📅 Original date posted:2020-12-21
📝 Original message:On Monday, December 21, 2020 2:57 PM, Pieter Wuille via bitcoin-dev <bitcoin-dev at lists.linuxfoundation.org> wrote:
> On Sunday, December 20, 2020 9:37 PM, Karl-Johan Alm via bitcoin-dev bitcoin-dev at lists.linuxfoundation.org wrote:
>
> > Thanks a lot for taking the time to brush up the BIP. For what it's
> > worth, I am all for these changes, and I see them as clear
> > improvements all around.
> > IIRC Pieter was the one who originally suggested the two-checks
> > approach (invalid, inconclusive, valid) which is being modified here,
> > so would be good if you chimed in (or not -- which I'll assume means
> > you don't mind).
>
> I agree with the idea of permitting incomplete validators to return inconclusive as well. That doesn't really reduce the functionality (given that "inconclusive" was already a potential result), and it obviously makes it much more accessible to a variety of software.
>
> This suggestion breaks the original use of inconclusive though: the ability to detect that future features are used in the signature. The idea was to use divergence between "consensus valid" and "standardness valid" as a proxy for future extensions to be detected (e.g. OP_NOPn, future witness versions, ...). I think it's undesirable that these things now become unconditionally invalid (until the BIP is updated, but once that happens old validators will give a different result than new ones).
>
> Since the BIP no longer relies on a nebulous concept of standardness, and instead specifically defines which standardness features are to be considered, this seems easy to fix: whenever validation fails due to any of those, require reporting inconclusive instead of invalid (unless of course something actually invalid also happens). In practice I guess you'd implement that (in capable validators) by still doing validation twice, once with all features enabled that distinguish between valid/invalid, and if valid, again but now with the features enabled that distinguish between valid and (invalid or inconclusive).
Re-reading your proposed text, I'm wondering if the "consensus-only validation" extension is intended to replace the inconclusive-due-to-consensus-and-standardness-differ state. If so, I don't think it does, and regardless it doesn't seem very useful.
What I'm suggestion could be specified this way:
* If validator understands the script:
* If signature is consensus valid (as far as the validator knows):
* If signature is not known to trigger standardness rules intended for future extension (well-defined set of rules listed in BIP, and revisable): return valid
* Otherwise: return inconclusive
* Otherwise: return invalid
* Otherwise: return inconclusive
Or in other words: every signature has a well-defined result (valid, invalid, inconclusive) + validators may choose to report inconclusive for anything they don't understand.
This has the property that as long as new consensus rules only change things that were covered under for-future-extension standardness rules, no two validators will ever claim valid and invalid for the same signature. Only valid+inconclusive or invalid+inconclusive.
Cheers,
--
Pieter
Pieter Wuille [ARCHIVE] /
npub1tj…jtl6r
2023-06-07 18:27:52
in reply to nevent1q…fc3d
Author Public Key
npub1tjephawh7fdf6358jufuh5eyxwauzrjqa7qn50pglee4tayc2ntqcjtl6rPublished at
2023-06-07 18:27:52Event JSON
{
"id": "a8e78b8a7992cc07c23088c888d5c5fa6f493067027140e83de336c55da812b5",
"pubkey": "5cb21bf5d7f25a9d46879713cbd32433bbc10e40ef813a3c28fe7355f49854d6",
"created_at": 1686162472,
"kind": 1,
"tags": [
[
"e",
"e10447dfee8bafa1171ad4dfa089cd3f0a462be97bcbeeb2c3d15ed54e8a353f",
"",
"root"
],
[
"e",
"fe83aebd7b128b03ebb341149877cced784ceaf309bd00c583ebea02b7f51cc3",
"",
"reply"
],
[
"p",
"5cb21bf5d7f25a9d46879713cbd32433bbc10e40ef813a3c28fe7355f49854d6"
]
],
"content": "📅 Original date posted:2020-12-21\n📝 Original message:On Monday, December 21, 2020 2:57 PM, Pieter Wuille via bitcoin-dev \u003cbitcoin-dev at lists.linuxfoundation.org\u003e wrote:\n\n\u003e On Sunday, December 20, 2020 9:37 PM, Karl-Johan Alm via bitcoin-dev bitcoin-dev at lists.linuxfoundation.org wrote:\n\u003e\n\u003e \u003e Thanks a lot for taking the time to brush up the BIP. For what it's\n\u003e \u003e worth, I am all for these changes, and I see them as clear\n\u003e \u003e improvements all around.\n\u003e \u003e IIRC Pieter was the one who originally suggested the two-checks\n\u003e \u003e approach (invalid, inconclusive, valid) which is being modified here,\n\u003e \u003e so would be good if you chimed in (or not -- which I'll assume means\n\u003e \u003e you don't mind).\n\u003e\n\u003e I agree with the idea of permitting incomplete validators to return inconclusive as well. That doesn't really reduce the functionality (given that \"inconclusive\" was already a potential result), and it obviously makes it much more accessible to a variety of software.\n\u003e\n\u003e This suggestion breaks the original use of inconclusive though: the ability to detect that future features are used in the signature. The idea was to use divergence between \"consensus valid\" and \"standardness valid\" as a proxy for future extensions to be detected (e.g. OP_NOPn, future witness versions, ...). I think it's undesirable that these things now become unconditionally invalid (until the BIP is updated, but once that happens old validators will give a different result than new ones).\n\u003e\n\u003e Since the BIP no longer relies on a nebulous concept of standardness, and instead specifically defines which standardness features are to be considered, this seems easy to fix: whenever validation fails due to any of those, require reporting inconclusive instead of invalid (unless of course something actually invalid also happens). In practice I guess you'd implement that (in capable validators) by still doing validation twice, once with all features enabled that distinguish between valid/invalid, and if valid, again but now with the features enabled that distinguish between valid and (invalid or inconclusive).\n\nRe-reading your proposed text, I'm wondering if the \"consensus-only validation\" extension is intended to replace the inconclusive-due-to-consensus-and-standardness-differ state. If so, I don't think it does, and regardless it doesn't seem very useful.\n\nWhat I'm suggestion could be specified this way:\n* If validator understands the script:\n * If signature is consensus valid (as far as the validator knows):\n * If signature is not known to trigger standardness rules intended for future extension (well-defined set of rules listed in BIP, and revisable): return valid\n * Otherwise: return inconclusive\n * Otherwise: return invalid\n* Otherwise: return inconclusive\n\nOr in other words: every signature has a well-defined result (valid, invalid, inconclusive) + validators may choose to report inconclusive for anything they don't understand.\n\nThis has the property that as long as new consensus rules only change things that were covered under for-future-extension standardness rules, no two validators will ever claim valid and invalid for the same signature. Only valid+inconclusive or invalid+inconclusive.\n\nCheers,\n\n--\nPieter",
"sig": "123678b18ec783140158b325af4d970d50035be281793bfb5d2d0675257219a2ad100ed98332a4f6fef5ea4c117e73d63d899e776f660f48b0dae4fd36b77bd9"
}