLfQECwUMp36WQ6D+eP5Ns6GU5zAtqruRbQ4bHfwTWZ8rA/PX QIRFjagTxRcsmk1XYC/EQU3FWHAxRdR9vWTHEhGrFF5DITKHo9ybQ9m5dMjADsxfsaIQ BJkqIA5sVMGmXxC4Qp3C0QJN66ypijU2M7fcTtF5YJ2PojFkCy20rnwJbgOpe5WsPlyu pzOos128+9COAJ3Zo8l4dt/e0Iqv+DLsbwH9CvIPMPB86+nVjBoPxYH7l/3D/Y3CdF1c 5gdA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1710853041; x=1711457841; darn=gnusha.org; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version:from:to:cc :subject:date:message-id:reply-to; bh=lroUTnnqElOgiTN60KMAO505VgHEki2mZhYt8gLSSSU=; b=fdTquRkQJpAvOPYr6+zlcaqrf3m5LnP9WWebgF/WgiJWJ1SQMnp8zPQ4dRpRPwJfv6 8rO8FZ7zFFVHx+yIVezfDakMf6pjNfHkBe5At7yrNYcFTbDMph+4mQ1tdSBzP/Ka5IyS mUcxB9vj2ApwH0r1HdNiCWdQv472h82yUFqhgcSYtI5bWqGS+lrDkVbka8iS6mMKLAKI 8BOfu8ZsILrApofh7aNtHh1aUfUZDFDqzFfRz5Yj9xzQJMHX0SdgSnMWltKg5+suQeKc cCN2ZaMddCw6fA3f3o9EKSRlYB9hl+qSxnhtHZ++uwr6OSQKmaWc7IjcqWwoHhYf4wBu yIbA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1710853041; x=1711457841; h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post :list-id:mailing-list:precedence:x-original-authentication-results :x-original-sender:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :x-beenthere:x-gm-message-state:sender:from:to:cc:subject:date :message-id:reply-to; bh=lroUTnnqElOgiTN60KMAO505VgHEki2mZhYt8gLSSSU=; b=Lt/rMXSV3jr7k1NjNwfFfqKHJ8R+H1/pVZJ+UDoCcNcqcQ4oox4B1jf4Xm1f7x4LHv aQl2wvZFQPU0rhwLDsqZY5+cyQw/GybA86ZFKMbyOFsxBYuUI6i2QTk3DJOcpjJKI/bR v2U6d2C9o9Lk1ijT+tw6aclMBQs31MYh6FumCbmo6jU3iyFSXqeVLU6iGQCqW7OER4MS 6NNt9WGvw6AG1qROf1eQSbwO5qUcL0JIUMx8H1KoN1vchUMlbdp2XxmPfvc1gBhm6rSl DcIDABOVhSXuNfQ+I3ravjZeK1/48SaBaZvr0JPEk8qvaEYak1Ysc3SFPA6y1IwVPrbZ GW0A== Sender: bitcoindev@googlegroups.com X-Forwarded-Encrypted: i=2; AJvYcCWUhUovttWReB7A6PeDitQsZmbWiGbATrLj47WNxUrGa3eBu7CFv96KyxCGmAvVpvA2dIpginpbejOhokVgdU9Gz/AQ0uw= X-Gm-Message-State: AOJu0Yyq44tspRBIbb3mU6dBQp6KfVx2eEcwOVv5nHQwiaeIL2CGdKg7 69l8olKFfQA/shWBOBRMnPv3v+PDiCo9tFj0tSWxepf+c6QzFB2l X-Google-Smtp-Source: AGHT+IEngIdDXvXL8zbvJ1+gKokIQCD/lKPO5kWQMugcEp2Lci8x9p4GcwUnGP6XLeOboicKepNpLg== X-Received: by 2002:a05:6820:2714:b0:5a4:852f:4c08 with SMTP id db20-20020a056820271400b005a4852f4c08mr2141076oob.4.1710853040933; Tue, 19 Mar 2024 05:57:20 -0700 (PDT) X-BeenThere: bitcoindev@googlegroups.com Received: by 2002:a4a:6f59:0:b0:5a4:5fe2:2211 with SMTP id i25-20020a4a6f59000000b005a45fe22211ls4847836oof.1.-pod-prod-07-us; Tue, 19 Mar 2024 05:57:20 -0700 (PDT) X-Received: by 2002:a05:6820:1ca9:b0:5a1:3e58:1396 with SMTP id ct41-20020a0568201ca900b005a13e581396mr139302oob.1.1710853040064; Tue, 19 Mar 2024 05:57:20 -0700 (PDT) Received: by 2002:a05:6808:198a:b0:3c3:7887:cbe4 with SMTP id 5614622812f47-3c37887d296msb6e; Tue, 19 Mar 2024 05:38:38 -0700 (PDT) X-Received: by 2002:a05:6a20:3d24:b0:1a3:4a22:5c5c with SMTP id y36-20020a056a203d2400b001a34a225c5cmr3061071pzi.5.1710851917844; Tue, 19 Mar 2024 05:38:37 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1710851917; cv=none; d=google.com; s=arc-20160816; b=UGwIl9wBPBx+jrA2BzU5Do9+cb++/LjUgAOPy8ahp/Nb8AAhDKwxncOlqyhdJ4DGF/ tUQpjauSunBeJHCHUsdX3jeJfyjHZcWty3At9aj4Vi6El3+EI3vwqmojIAYj2u4w1Ers B8GDSsdcUUFUl6Cg8cIxus0FYCG/IYUevxLNdX/LgI6s/wf3nTzubKlBNZqZswR8TfZB ffssu11Mj0vZQUBgpwfbm30VfymLy6093n5afn8tbRrJ+p5vV8Npsk+HQ981aIkDZH/P K1aJ8Y6Ypz0B2YgUZcxeL+BL9nMqHXbOEBTgmxT7uhqS5wyFscXPyc+CaAJDSSFSJU59 j2Bg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:dkim-signature; bh=uJwA1gYOcKHoHr+cgbraCyRZnf7eON12LAha6qCNgGI=; fh=psWP3UCtCzzPEOUoUzVM9ZZK8adYsTeWDAKCd6L5Zok=; b=unsHwkgi4nYfP2p85qMYN7biEJMsaihe4F2rIYsNTXF1RXLnqdXRLU2HVFb4HgDjq8 epMvGsYi51L0v+VLm6s6IlQbFMl9bmWG9Mv7fM0c5lnTkLlN5oq3QHngI+3yCfj/HBTy HU2y9VOsuII0qp1FIRRlG8VakKfA5JTw7jwglxFPs3OgygPH2LF2MXtcjyuLJ6OGnzh6 B4vE/rR13yxUDwr0qWAjUE01Xv1iD+r08gA0uLqhQYLjPkkm9ZHWkfTHVEGPvVjN47SQ AupQk4jYmbaFGLtzbqZD3yRssauucSNa0yWJPRra/Kg5LPBMi4xyjNFDajiLw0ULu3N+ KX3A==; dara=google.com ARC-Authentication-Results: i=1; gmr-mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=IO+9gZMk; spf=pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::130 as permitted sender) smtp.mailfrom=bnagaev@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from mail-il1-x130.google.com (mail-il1-x130.google.com. [2607:f8b0:4864:20::130]) by gmr-mx.google.com with ESMTPS id bw8-20020a056a02048800b005e430f2514esi609899pgb.0.2024.03.19.05.38.37 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 19 Mar 2024 05:38:37 -0700 (PDT) Received-SPF: pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::130 as permitted sender) client-ip=2607:f8b0:4864:20::130; Received: by mail-il1-x130.google.com with SMTP id e9e14a558f8ab-3666affcb59so24784015ab.2 for ; Tue, 19 Mar 2024 05:38:37 -0700 (PDT) X-Received: by 2002:a92:dc8d:0:b0:366:c68f:cf86 with SMTP id c13-20020a92dc8d000000b00366c68fcf86mr2320600iln.32.1710851917220; Tue, 19 Mar 2024 05:38:37 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Nagaev Boris Date: Tue, 19 Mar 2024 09:37:59 -0300 Message-ID: Subject: Re: [bitcoindev] A Free-Relay Attack Exploiting RBF Rule #6 To: Peter Todd Cc: bitcoindev@googlegroups.com Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Original-Sender: bnagaev@gmail.com X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass header.i=@gmail.com header.s=20230601 header.b=IO+9gZMk; spf=pass (google.com: domain of bnagaev@gmail.com designates 2607:f8b0:4864:20::130 as permitted sender) smtp.mailfrom=bnagaev@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Precedence: list Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com List-ID: X-Google-Group-Id: 786775582512 List-Post: , List-Help: , List-Archive: , List-Unsubscribe: , X-Spam-Score: -0.5 (/) Hi Peter, On Mon, Mar 18, 2024 at 10:24=E2=80=AFAM Peter Todd wr= ote: > Rule #6 creates a path dependency: the order in which replacement transac= tions > are received determines which transactions are ultimately accepted. I'd like to share my thoughts regarding RBFR rules and propose something. The proposed RBFR rule is also path-dependent. Two transactions can conflict with each other, but their fee rates can be too close for one of them to eliminate the other from nodes' mempools. The first transaction a node sees is kept in its mempool. Is it possible to have a rule that is completely path-independent? The eviction rules are path-independent iff, for each pair of conflicting transactions A and B, it is always known which of them should be preferred over the other, and this relation is transitive. Having such a property would be very beneficial in preventing any attacks on the mempool. This property of the mempool can also be seen as the eventual consistency of all the mempools of the nodes. A good property, isn't it? How can we design such a rule system? 1. It must align with miners' incentives; otherwise, it simply won't work. 2. And it must not open the door for DoS attacks on the mempool. The naive approach satisfying the first requirement is a simple rule saying "the higher the fee rate, the more preferential is the transaction." However it does not specify what to do with two transactions of the same fee rate and also doesn't prevent DoS attacks. The former is easy to fix, e.g. preferring the transaction with lower txid. (Must be formally proven though.) Let's discuss the latter, which is a stumbling stone here. Traditionally, the way of preventing DoS was to reject some transactions and to stop their broadcasting at this node. What about deprioritizing them instead? Make two priority queues of transactions in the node: (1) to process incoming transactions and (2) to broadcast. When a transaction is double-spent, it is deprioritized in both queues. If an attacker sends many double-spending transactions to DoS the mempool, not all of them are broadcast further because by the time a transaction is ready to be broadcast, its newer version has already evicted it; the first one is not yet broadcasted. So a node broadcasts fewer transactions than it receives, which reduces the DoS effect. And still, the whole system is eventually consistent; just spammers get their transactions spread slower. What are your thoughts on this scheme? -- Best regards, Boris Nagaev --=20 You received this message because you are subscribed to the Google Groups "= Bitcoin Development Mailing List" group. To unsubscribe from this group and stop receiving emails from it, send an e= mail to bitcoindev+unsubscribe@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/= bitcoindev/CAFC_Vt7BE866DJGQ9EqA%2BDroEkDH%2B4U_72-RpCUfyrLHmtnZ1Q%40mail.g= mail.com.