📅 Original date posted:2013-08-07
📝 Original message:On Wed, Aug 7, 2013 at 11:17 PM, Mike Hearn <mike at plan99.net> wrote:
>
>> I'd like to hear from other wallet implementors. Do you have a notion
>> of 'locked inputs' ? The tricky bit in constructing a transaction but
>> not broadcasting it right away is the inputs must be locked, so
>> they're not accidentally double-spent.
>
>> bitcoinj separates the concept of committing a tx to the wallet from
> broadcasting it. However by default transactions that weren't seen in the
> chain yet will be announced when a new peer is connected to. It'd take extra
> code to suppress that, and it's unclear to me why that's useful. I agree
> with Pieter that it should be the merchants responsibility to get the tx out
> there, but having the client do the broadcast as well can't really hurt
> (except perhaps some privacy impact).
My concerns here are:
* Making sure wallet applications can function without supporting the
P2P protocol (which drops a huge implementation overhead for simple -
perhaps hardware-based - wallets).
* Making sure the responsibility of confirming transactions is with
the receiver (while the responsibility of creating a confirmable
transaction is with the sender), which again simplifies wallet
implementation.
* Making receiving of metadata reliable, by minimizing cases where a
transaction is accidentally broadcast without the receiver being told
about it. This is perhaps not possible entirely, but it should be
possible to reduce it to a point where the remaining cases can be
dealt with manually. This also means indeed being able to give a
bitcoin URI (or why not just a URL to a payment descriptor?) that does
not contain a static Bitcoin address. I understand the compatibility
concern here, but IMHO we should do all effort to get rid of static
addresses were possible - the public key should be negotiated be
sender and receiver.
I worry about the scenario where some evil hotspot owner observes a
payment request, and later sees a bitcoin P2P transaction crediting
that key, but without payment being sent to the payment_uri (because
he blocked it), thus allowing him to construct a payment message
himself with the request + transaction, and adding his own refund
address or delivery location, or ... To fix problems related to this
completely, we'd need transactions that commit to the payment message,
instead of the other way around. I believe the pay-to-contract scheme
presented by Timo Hanke at the San Jose conference solved this.
--
Pieter
Pieter Wuille [ARCHIVE] /
npub1tj…jtl6r
2023-06-07 15:05:36
in reply to nevent1q…6n9g
Author Public Key
npub1tjephawh7fdf6358jufuh5eyxwauzrjqa7qn50pglee4tayc2ntqcjtl6rPublished at
2023-06-07 15:05:36Event JSON
{
"id": "42e3a7643398826a244b74692449c69b434f8fc84b3b5391dbc3ed6d49665ae4",
"pubkey": "5cb21bf5d7f25a9d46879713cbd32433bbc10e40ef813a3c28fe7355f49854d6",
"created_at": 1686150336,
"kind": 1,
"tags": [
[
"e",
"c5e56f29f73ae037803d4c07616ae2b1311014baf62f54f10973c0b1b685df68",
"",
"root"
],
[
"e",
"9ef8c5f9a9a36542e9ebd3d264b77f32f8de760ec4ea0b88b11cbb9f61e176d9",
"",
"reply"
],
[
"p",
"f2c95df3766562e3b96b79a0254881c59e8639f23987846961cf55412a77f6f2"
]
],
"content": "📅 Original date posted:2013-08-07\n📝 Original message:On Wed, Aug 7, 2013 at 11:17 PM, Mike Hearn \u003cmike at plan99.net\u003e wrote:\n\u003e\n\u003e\u003e I'd like to hear from other wallet implementors. Do you have a notion\n\u003e\u003e of 'locked inputs' ? The tricky bit in constructing a transaction but\n\u003e\u003e not broadcasting it right away is the inputs must be locked, so\n\u003e\u003e they're not accidentally double-spent.\n\u003e\n\u003e\u003e bitcoinj separates the concept of committing a tx to the wallet from\n\u003e broadcasting it. However by default transactions that weren't seen in the\n\u003e chain yet will be announced when a new peer is connected to. It'd take extra\n\u003e code to suppress that, and it's unclear to me why that's useful. I agree\n\u003e with Pieter that it should be the merchants responsibility to get the tx out\n\u003e there, but having the client do the broadcast as well can't really hurt\n\u003e (except perhaps some privacy impact).\n\nMy concerns here are:\n* Making sure wallet applications can function without supporting the\nP2P protocol (which drops a huge implementation overhead for simple -\nperhaps hardware-based - wallets).\n* Making sure the responsibility of confirming transactions is with\nthe receiver (while the responsibility of creating a confirmable\ntransaction is with the sender), which again simplifies wallet\nimplementation.\n* Making receiving of metadata reliable, by minimizing cases where a\ntransaction is accidentally broadcast without the receiver being told\nabout it. This is perhaps not possible entirely, but it should be\npossible to reduce it to a point where the remaining cases can be\ndealt with manually. This also means indeed being able to give a\nbitcoin URI (or why not just a URL to a payment descriptor?) that does\nnot contain a static Bitcoin address. I understand the compatibility\nconcern here, but IMHO we should do all effort to get rid of static\naddresses were possible - the public key should be negotiated be\nsender and receiver.\n\nI worry about the scenario where some evil hotspot owner observes a\npayment request, and later sees a bitcoin P2P transaction crediting\nthat key, but without payment being sent to the payment_uri (because\nhe blocked it), thus allowing him to construct a payment message\nhimself with the request + transaction, and adding his own refund\naddress or delivery location, or ... To fix problems related to this\ncompletely, we'd need transactions that commit to the payment message,\ninstead of the other way around. I believe the pay-to-contract scheme\npresented by Timo Hanke at the San Jose conference solved this.\n\n-- \nPieter",
"sig": "b68e47e8fd941107662f9639fdfa7efc1df3690d87fadc599ae4019d26836af1eade44d6924120a9f2104250976eb279e8d51aedf9cdf56f380c618d8ea900ed"
}