Return-Path: Received: from smtp4.osuosl.org (smtp4.osuosl.org [140.211.166.137]) by lists.linuxfoundation.org (Postfix) with ESMTP id D8C40C000E for ; Sat, 4 Sep 2021 03:32:34 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by smtp4.osuosl.org (Postfix) with ESMTP id BD6D7426BD for ; Sat, 4 Sep 2021 03:32:34 +0000 (UTC) X-Virus-Scanned: amavisd-new at osuosl.org X-Spam-Flag: NO X-Spam-Score: -2.799 X-Spam-Level: X-Spam-Status: No, score=-2.799 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from smtp4.osuosl.org ([127.0.0.1]) by localhost (smtp4.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dPkf_Bf9JNOx for ; Sat, 4 Sep 2021 03:32:33 +0000 (UTC) X-Greylist: domain auto-whitelisted by SQLgrey-1.8.0 Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by smtp4.osuosl.org (Postfix) with ESMTPS id 6FCB7426AF for ; Sat, 4 Sep 2021 03:32:33 +0000 (UTC) Received: from mail-lf1-f46.google.com (mail-lf1-f46.google.com [209.85.167.46]) (authenticated bits=0) (User authenticated as jlrubin@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 1843WUGx014969 (version=TLSv1/SSLv3 cipher=AES128-GCM-SHA256 bits=128 verify=NOT) for ; Fri, 3 Sep 2021 23:32:31 -0400 Received: by mail-lf1-f46.google.com with SMTP id f18so2068842lfk.12 for ; Fri, 03 Sep 2021 20:32:31 -0700 (PDT) X-Gm-Message-State: AOAM530MH+MiDVklZmdiAptzfpeCgb79SM+7STRA0e5Cltv56XS9zZXu NA8EFsvw6fFQfukhBhEDDfn9Y6xJt5jI7Ocdy6Y= X-Google-Smtp-Source: ABdhPJwI3wRaauUHFJf9PLKPf8+B7pkLGhtmV4+40hhN/9JXOzUDu352QE6Bble4bddXJ9MfZv0BcjSyiZkCDci/584= X-Received: by 2002:a19:c7c3:: with SMTP id x186mr1492448lff.175.1630726350298; Fri, 03 Sep 2021 20:32:30 -0700 (PDT) MIME-Version: 1.0 From: Jeremy Date: Fri, 3 Sep 2021 20:32:19 -0700 X-Gmail-Original-Message-ID: Message-ID: To: Bitcoin development mailing list Content-Type: multipart/alternative; boundary="000000000000d5e2f205cb23109b" Subject: [bitcoin-dev] Note on Sequence Lock Upgrades Defect X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: Bitcoin Protocol Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 04 Sep 2021 03:32:35 -0000 --000000000000d5e2f205cb23109b Content-Type: text/plain; charset="UTF-8" Hi Bitcoin Devs, I recently noticed a flaw in the Sequence lock implementation with respect to upgradability. It might be the case that this is protected against by some transaction level policy (didn't see any in policy.cpp, but if not, I've put up a blogpost explaining the defect and patching it https://rubin.io/bitcoin/2021/09/03/upgradable-nops-flaw/ I've proposed patching it here https://github.com/bitcoin/bitcoin/pull/22871, it is proper to widely survey the community before patching to ensure no one is depending on the current semantics in any live application lest this tightening of standardness rules engender a confiscatory effect. Best, Jeremy -- @JeremyRubin --000000000000d5e2f205cb23109b Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Hi Bitcoin Devs,

I= recently noticed a flaw in the Sequence lock implementation with respect t= o upgradability. It might be the case that this is protected against by som= e transaction level policy (didn't see any in policy.cpp, but if not, I= 've put up a blogpost=C2=A0explaining the defect and patching it=C2=A0<= a href=3D"https://rubin.io/bitcoin/2021/09/03/upgradable-nops-flaw/">https:= //rubin.io/bitcoin/2021/09/03/upgradable-nops-flaw/

I've prop= osed patching it here=C2=A0https://github.com/bitcoin/bitcoin/pull/22871, it is proper t= o widely survey the community before patching to ensure no one is depending= on the current semantics in any live application lest this tightening of s= tandardness rules engender a confiscatory effect.

Best,

Jeremy<= /div>
--000000000000d5e2f205cb23109b--