Skip to content

Extend the CSV timeout limit with another 4 bits #961

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 5 commits into from
Closed

Extend the CSV timeout limit with another 4 bits #961

wants to merge 5 commits into from

Conversation

@stevenroose
Copy link
Contributor

@stevenroose stevenroose commented Feb 18, 2021

Builds on #960.

@stevenroose
tests: Replace CECKey with new ECKey impl from Bitcoin master
236f0b1 
Somehow the CECKey impl is really broken if you want to set
a raw private key. Core master already has a new impl so I just
took that one and replaces the usages. This will probably be equivalent
with what would be rebased in at a later stage.
@stevenroose
Add SIGHASH_RANGEPROOF support
691040a
@stevenroose
tests: Add test feature_sighash_rangeproof.py
b888f42
@stevenroose
Rename SCRIPT_SIGHASH_RANGEPROOF to SCRIPT_DYNAFED_ACTIVE
a26c919 
So that we can more easily group features under a single flag.
Alternatively we might prefer to have independent flags.
@stevenroose
Extend the CSV timeout limit with another 4 bits
06e1238
sanket1729
sanket1729 reviewed Feb 23, 2021
View reviewed changes
src/consensus/tx_verify.cpp
// block prior.
nMinTime = std::max(nMinTime, nCoinTime + (int64_t)((txin.nSequence & CTxIn::SEQUENCE_LOCKTIME_MASK) << CTxIn::SEQUENCE_LOCKTIME_GRANULARITY) - 1);
const uint32_t sequenceLocktimeMask = SequenceLocktimeMask(flags);
nMinTime = std::max(nMinTime, nCoinTime + (int64_t)((txin.nSequence & sequenceLocktimeMask) << CTxIn::SEQUENCE_LOCKTIME_GRANULARITY) - 1);
Copy link
Contributor

@sanket1729 sanket1729 Feb 23, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Worth noting that the SEQUENCE_LOCKTIME_GRANULARITY still corresponds to 512 seconds. Should we introduce another type of granularity in dynafed to be 64 seconds.

From bip 68:

For time-based relative lock-time, 512 second granularity was chosen because bitcoin blocks are generated every 600 seconds. So when using block-based or time-based, the same amount of time can be encoded with the available number of bits. Converting from a sequence number to seconds is performed by multiplying by 512 = 2^9, or equivalently shifting up by 9 bits.

Not many people use time-based timelocks, so maybe doing this might be unnecessary and we are okay with a granularity of 512sec.

Copy link
Member

@apoelstra apoelstra Feb 23, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, I think we should leave it alone. Liquid blocks are every minute anyway (and deviate from that less than Bitcoin deviates from 10 minutes).

sanket1729
sanket1729 reviewed Feb 23, 2021
View reviewed changes
Copy link
Contributor

@sanket1729 sanket1729 left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We currently support CSV going only upto 2^20 blocks which is

>>> (2**20 * 1) / 60 / 24 / 365
1.9950076103500762

about ~2 years into the future. Without too much additional change in code. We can change the mask from 0x000fffff to 0x003fffff to increase it to 8 years with a slight change.

We can get even more by using other bits(bits 23 through 30) but flag 1 << 22 is defined for checking the lock time type and the logic might get messy, so probably is not worth it.

But IMO we should use 22 bits.

@apoelstra
Copy link
Member

apoelstra commented Feb 23, 2021

After discussion with @roconnor-blockstream and others I think we need to change how we're going forward on this:

  • Just widening the mask will theoretically confiscate coins since we are reintepreting bits that are not explicitly allocated for softforks
  • Therefore to widen the mask we need to use v3 transactions
  • ...and add another opcode which requires the use of v3 transactions

Given this implementation complexity, and the fact that we can use time-based locks to get ~388 days worth of locktime (and Liquid signers have honest timestamps, unlike Bitcoin miners), I think we should punt on this and include it in Taproot.

@apoelstra apoelstra mentioned this pull request Jun 10, 2021
Merged
@apoelstra
Copy link
Member

apoelstra commented Sep 8, 2021

Out of scope for Taproot as well. I think we've found enough workarounds (absolute timelocks, time-based relative timelocks) that it's fine to just punt on this. Users who need extreme timelocks can use Simplicity.

@apoelstra apoelstra closed this Sep 8, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@apoelstra apoelstra apoelstra left review comments

+1 more reviewer

@sanket1729 sanket1729 sanket1729 left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@stevenroose @apoelstra @sanket1729