Challenge: I deposited 0.25 XMR into the wallet for which the secret spend key is 0. The first person to recover it gets to keep it. There is a hint in #feather:monero.social

There's actually 0.26336 XMR up for grabs (0.01336 XMR had been sitting there for a while).

<tobtoht[m]> "Challenge: I deposited 0.25..." <- Doesn't that mean it is a view-only wallet?

* view-only wallet? I don't see the hint, but if the hint is the public address, then that should make it straightforward.

tobtoht[m] I claimed it. The amount of hackery was literally just 1 line of changed code :D

Transaction p2pool.io/explorer/tx/517c4cf6c5993…d97e2c50958593924f4e8e167ce9f79b01b

I'll leave the remaining 0.01336 XMR there so others can play

Is that again some "abbey abbey abbey" wallet stuff? Where you just have to neuter some assertion in case of a zero spend key, and there you go?

I think so

I am trying now

I have never went into Monero's innerworkings

yes it is

We had the same challenge about 2, maybe 3 years ago. Maybe with some clever googling one can even find the code line in question

I think I know what it is

I think it is in simplewallet.cpp

Go for it :)

Hmmm .. wouldn't think so, but what do I know

Where would it check for the spend key being 0

In the place where the wallet code is?

You can't fail basically; if you don't crack the address and get the funds, you still learn some more about Monero code base, which is nice

Well, should I tell you, or try to get the funds myself? :)

Well, you have to construct a transaction. Ask yourself where in the code it does that.

This is my first time ever looking at source code

In monero*

else if (ring_size == 0)

Oh the excitement then

No, the ring size shouldn't be any problem

[wallet 41fJjQ]: sweep_all 0

Error: Ring size must not be 0

Ok, maybe I am wrong.

sweep_all won't work if you scanned everything

some inputs are already spent, but wallet can't see it

Then would it be sweep_unmixable?

you have to pick inputs one by one

(after you've fixed the C++ code)

I get Error: RPC error: failed to get output histogram but I have no idea what that means

Send all unmixable outputs to yourself with ring_size 1

If I make the ring size 0

Maybe that would work

It had nothing to do with ring size, and you can't change it because of consensus rules

Right, that's what I thought

I'm "grasping at straws"

I'm not sure what the Error: RPC error: failed to get output histogram is

Possible hint: If you have a view-only wallet, it has a spend key that is zero

(probably)

I know that, but I don't know about the math

I'm not sure where the secret spend key is checked for

Well, maybe if you can tell the wallet to go ahead nevertheless despite normally it would think it can't because it's a view only wallet

I wouldn't know where the check for that is

I'm searching through cryptonote_basic/account.h

I don't think it's here

Cold :)

If anybody else is reading along they might well be faster than you ...

Life is unfair

It's 0.001xmr or something lol

I just wanna understand this

That's the spirit

Just thinking, if we don't publish the solution too prominently, we can repeat this challenge any number of times in the future

After somebody sent in new funds of course

that bring a question, do we have an actual burn address in Monero?

Yeah, I would assume most users only understand the definition of output in a way to explain it to a five year old, not know the math behind it

* of output and other basic terms in a

Monero to test on? There is the test net I believe

I would guess not, but not sure

(regarding burn address)

I'm only seeing crypto::null_skey in multisignature stuff

Yeah, that's nice code written by koe probably. Older key checks for zero keys in much more hacky ways

*older code

Oh

We don't want to make it too easy, do we?

The people to complain about "off topic" are not yet here it seems ...

Jannies are asleep

Burning would be possible by using the same stealth address more than once, if I remember correctly. web.getmonero.org/2018/09/25/a-post-mortum-of-the-burning-bug.html

right

<rbrunner> "Yeah, that's nice code written..." <- Is it just `key == null`??

s/`??/`?!/

I don't see anything

You will probably have to find the method that builds txs first, and then scan that visually. Just speculating, I don't know the *exact* solution myself

Still "Balance: 0.013360040000, unlocked balance: 0.013360040000"

where is my popcorn :D

you're close

Yeah, wonder how many people lurk and try now

I only see build_tx in hardware wallet stuff

We probably should indeed repeat that to motivate people to read the source code, and for some general fun

until someone sets up modified monero-wallet-rpc and a crontab script to sweep_all :D

I agree, this is intriguing

sech1: It's in the rpc?

no

I'm not looking there

oh ok

I used monero-wallet-cli to claim the reward

but monero-wallet-rpc will work too

sech1: I'm using that now

tx is in wallet.cpp 200+ times

Not sure where the tx is built

Maybe it is in unsigned_transaction.cpp

I would assume that is where they "build" the transaction

Pretty sure I remember that last time it was luigi who claimed the funds which I found a tad unfair

I'm about to fall asleep, but I want to understand the problem

This is because the monero wallet does not allow a null spend key, right?

The tx building code hides in the most hideous mass of code that we have in our codebase

And the modification is removing that check?

How convenient

* How convenient (I am joking)

0 has a 0 key image which is banned iirc

Could someone explain key images to me again?

I have a small understanding but completely forgot

s/have/had/

<MrTerminat0r> BRO

FRЕЕ GIFТ DISСОRD NIТRO - cutt.us/take-discord

I will go to sleep now, I will try later. Very interesting challenge

kayabanerve[m] no, IIRC the key image was 01000....000

Is that the public spend key?

sech1: That's the encoding of identity. The identity key image isn't allowed IIRC

Then how did I manage to spend it 🤷

all incoming tx had this image in that wallet

or maybe I can't spend what I received in my wallet, I didn't check yet

You can't spend anything with a 0 output key under CLSAG. Seraphis explicitly bans 0 linking tags.

A 0 spend key with a 0 view key will always produce a 0 output key. Even if it was spendable, it'd only be spendable once.

but I think the view key isn't 0 there

Gratz sech1, I can confirm the 0.25 XMR has been claimed.

yes, view key isn't 0

I hope these pesky cryptographers don't spoil all the fun :)

Ah, for a non-zero view key, then yeah, it's claimable.

So how do XMR end up in that wallet? Someone sending it on purpose, or some wallet bug?

there are not that many transactions there

I once sent in a little amount just to test whether you can transfer in normally without problems, which I think is the case. But no idea in general who sends there

There is a 9+1 XMR deposit (and subsequent recovery) attributable to a seed library bug.

it was 9.08589+1 XMR, someone left 0.08589 XMR behind

which was claimed ~10 days later

I think both those withdrawals were me. When I raced to recover the funds I went by what the person said they had deposited. I did send them back the full amount.

I kind of expected someone to have an autosweeper for this wallet, so I was surprised to find the remaining 0.085 still there when I opened the wallet 10 days later.

<sech1> "So how do XMR end up in that..." <- a user was... packaging featherwallet ? and did something wrong? and created a version that would create a wallet with the exact same characteristics as the abbey 24x wallet, tobtoht can explain this is just from my memory

"So far, it looks like something with the way Feather was built for Fedora caused the monero-seed library to generate invalid seeds with null spendkeys." (release builds where never effected) and appears to be an isolated incident

and somewhere in this PR it was fixed feather-wallet/feather #17/files

IIRC, they/their package build system had removed an undesirable linker flag from our CMakeLists which caused some memory to not get initialized properly inside the monero-seed library. It produced valid looking mnemonic seeds, but encoded a null spendkey. Learned a valuable lesson about the importance of runtime tests that day.

does anyone know anything about Glitter finance repo.getmonero.org/monero-project/ccs-proposals/-/merge_requests/396

Hmmm. Googled and read a bit. Don't know. Begs the question, if they could rise USD 7.2, as per text, why do they need XMR 445 from us?

indeed, they are very rich and sucessful

singke handedly raisd 7.2m for this leaking faucet, i mean, money sink

Wheres the moolah

rbrunner: my sentiments exactly

Also, the service is a joke if its just another privacy harming houdini condom tunnel

repo.getmonero.org/monero-project/c…als/-/merge_requests/396#note_21685 i preemptively added your feedback ofrnxmr

People need to learn, -100+100 with never = 💯

Much appreciated

from wallets listed on getmonero.org/downloads/#mobilelight

only edge have trackers inside the android app

geonic, is there any way/place to watch your short right now?

it’s not released yet

this teaser has all the Monero bits in the movie

and this is the official trailer: twitter.com/markofdistinctn/status/1634723732186071041?s=20