16:57:22 <m-relay> <r​brunner7:monero.social> Meeting in a bit more than 1 hour
17:49:52 <m-relay> <j​berman:monero.social> github . com errors are increasing on my end, pretty annoying
17:50:27 <m-relay> <j​pk68:matrix.org> https://matrix.monero.social/_matrix/media/v1/download/matrix.org/HfEObUkvmovkOxYuXGjeAMWZ
17:50:28 <m-relay> <j​pk68:matrix.org> Getting this one too?
17:50:55 <m-relay> <s​needlewoods_xmr:matrix.org> me too
17:52:50 <m-relay> <j​berman:monero.social> yep
17:55:41 <m-relay> <r​brunner7:monero.social> Yes, and on several repositories not related to Monero as well. I think this time they have outdone themselves, congratulations.
17:56:22 <m-relay> <r​brunner7:monero.social> Maybe they started to vibe-code? "Eating their own dogfood" as it was called many years ago?
17:57:22 <m-relay> <j​pk68:matrix.org> Pretty sure Microslop has openly bragged about vibecoding their products now
17:57:22 <m-relay> <j​pk68:matrix.org> https://www.cnbc.com/2025/04/29/satya-nadella-says-as-much-as-30percent-of-microsoft-code-is-written-by-ai.html
18:00:06 <m-relay> <r​brunner7:monero.social> Meeting time. Hello! (No link to the meeting's meta issue, because GitHub is borked right now)
18:00:17 <m-relay> <j​berman:monero.social> *waves*
18:00:24 <m-relay> <s​needlewoods_xmr:matrix.org> hey
18:00:29 <UkoeHB> Hi
18:00:38 <m-relay> <j​pk68:matrix.org> Hello
18:01:44 <m-relay> <r​brunner7:monero.social> Alright, what are the reports about last week? Me: Could continue a bit with implementing Polyseed for the CLI wallet
18:02:07 <m-relay> <k​oe000:matrix.org> Me: multisig slowly
18:02:22 <m-relay> <s​needlewoods_xmr:matrix.org> added struct to describe transfers: https://github.com/monero-project/monero/compare/c233a3eff0721686a39f7bb363b57a53aa5a75b2..55d02066515d54ba97a2be645b5d33e6bb803ba7
18:02:24 <m-relay> <s​needlewoods_xmr:matrix.org> (hopefully) as you rbrunner recommended/imagined
18:02:26 <m-relay> <s​needlewoods_xmr:matrix.org> also worked on some smaller reports and reviews
18:02:32 <m-relay> <j​pk68:matrix.org> Added support for standard I2P hostnames to the daemon (awaiting review); published an AUR package for Cuprate; attempted to improve fiat API support in the GUI
18:02:55 <m-relay> <j​berman:monero.social> me: mostly beta stressnet prep (binaries coming soonTM) and followup on PR's for release v0.18.5.0
18:02:57 <m-relay> <r​brunner7:monero.social> jpk68: Looks like you pick up speed :)
18:03:32 <m-relay> <j​effro256:monero.social> howdy
18:04:56 <m-relay> <r​brunner7:monero.social> So, if you hope for binaries soon, jberman , no real blockers left I guess?
18:04:57 <m-relay> <j​effro256:monero.social> me: also stressnet prep, plus some vuln handling
18:05:56 <m-relay> <j​berman:monero.social> a small log spam thing I've been discussing with jeffro, it's not a major blocker but I think would be nice to have done. And ofrn is still doing some testing AFAIK
18:06:12 <m-relay> <j​effro256:monero.social> Will have that done in the next couple hours btw
18:06:37 <m-relay> <r​brunner7:monero.social> I wonder how we will fare as an open source project in the light of a possible pick-up of AI found issues. Might get interesting, or maybe merely annoying if we have bad luck
18:07:57 <m-relay> <r​brunner7:monero.social> As I see it, we can't do anything pro-actively, just wait what will happen. I think more or less the whole IT scene is now waiting for how things will turn out security-wise.
18:08:38 <selsta> we received like 30 reports in the past month
18:08:52 <selsta> so far the AI reports have been a couple interesting things and lots of more or less irrelevant edge cases
18:09:17 <m-relay> <r​brunner7:monero.social> Was that above long-term average?
18:09:39 <selsta> yes, previously it would be like 1 report per month
18:09:49 <m-relay> <r​brunner7:monero.social> Ah, you mean only the AI reports were 30?
18:10:06 <m-relay> <r​brunner7:monero.social> 1 per month - oh, ok
18:10:44 <selsta> yes so 30x increase, though i assume we will have solved the low hanging fruits with the next release so let's see if the high amount of reports continue
18:11:39 <m-relay> <j​effro256:monero.social> https://github.com/seraphis-migration/monero/pull/336
18:12:45 <m-relay> <j​pk68:matrix.org> jeffro256: Sorry for asking you this for the 10th time, but have you heard anything new from Ledger/Trezor?
18:13:23 <m-relay> <j​pk68:matrix.org> I also wonder if the Trezor dev who originally implemented support is aware of the possibility of opening a new CCS for it
18:13:53 <selsta> to be precise he was never CCS funded, in the past Trezor paid for it
18:14:16 <m-relay> <j​effro256:monero.social> Unfortunately, nope
18:14:21 <m-relay> <r​brunner7:monero.social> I dimmly remember that with one of the two there is a potential problem with a new protocol that pretty complicated, the protocol to talk to the device?
18:14:23 <m-relay> <j​pk68:matrix.org> RIP
18:15:04 <m-relay> <j​pk68:matrix.org> Yeah, it's kind of ludicrous
18:15:08 <m-relay> <r​edsh4de:matrix.org> the protocol, for reference: https://github.com/trezor/trezor-firmware/blob/main/docs/common/thp/specification.md
18:15:43 <selsta> jeffro if you could prioritise 10431 and 10367 that would be great, last thing missing for the release
18:16:02 <m-relay> <j​pk68:matrix.org> They created a new protocol that can work over Bluetooth or (Web)USB, that includes a cusom NoiseXX handshake and like 4 different trasnport layers
18:16:21 <m-relay> <j​pk68:matrix.org> The spec document (linked above) is quite literally 10x longer than the 'legacy' one
18:16:35 <m-relay> <r​brunner7:monero.social> That does not sound good.
18:16:37 <MarkoPohlo> rbunner, re: the future of open source projects facing AI-found issues - that's where protocol modelling and formal verification come in!
18:17:40 <m-relay> <r​brunner7:monero.social> MarkoPohlo: Hmm, yes, but I guess anything in such a direction will take time, and quite some effort in itself
18:18:19 <m-relay> <r​brunner7:monero.social> Maybe stupid question, but was there a real *need* for a new protocol?
18:18:28 <m-relay> <j​pk68:matrix.org> No...
18:19:05 <m-relay> <r​brunner7:monero.social> You could get the suspicion that they don't want other apps talking to their devices that eagerly anymore ...
18:19:38 <m-relay> <j​pk68:matrix.org> They also advertise their new device as 'post-quantum' despite the fact that the THP (Trezor Host Protocol) in its current state uses ECDH
18:20:16 <m-relay> <j​pk68:matrix.org> I think this is pretty disingenuous
18:20:37 <m-relay> <j​effro256:monero.social> selsta: heard, ty will do that today
18:21:55 <m-relay> <j​pk68:matrix.org> Anyways, I've become sort of intrigued by how an implementation of this would work, and at first glance, it appears we would need to have some sort of abstraction layer that manages the encryption and state machine
18:22:17 <m-relay> <j​effro256:monero.social> Yeah that new protocol seems like it was born in committee hell. Hopefully, once we have Rust toolchain integration, we can simply use Trezor's Rust library
18:22:23 <m-relay> <j​effro256:monero.social> haven't looked into it though
18:22:55 <m-relay> <j​pk68:matrix.org> AFAIK Trezor doesn't have a Rust library for that. Just Python at the moment
18:23:04 <m-relay> <r​brunner7:monero.social> Ah, there is a Rust library that speaks the new protocol? That's at least a shimmer of hope
18:23:24 <m-relay> <j​pk68:matrix.org> There is a BTC-only third-party implementation of it, but it's third party
18:23:35 <m-relay> <j​pk68:matrix.org> and tobtoht has also said it would not be preferable to add more Rust crates
18:23:44 <m-relay> <j​effro256:monero.social> https://github.com/trezor/trezor-firmware/tree/main/rust/trezor-thp/
18:24:17 <m-relay> <j​pk68:matrix.org> How did I now know about that, lmao
18:24:22 <m-relay> <j​pk68:matrix.org> Apologies :)
18:25:37 <m-relay> <j​effro256:monero.social> I also would prefer not to add more crates, but I would prefer less to spend a crap ton of time reinventing the wheel.
18:25:54 <m-relay> <r​brunner7:monero.social> Well, I understand reluctance for adding more dependencies, but maybe it will turn out to be the lesser evil. Somehow I don't see somebody doing that protocol in C++
18:26:07 <m-relay> <j​effro256:monero.social> Especially since Trezor THP is ridiculously complicated
18:27:15 <m-relay> <r​brunner7:monero.social> Complicated == hight potential for bugs. Just saying :)
18:27:59 <m-relay> <r​brunner7:monero.social> I would say what you want when you buy a hardware wallet is a solid step up in security. Maybe that is not that.
18:29:01 <m-relay> <j​pk68:matrix.org> The Rust library also doesn't have an insane amount of dependencies (11, to be exact)
18:29:14 <m-relay> <r​brunner7:monero.social> Alright, looks pretty bleak then. Do we have something else to discuss today?
18:30:27 <m-relay> <p​alinatolmach:matrix.org> It is, but FV is benefitting a lot from AI improvements in terms of proof generation and scalability. Having a protocol model also unlocks many downstream positive effects as it can serve as a reference for AI codege, audits, test generation, vulnerability detection, and so on
18:30:34 <m-relay> <p​alinatolmach:matrix.org> It is, but FV is benefitting a lot from AI improvements in terms of proof generation and scalability. Having a protocol model also unlocks many downstream positive effects as it can serve as a reference for AI codegen, audits, test generation, vulnerability detection, and so on
18:31:16 <m-relay> <r​brunner7:monero.social> Doesn't look like it. Thanks everybody for attending, read you again in 1 week!
18:31:49 <m-relay> <s​needlewoods_xmr:matrix.org> thanks everyone
18:32:42 <m-relay> <r​brunner7:monero.social> palinatolmach: I can't really see what you would want a "protocol model" for. Our node-to-node protocol?
18:33:17 <m-relay> <r​brunner7:monero.social> And how would such a model look? Do you have some already existing examples?
18:40:24 <m-relay> <o​frnxmr:monero.social> Yes sir
18:42:19 <m-relay> <r​brunner7:monero.social> Looks like they are on it: https://www.githubstatus.com/
19:00:46 <m-relay> <p​alinatolmach:matrix.org> It can be more coarse or fine-grained - we can have a more fine-grained model targeting one component, e.g. node-to-node, Carrot, consensus can all be modeled. This model can then be used to formally verify against, but it also unlocks detailed bug finding, since you have a very high-fidelity reference to check against, and so it can also be used to generate higher quality code an<clipped mes
19:00:46 <m-relay> <p​alinatolmach:matrix.org> d tests with AI. It would also be useful as a reference for porting the code to another language, if needed. For just the verification though, with AI doing some of the proofs and existing tools like Aeneas for Rust, we can do source code-level verification in some cases, without the need for modeling. A higher-level model maps out how these different components (consensus, wallet<clipped mes
19:00:48 <m-relay> <p​alinatolmach:matrix.org> , mempool, etc) interact, which is used to prove security properties over this model itself, but also outlines the security assumptions on the boundaries between these parts of the system explicitly, which makes issues there harder to miss.
19:00:50 <m-relay> <p​alinatolmach:matrix.org> One example I can share is the Dafny model we've built for Optimism's Supernode: https://github.com/runtimeverification/_audits_Ethereum-optimism_optimism_interopv2/tree/rv/dafny-models/op-supernode/dafny-models. It's still being worked on, but it has uncovered some simplifications in the design and code architecture, and just generally improving the quality of the audit we've don<clipped mes
19:00:52 <m-relay> <p​alinatolmach:matrix.org> e by feeding as context to AI agents we've used for assisting the review; that's in addition to verifying security properties over this model.
19:01:37 <m-relay> <p​alinatolmach:matrix.org> It can be more coarse or fine-grained - we can have a more fine-grained model targeting one component, e.g. node-to-node, Carrot, consensus can all be modeled. This model can then be used to formally verify against, but it also unlocks detailed bug finding, since you have a very high-fidelity reference to check against, and so it can also be used to generate higher quality code an<clipped mes
19:01:38 <m-relay> <p​alinatolmach:matrix.org> d tests with AI. It would also be useful as a reference for porting the code to another language, if needed. For just the verification though, with AI doing some of the proofs and existing tools like Aeneas for Rust, we can do source code-level verification in some cases, without the need for modeling. A higher-level model maps out how these different components (consensus, wallet<clipped mes
19:01:40 <m-relay> <p​alinatolmach:matrix.org> , mempool, etc) interact, which is used to prove security properties over this model itself, but also outlines the security assumptions on the boundaries between these parts of the system explicitly, which makes issues there harder to miss.
19:01:42 <m-relay> <p​alinatolmach:matrix.org> One example I can share is the Dafny model we've built for Optimism's Supernode: https://github.com/runtimeverification/\_audits\_Ethereum-optimism\_optimism\_interopv2/tree/rv/dafny-models/op-supernode/dafny-models. It's still being worked on, but it has uncovered some simplifications in the design and code architecture, and just generally improved the quality of the audit we've <clipped mes
19:01:44 <m-relay> <p​alinatolmach:matrix.org> done by feeding as context to AI agents we've used for assisting the review; that's in addition to verifying security properties over this model.
19:02:10 <m-relay> <p​alinatolmach:matrix.org> It can be more coarse or fine-grained - we can have a more fine-grained model targeting one component, e.g. node-to-node, Carrot, consensus can all be modeled. This model can then be used to formally verify against, but it also unlocks detailed bug finding, since you have a very high-fidelity reference to check against, and so it can also be used to generate higher quality code an<clipped mes
19:02:11 <m-relay> <p​alinatolmach:matrix.org> d tests with AI. It would also be useful as a reference for porting the code to another language, if needed. For just the verification though, with AI doing some of the proofs and existing tools like Aeneas for Rust, we can do source code-level verification in some cases, without the need for modeling. A higher-level model maps out how these different components (consensus, wallet<clipped mes
19:02:13 <m-relay> <p​alinatolmach:matrix.org> , mempool, etc) interact, which is used to prove security properties over this model itself, but also outlines the security assumptions on the boundaries between these parts of the system explicitly, which makes issues there harder to miss.
19:02:14 <m-relay> <p​alinatolmach:matrix.org> One example I can share is the Dafny model we've built for Optimism's Supernode: https://github.com/runtimeverification/\_audits\_Ethereum-optimism\_optimism\_interopv2/tree/rv/dafny-models/op-supernode/dafny-models. It's still being worked on, but it has uncovered some simplifications in the design and code architecture, and just generally improved the quality of the audit we've <clipped mes
19:02:16 <m-relay> <p​alinatolmach:matrix.org> done by feeding as context to AI agents we've used for assisting the review; that's in addition to verifying security properties over this model.
19:02:18 <m-relay> <p​alinatolmach:matrix.org> It can be more coarse or fine-grained - we can have a more fine-grained model targeting one component, e.g. node-to-node, Carrot, consensus can all be modeled. This model can then be used to formally verify against, but it also unlocks detailed bug finding, since you have a very high-fidelity reference to check against, and so it can also be used to generate higher quality code an<clipped mes
19:02:20 <m-relay> <p​alinatolmach:matrix.org> d tests with AI. It would also be useful as a reference for porting the code to another language, if needed. For just the verification though, with AI doing some of the proofs and existing tools like Aeneas for Rust, we can do source code-level verification in some cases, without the need for modeling. A higher-level model maps out how these different components (consensus, wallet<clipped mes
19:02:22 <m-relay> <p​alinatolmach:matrix.org> , mempool, etc) interact, which is used to prove security properties over this model itself, but also outlines the security assumptions on the boundaries between these parts of the system explicitly, which makes issues there harder to miss.
19:02:24 <m-relay> <p​alinatolmach:matrix.org> One example I can share is the Dafny model we've built for Optimism's Supernode: https://github.com/runtimeverification/\_audits\_Ethereum-optimism\_optimism\_interopv2/tree/rv/dafny-models/op-supernode/dafny-models. It's still being worked on, but it has uncovered some simplifications in the design and code architecture, and just generally improved the quality of the audit we've <clipped mes
19:02:27 <m-relay> <p​alinatolmach:matrix.org> done by feeding as context to AI agents we've used for assisting the review; that's in addition to verifying security properties over this model.
19:02:28 <m-relay> <p​alinatolmach:matrix.org> It can be more coarse or fine-grained - we can have a more fine-grained model targeting one component, e.g. node-to-node, Carrot, consensus can all be modeled. This model can then be used to formally verify against, but it also unlocks detailed bug finding, since you have a very high-fidelity reference to check against, and so it can also be used to generate higher quality code an<clipped mes
19:02:30 <m-relay> <p​alinatolmach:matrix.org> d tests with AI. It would also be useful as a reference for porting the code to another language, if needed. For just the verification though, with AI doing some of the proofs and existing tools like Aeneas for Rust, we can do source code-level verification in some cases, without the need for modeling. A higher-level model maps out how these different components (consensus, wallet<clipped mes
19:02:32 <m-relay> <p​alinatolmach:matrix.org> , mempool, etc) interact, which is used to prove security properties over this model itself, but also outlines the security assumptions on the boundaries between these parts of the system explicitly, which makes issues there harder to miss.
19:02:34 <m-relay> <p​alinatolmach:matrix.org> One example I can share is the Dafny model we've built for Optimism's Supernode: https://github.com/runtimeverification/\_audits\_Ethereum-optimism\_optimism\_interopv2/tree/rv/dafny-models/op-supernode/dafny-models. It's still being worked on, but it has uncovered some simplifications in the design and code architecture, and just generally improved the quality of the audit we've <clipped mes
19:02:36 <m-relay> <p​alinatolmach:matrix.org> done by feeding as context to AI agents we've used for assisting the review; that's in addition to verifying security properties over this model.