📅 Original date posted:2020-12-06
📝 Original message:‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Sunday, December 6, 2020 5:04 AM, David A. Harding <dave at dtrt.org> wrote:
> On Sat, Dec 05, 2020 at 11:10:51PM +0000, Pieter Wuille via bitcoin-dev wrote:
>
> > I think these results really show there is no reason to try to
> > maintain the old-software-can-send-to-future-segwit-versions property,
> > given that more than one not just didn't support it, but actually sent
> > coins into a black hole.
>
> I don't think this is a good criteria to use for making a decision. We
> shouldn't deny users of working implementations the benefit of a feature
> because some other developers didn't implement it correctly.
>
> > Thus, I agree with Rusty that we should change the checksum for v1+
> > unconditionally.
>
> I disagreed with Rusty previously and he proposed we check to see how
> disruptive an address format change would be by seeing how many wallets
> already provide forward compatibility and how many would need to be
> updated for taproot no matter what address format is used. I think that
> instead is a good criteria for making a decision.
>
> I understand the results of that survey to be that only two wallets
> correctly handled v1+ BIP173 addresses. One of those wallets is Bitcoin
> Core, which I personally believe will unhesitatingly update to a new
> address format that's technically sound and which has widespread support
> (doubly so if it's just a tweak to an already-implemented checksum
> algorithm).
Hi Dave,
You're right to point out there is nuance I skipped over.
Let's look at the behavior of different classes of software/services that exist today when trying to send to v1+ addresses:
(A) Supports sending to v1+ today
* Old proposal: works, but subject to bech32 insertion issue
* New proposal: fails
(B) Fails to send to v1+ today
* Old proposal: fails
* New proposal: fails
(C) Incorrectly sends to v1+ today
* Old proposal: lost funds
* New proposal: fails
So the question is how the support for sending to v1+ in (a) software weighs up against protecting both (a) from the insertion issue, and (c) from lost funds. I do think (c) matters in this equation - people may choose to avoid adopting v1+ witnesses if it were to be known that some senders out there would misdirect funds. But the fact that (a) is small also means there is very little to gain from the old proposal.
So perhaps I should have formulated it as: the small number of v1+ compatible senders today (regardless of the reasons for that) shows how futile the attempt to have one address type for all witness versions was, and the fact that there are even some who misdirect(ed) funds is the final nail in the coffin. Changing the checksum unconditionally gives us a new attempt at that.
> Given that, I also now agree with changing the checksum for v1+.
Great.
Cheers,
--
Pieter
Pieter Wuille [ARCHIVE] /
npub1tj…jtl6r
2023-06-07 18:27:41
in reply to nevent1q…0tcr
Author Public Key
npub1tjephawh7fdf6358jufuh5eyxwauzrjqa7qn50pglee4tayc2ntqcjtl6rPublished at
2023-06-07 18:27:41Event JSON
{
"id": "6300fd563e0eee68951ea31bae92e52e3d253341bb0cf5272f1e38fdd3d8d763",
"pubkey": "5cb21bf5d7f25a9d46879713cbd32433bbc10e40ef813a3c28fe7355f49854d6",
"created_at": 1686162461,
"kind": 1,
"tags": [
[
"e",
"a33b31314cc146fbf560014adb2469570c5de8ee11aa7f1e7f70e8cf3a07a02d",
"",
"root"
],
[
"e",
"1f387846650413e24caa608bece73f1c4304036d5ae9f2dce71c19d659161187",
"",
"reply"
],
[
"p",
"d3574a24208f4e3d0821bb4a69a0c3ae842043d444fa5c4a8c49c369918a6fb2"
]
],
"content": "📅 Original date posted:2020-12-06\n📝 Original message:‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐\nOn Sunday, December 6, 2020 5:04 AM, David A. Harding \u003cdave at dtrt.org\u003e wrote:\n\n\u003e On Sat, Dec 05, 2020 at 11:10:51PM +0000, Pieter Wuille via bitcoin-dev wrote:\n\u003e\n\u003e \u003e I think these results really show there is no reason to try to\n\u003e \u003e maintain the old-software-can-send-to-future-segwit-versions property,\n\u003e \u003e given that more than one not just didn't support it, but actually sent\n\u003e \u003e coins into a black hole.\n\u003e\n\u003e I don't think this is a good criteria to use for making a decision. We\n\u003e shouldn't deny users of working implementations the benefit of a feature\n\u003e because some other developers didn't implement it correctly.\n\u003e\n\u003e \u003e Thus, I agree with Rusty that we should change the checksum for v1+\n\u003e \u003e unconditionally.\n\u003e\n\u003e I disagreed with Rusty previously and he proposed we check to see how\n\u003e disruptive an address format change would be by seeing how many wallets\n\u003e already provide forward compatibility and how many would need to be\n\u003e updated for taproot no matter what address format is used. I think that\n\u003e instead is a good criteria for making a decision.\n\u003e\n\u003e I understand the results of that survey to be that only two wallets\n\u003e correctly handled v1+ BIP173 addresses. One of those wallets is Bitcoin\n\u003e Core, which I personally believe will unhesitatingly update to a new\n\u003e address format that's technically sound and which has widespread support\n\u003e (doubly so if it's just a tweak to an already-implemented checksum\n\u003e algorithm).\n\nHi Dave,\n\nYou're right to point out there is nuance I skipped over.\n\nLet's look at the behavior of different classes of software/services that exist today when trying to send to v1+ addresses:\n\n(A) Supports sending to v1+ today\n * Old proposal: works, but subject to bech32 insertion issue\n * New proposal: fails\n(B) Fails to send to v1+ today\n * Old proposal: fails\n * New proposal: fails\n(C) Incorrectly sends to v1+ today\n * Old proposal: lost funds\n * New proposal: fails\n\nSo the question is how the support for sending to v1+ in (a) software weighs up against protecting both (a) from the insertion issue, and (c) from lost funds. I do think (c) matters in this equation - people may choose to avoid adopting v1+ witnesses if it were to be known that some senders out there would misdirect funds. But the fact that (a) is small also means there is very little to gain from the old proposal.\n\nSo perhaps I should have formulated it as: the small number of v1+ compatible senders today (regardless of the reasons for that) shows how futile the attempt to have one address type for all witness versions was, and the fact that there are even some who misdirect(ed) funds is the final nail in the coffin. Changing the checksum unconditionally gives us a new attempt at that.\n\n\u003e Given that, I also now agree with changing the checksum for v1+.\n\nGreat.\n\nCheers,\n\n--\nPieter",
"sig": "22cd9dd55ac88a9b44d90d0a72a9ad6585b2daf85c9e100955e52505a78aeb2aa03698e16bef35ef5fb5a1a7a24b4a46b77d6d795969d9076d52608560a86a84"
}