@kenCode, I come out of my slumber after having filled about 30 captchas to train some google AI against my will (cloudfart still going strong here on the forum it seems) to express my concern about the latest update.

Hey karnal, sorry for my belated reply here, I don't use this forum anymore, but today I popped in because we have a security related announcement. As you know, we do constant security audits on the code that we produce, as well as code that others have produced. We have a telegram group where we keep everyone updated almost daily, here: https://t.me/Agorise We have 7 products being released this year and next, including Stealth, so it would be wise to at least follow the pinned items in that group to stay up to date with everything that we produce. There are hundreds of knowledgeable folks in our group chat there.
 
=====
Update on existing Blinded Tx; Security
 
As mentioned a couple days ago (in telegram: https://t.me/Agorise), we discovered somewhat of a glaring oversight in the way Range Proofs are handled in the existing Bitshares CLI WALLET.
 
It turns out the CLI WALLET’s choice of RP parameters results in proofs that reveal the ORDER OF MAGNITUDE of a transaction amount. In other words: give me ANY "Blinded" balance on the blockchain right now, and if it was put there by the CLI WALLET, I can tell you within a factor of 2 how much is in their balance.
 
NOTE: Before any panic sets in, we're 99% sure this is a result of mis-use of the ZK library, and NOT an inherent problem with the range-proof algorithm currently implemented on the blockchain.
 
This means that the new version of the Bitshares-UI that Agorise has produced can fix this, and produce Blinded Transactions that are really Blinded. (or at minimum, produce uncertainty of amount far greater than a factor of two).
 
The problem:  One of the header fields in the range proof is a count of bits used to represent the mantissa, or the precision part of the blinded value. The cli_wallet uses a "default" value for the "min_bits" parameter, which, instead of specifying how many bits of data we wish to hide, allows the RP code to select the value automatically. The "automatic" value selected is the minimum number of bits needed to represent the value, which gives us immediately the order of magnitude of the value.
 
We will need to add some logic to choose this parameter a bit more carefully. We’ll need to understand the trade-offs and implications of the parameter choices a bit more thoroughly. The current ZK library is a very flexible one that does allow you to shoot yourself in the foot, apparently.
 

 
So, we need to use max bits because the range proof format uses a sort of custom floating-point. But we don't have to necessarily choose the number of bits as a *minimum* needed. We can add a random amount MORE bits, so that the uncertainty becomes a factor of 2^n where n is the max number of bits the client might add to the minimum needed.
 
We think it's still possible to use a sliding scale, but need to look at what happens to the low-order precision bits when we start using them to create uncertainty in the upper range.
 
There presumably exist people who have used the CLI wallet to create and transact in Blinded balances. They may be under the impression that their balances are MUCH more private than they actually are. Those people deserve to be made aware of this, hence my post here, and in our telegram group (https://t.me/Agorise).
 
BTW, I don't know that this shortcoming isn't already publicly known. It's just the first I've seen it, having not spent infinite hours delving into the forums. In searching the forums, github issue tracker, and google at large, I could find no mention of the range-parameter privacy reveal. To my knowledge, it is not discussed anywhere, and perhaps not known to be a problem.
 
So, on the bright side, we @ Agorise have discovered another way to make Bitshares an even more secure platform, allowing us to deliver even higher quality products.
 
We have submitted the technical details to the Bitshares Core Developers, and will hopefully get our fix merged in asap:
https://github.com/bitshares/bitshares-core/issues/480
 

There is a potential flaw with this algorithm. At the moment that the user stores their balance on the blockchain...

Also, we found a forum post from @arhag describing a potential vulnerability in which a transaction, should it be rejected by the network for missing an expiration window and need to be re-signed and rebroadcast, could enable determination of the signing keys by a method similar to what was used to break the encryption keys on the PlayStation 3.  We're not sure if this has been remedied or not, so we'll try to get to this as well this coming week. It's a very real potential attack vector if it's not addressed.
 
Ok, back to work now. Feel free to chat with us in our telegram group:
https://t.me/Agorise

what is the status on blockpay? kencode did not write weekly updates for the last 2 weeks..

yep sorry, been in telegram lately.
waiting on lawyers, everything should be wrapped up by end of this week. the public notice and plan forward will probably be posted shortly thereafter.
 
i recreated the telegram group if you'd like to join me in the chats
http://t.me/BlockPay

BlockPay updated:
 
http://steem.link/KGwQH
or:
https://steemit.com/news/@kenCode/stealth-ledger-nano-s-blockpay-graphenej-smartcoins-wallet-weekly-report 

@bitcrab, can you please summarize what you found out from this advertising campaign?

Do you consider it a successful effort?

Did you track new accounts or increased trades you can definitively tie to the ad?

What metrics did you use to measure how effective your proposal was?

 

Quote

@xeroc -threatening us with your Proxy-power because I do not "play nice" is not productive at all. We *greatly appreciate* the python that you write. You are not a Core Dev though. Fyi, the 20 other hardforks in the queue will need to be properly audited:
https://github.com/bitshares/bitshares-core/issues?q=is%3Aopen+is%3Aissue+label%3Ahardfork

Sorry if that came across as a threat that wasn't the intension.

No, of course not.
 
Anyway, I am hereby making some changes to how our tech updates are disseminated.
 
I won't be using this forum anymore. I met with the BitShares Munich Marketing team this past week and we unanimously agreed that I will step down from doing the updates, and they will publish my tech updates for me so that I can focus on R&D and product releases. Marketing will obviously play nice and keep everyone updated much better than I can. For example, here is one of Martin's recent updates:
https://steemit.com/life/@Martin-wichmann/cointelegraph-blockshow-europe-2017-in-munich
 
Since BitShares Munich (https://steemit.com/@bitshares-munich) now has an awesome marketing team, I will be giving all of my updates to them from today forward. They usually post on steemit and all of the social media channels. Rodrigo (at blockpay d0t ch) will take the lead and continue signing on hundreds of Clients. @Chris4210 will still handle company finances and host the weekly Bitshares mumble with Fuzzy. Sylvia, Angie, Maleny, Elia, Martin, Miguel and the others have taken over all of the business development with the 50+ BlockPay Ambassadors. See them on YT:
https://www.youtube.com/channel/UCJl3M4kuMaihU-yUQvnexkg/videos
 
BlockPay v1.5.10 is scheduled for release on Thursday. It has the new "directDEx" code now integrated with our graphenej library. directDEx has taken us about 3 weeks to build, but it makes it so that the QR Codes are much faster, less bandwidth is used, Transactions load in real-time now (and in proper order), the new database has been built so that users can backup their settings to the C-IPFS BlockPay 2.0 Core, many speed improvements and other fixes.
 
Smartcoins Wallet v1.5.14 will be launched in less than a week from now as well with many speed improvements and fixes. The animation work for the new UI/UX has also begun and should be done in less than 3 weeks. Dash InstantSend has also been finished and tested. Steem chain is now in progress. Once C-IPFS is integrated and all 6 chains play nice with one another, then we can release Carbon (Smartcoins Wallet 2.0).
 
Alfredo is helping out a lot now with the Stealth project, as well as his normal bitshares-core duties, especially with the Rust/C++ "trustless" setup algorithm and api. Chris will cover his work on the weekly Bitshares Mumbles with Fuzzy. Finishing that algo should only take a few months, then we will open up the public testnet so that everyone can help us security and bug test everything before the alpha launch.
 
So, since Marketing is taking over my updates, @xeroc would you like to remove my info from the forum please?
 

Amazing job Ken 

Thank you llildur, and to everyone who believes in me and the world changing products that we are releasing. Now I am more focused than ever
 -ken
 
Follow/github: keybase d0t io / kencode
E: kencode at protonmail d0t ch
 
edit: Strikethrough the above, I think I'll stick around and watch what happens.

Massive work done this week:
https://github.com/kenCode-de?tab=repositories
 

 

I would *highly* recommend you play nice with **ALL** of your shareholders
because you will need their votes for a hard fork
... I can not approve a hard fork.

@xeroc -threatening us with your Proxy-power because I do not "play nice" is not productive at all. We *greatly appreciate* the python that you write. You are not a Core Dev though. Fyi, the 20 other hardforks in the queue will need to be properly audited:
https://github.com/bitshares/bitshares-core/issues?q=is%3Aopen+is%3Aissue+label%3Ahardfork
 
You are not qualified to do deep-dive security audits.
Advising people that their money is safe with the existing "confidential transactions" code, and, giving people security advice is probably not in your best interests.
 
Speaking of security, since you did not finish the Trezor integration, I would be more than happy to acquire that project from you as well. As usual, a security audit will be done on it, so please advise to the locations of the work that you did so that we can get it completed.
 

I don't believe you have explained that yet, and if I'm wrong and have overlooked that higher level plan you have in mind then just point that out.

@Thom -I will tell you when you can start your Stealth marketing campaign once the public has had a few months to fully test and security audit it with us (not just Stealth, but the encrypted C-IPFS backups as well). I do thank you for your efforts, and would love it if you organized the marketing campaign for Bitshares' Stealth.
 
In the world of software, never give out dates (right Stan? ). I learned that lesson 30 years ago. Obviously though Thom, I took your comments very personal, so I sincerely apologize for my knee-jerk reaction. I am building things that have never been built before, so it's a bit tough to even hand out any timelines. I am well aware of what needs to be done, nobody has ever had to ask me for updates, and I do my best to detail our roadmap and progress right here on this lovely forum every week, so nothing more.
 
BlockPay related:
 
"Direct DEx" is 99% done and has been merged into our new graphenej repo here:
https://github.com/kenCode-de/graphenej
 
This week we are:
- Upgrading the Bridge code
- Transactions interoperability with graphenej
- Redesigning the eReceipts a bit so that all devices can display them properly
- Starting the initial wireframe drawings for the new UI/UX and 1-Step Setup
 
Alfredo Garcia monster updates this week:
 
1) "Boost libraries could not be found"
https://github.com/bitshares/bitshares-core/issues/251
Working on this issue led to bitshares-core compilation in windows.
3 possible methods: - visual studio. - cygwin. -mingw.
Goal is to make it work locally and then update or create new documentation page for building it in windows:
https://github.com/bitshares/bitshares-core/wiki/BUILD_WIN32
 
2) Working on a new updated version of market_history plugin. Working in a new version based on the Steem plugin.
Will be ready for testing over the coming days.
 
3) Resolving Issue 231:
Websocket “spamming too much data” issue
Working on last proposal from Vikram to use a separate file for some changes to don’t break design.
https://github.com/bitshares/bitshares-core/pull/245#issuecomment-286267666
No spam sub function https://github.com/bitshares/bitshares-core/pull/234 closed
No spam sub function https://github.com/bitshares/bitshares-core/pull/249 merged
https://github.com/cryptonomex/graphene/issues/540 closed; moved to issue 231..
Resolving it tonight (Fri the 31st) most likely: https://github.com/bitshares/bitshares-core/issues/231
 
4) Fixed the get_ticker segfault
 
5) Assist the Stealth Team with the new api, providing documentation and guidance with hooks in the UI.
 
6) Working on this week:
 
Verify that public websocket API does not expose sensitive API calls
https://github.com/bitshares/bitshares-core/issues/33
 
Tackling more Bitshares Core Issues:
https://github.com/bitshares/bitshares-core/issues?q=is%3Aissue+is%3Aopen+sort%3Acreated-asc
 
Bitshares StressTest
Looking into why nobody could break through the ~3300tps barrier.
 
-------
Bitshares PenTest
As you guys know, I take security very seriously (#tinfoilken). I would like to hack on our Witness and full-node operators next. To do so, I will hire an outside Firm which specializes in security auditing and penetration testing. This will require funds from the pool. I am researching the options now, finalizing the formal Proposal, and will post their Bid here as soon as possible.
-------
 
Smartcoins Wallet:
 
I might release one more 1.x version of the Smartcoins Wallet on google play, but work has already begun on 2.0.
"Carbon" (Smartcoins Wallet 2.0) features:

• Carbon natively supports 6 blockchains (Bitshares, Bitcoin, Dash, Dogecoin, Litecoin and Steem).
• Carbon supports HD Contacts (rotating addresses) and Contacts Groups (for paying multiple people at once).
• Carbon allows you to pay at any BlockPay merchant with just 2 taps (scan and approve the payment).
• Carbon supports both NFC tap and pay, as well as v10 QR Codes.
• Carbon supports eReceipts from BlockPay merchants.
• Carbon supports Loyalty Points from BlockPay merchants.
• Carbon supports Recurring and Scheduled Payments to one, or groups of Contacts.
• Carbon supports "PIN, Pattern, or Pocket" Security (draw patterns and yubikey neo (NFC/U2F)).
• Carbon supports Overdraft Protection (ie: allows you to "cash out" a backup asset to cover your grocery bill).
• Carbon supports automated encrypted backups to C-IPFS.
• Carbon uses C-IPFS as its App Store (no more Apple or Google "approval" needed).
• Carbon cannot be censored or blocked.
• Carbon is a true Dapp, completely decentralized App architecture with C-IPFS.
• Carbon supports coin shifting (bridges one coin into another).
• Carbon supports Key Dump (allows you to change out your private keys if your wallet is stolen).
• Carbon supports 44 languages.
• Carbon uses the Bitshares blockchain for fully-confirmed transactions in 3 seconds or less.
• Carbon allows you to easily share your coin addresses and Contact info via QR Code, SMS, Telegram, etc.
• Carbon supports Transaction searching, filtering and exporting to PDF and CSV formats (for your Accounting).
• Carbon is 100% free and will be open sourced on Github.
• Carbon can be white-labeled with your own logo, color themes, etc...

Some initial mockups we're working on:

 
The animation work began yesterday and will probably take a couple of weeks. Once that is complete, I will post a video of it here. Then, coding the new UI/UX will take a few weeks as well. While the Carbon UI/UX is being coded, the new UI/UX for BlockPay will begin. It will follow my agenda for a 1-Step Setup (not sure if we can achieve that with so many features in the software, but I'm sure gonna try).
 
Here are the high-resolution image mockups if you guys want to start marketing Carbon over the coming days and weeks.
https://drive.google.com/open?id=0B-LdNgnj_1qyUTNPNGI2b2lQcDQ
 
If anyone is wondering WHEN Carbon will be released, then just give them a link to this forum thread. As usual, I will post as much as I can, when I can.

Let's not let this opportunity slip away!

Well duh.
 
We're just now starting to test transactions and create the first API. Remember how many months it has taken us just to write all the crypto? Remember the months it has taken us on the "trustless setup" algo? Remember the months it has taken us to develop the C-IPFS implementation for the automated Stealth backups?
 
In a few months when Stealth has been thoroughly tested by us, AND all of the components above, AND by the public, then we can think about advertising. Until that time, guess what? Like we used to say in the military, hurry up and wait. I'm not going to rush Stealth at all. At, all.
 
If you want me to stop posting weekly updates on our progress so that you feel better, I will.

Impressive as always kencode!

Thank you guys
 
Tons of updates this week!
https://github.com/kenCode-de?tab=repositories
 
BlockPay related:
 
Graphenej (https://github.com/kenCode-de/graphenej): After having partially implemented the limit_order_create_operation, some issues were still present and transactions with the new operation were being rejected by the network on a missing authority error. This usually means a discrepancy between binary serialization used to generate the signature and the provided JSON-formatted string describing the transaction itself.

A couple of errors were found and fixed, which finally made the transactions bearing that operation to be accepted by the network. This commit also introduces a simple test suite for the transaction using this operation as well as minor adjustments to the test of the operation itself. See:
https://github.com/kenCode-de/graphenej/commit/a9a550491b4a0b4b3cd76b6c8a21f1d4fa8e7b13
 
Support for the limit_order_cancel_operation was introduced, which also features the corresponding test cases. See:
https://github.com/kenCode-de/graphenej/commit/aa642edce9188185a68695e196244291beb88dc5
 
Finally, some changes were made to the library in order to make it more easily available for everyone via the maven central repository. This will allow us to seamlessly work with updated versions of the library on multiple projects, by using semantically versioned releases of it. This was required since it was starting to become a hassle to keep the library updated on multiple projects and to manually port the updates coming in from some of my other Devs. See:
https://github.com/kenCode-de/graphenej/commit/c6e4b9ea5b070c8629563e528b4189a376f31ea2
https://github.com/kenCode-de/graphenej/commit/425cb663b1dad8a5c59ad28cf521955a36f1ddda
 
The result is that our library can now be included in any android project by just dropping these lines in the corresponding build.gradle file:
 

dependencies {
    compile 'com.github.kenCode-de:graphenej:0.4.1'
}

The graphenej library was removed from BlockPay itself and just referenced now like described above. Work has now begun in making use of the 2 additional supported operations that will give us "direct DEx" access and avoid having to use the Bridge services twice for some asset pairs. Speed is everything when standing at the cash register, right? See:
https://github.com/kenCode-de/blockpay-s/commit/8c429fe4c7edd55d76fe409140760fd588796174
 
C-IPFS related:
 
This week, we worked on a simple node transfer protocol to allow for easy and wicked fast transfer of files and data, without the overhead of a larger protocol.
 
We have in place a test that is running the code through a complete startup, connect to the "swarm", ask for an existing file, have the swarm determine the best peer(s) to serve the file, connect to the appropriate peer(s), and retrieve the file. We're currently on the "find the best peer" part. And I am confident that once that is in place, the rest of the test will work fine and will be up and running by tonight (Friday).
 
DSHT (Distributed Sloppy Hash Table), or "Coral" as it is also known, is being worked on this week too which will radically speed up response times (our way of sneaky "load balancing" (self-organizing clusters) if you will). Speed is everything when you want to access your files, latest BlockPay apk and app assets, etc. Who needs app stores when there are thousands of peers willing to serve it up for you without microsoft, apple or google's "approval".. aaaanyway.. i tip my tinfoil hat to them for trying. #tinfoilken
 
Development of NodeIO Protocol:
https://github.com/kenCode-de/c-libp2p/commit/69cbff9cd6173177a4b403f9776a3261d3b758d6
https://github.com/kenCode-de/c-libp2p/commit/b6a94c7c11831398e06597f4c804b65ce2b7d885
https://github.com/kenCode-de/c-libp2p/commit/0d0c9bde535062cf8baf175b4c4d84e5b60af1bc
https://github.com/kenCode-de/c-ipfs/commit/e8b8d06f24e6b1275053ce594af9ef208b023b38
https://github.com/kenCode-de/c-ipfs/commit/0b238eb5ace2d7d19f4360949c94fb518e7289ff
https://github.com/kenCode-de/c-ipfs/commit/cfcabaecd0a25f815f9cc1f5095edf9f52b094c7
 
Compiler changes for CentOS and more extensive tests, plus general code efficiency, cleanup and testing:
https://github.com/kenCode-de/c-libp2p/commit/9776ff15a091507ceb95ccf41c01d09282ae24f8
https://github.com/kenCode-de/c-libp2p/commit/bd9f219b504747c461bc01ae07d17858ebfaa2bd
https://github.com/kenCode-de/c-libp2p/commit/41ef0e54929d8184a808e152b41542f889f5a2f1
https://github.com/kenCode-de/c-ipfs/commit/8edc94509c54e4851d2f929b0e65f6a4ee9530d0
https://github.com/kenCode-de/c-ipfs/commit/83242b0046d2d0b1bba84dbfe698014812a96141
https://github.com/kenCode-de/c-ipfs/commit/618264c70962d17c9f7e4dc7287ac28ea1a825da
https://github.com/kenCode-de/c-ipfs/commit/25a2fa0c65934a66aac39d0dd3a0de2e20149dd2
https://github.com/kenCode-de/c-ipfs/commit/640e4be5be23bf7579cd613999d6bfc95e9ca366
https://github.com/kenCode-de/c-ipfs/commit/d25e088b7c5427fa565b9e299fb268e5c9b2e881
https://github.com/kenCode-de/c-ipfs/commit/6c64b55176e43fe6eb9ff7cbce893620f8a1b49d
 
Plans for the coming week:
 
We'll continue to work on the "swarm" features, as well as replication. We'll also look into the modifications the Go-IPFS has done for security and performance improvements of the dht/kademlia standards. Some work is being done to decentralize our access to the Bridge too, so that any server downtime could be handled gracefully. We don't want thousands of merchants unable to process customers because a damn third party's server went down.
 
Android Smartcoins Wallet:
 
It's nice having WIF key support now! Minor improvements were made to it this week, where we changed the double account verification logic, just in case it is a WIF based backup bin file to a method which is now calculating and comparing both (vs brainkey derived) and if they differ, assume it is WIF key backup, and avoid double checking at the network. In other words, it operates more efficiently now, is a bit "smarter", and uses less bandwidth overall.
 
We fixed a memory leak that happens because of an unexpected (yes or cancel) dialog box. Removed it since it's no longer needed anyway.
 
We switched from TZ to LZMA for compressed files (some parts of the code were still using deprecated code from cryptonomex/graphene lib).
 
As you know, we are doing a lot of work on the Transactions and eReceipts code for BlockPay and the Smartcoins Wallet, some pretty major refactoring goin on now so it is nice and clean and operates seamlessly with our new graphenej lib too.
 
Related commits:
 
f549316cbc1db4d3820ea6f29c3b483890c9de73
341eff49d609854ef7e5dfbd009b0988a5c51f0b
a5cac8de7819132ecadc6b8d0cd8b0591297034b
a8080a05951b385826118cfd902ace2ddf500a71
07180e4327c2d909f7edf787bd851029a224b40f
4d256ab620cda5b9dd68861edb97312d0eb6021e
 
Once the Transactions and eReceipts code has been finished and thoroughly tested then I will publish an update to google play, probably in the next week or so since I am including a bunch of other cool stuff we have been working on..
 
Since Smartcoins Wallet 2.0 (codename: "Carbon") will natively support 6 chains, here is some of the work that was completed this week on that:

• Added a separate button to send a receive to each coin
• Change the transaction history to display the bitcoin and altcoin transactions
• Make eReceipts work and show which coin you sent/received etc
• Testing several issues showing Balances
• Implementing Litecoin and Dogecoin logic, testing without server
• Researching Dash InstantSend, running first tests

We have all the logic to make the altcoins work, the only problem now is the server software for their chains..
 
Dogecoin seems to be the most difficult because of the lack of support, their last update was 2 years ago. For Litecoin this week we have the news that they updated their library, so that just leaves Dogecoin.
 
Lots of server tests too just to make sure their libs don't have any leaks etc. I want these integrations to be as maintenance-free as possible.
 
For the InstantSend feature for Dash, we have run several tests, and had found that feature on server side, and dug into their libs and found this:

• The lines that use the insight part are in https://github.com/dashpay/insight-api-dash/blob/master/lib/transactions.js line 304
• The following code https://github.com/dashpay/bitcore-node-dash/blob/master/lib/services/bitcoind.js at line 1818, in this line we see that the only parameters sent are the transaction, as raw hex, and a boolean
• The previous command reaches the core at https://github.com/dashpay/dash/blob/v0.12.1.x/src/rpcrawtransaction.cpp line 312, in this we see that function can have from 1 to 3 parameters, and the last parameter declares if it's an InstantSend transaction or not
• The rpc module used by bitcore-node-dash is defined here https://github.com/snogcel/bitcoind-rpc-dash/blob/master/lib/index.js, if we see line 206 "sendRawTransaction: 'str'," --We see that the rpc is configured to send only a parameter, the raw transaction as hex string, in theory adding the two booleans, so we can enable the InstantSend feature.

Now we just need to set the servers up for this, change a couple of files on the server (they're all nodejs so no worries), and only affects the Dash libraries. Easy-peasy.
 
The tasks for this coming week are:

• Editing a couple of Dash files on the server to support InstantSend
• Change the Contact screen a bit to support Bitshares and altcoin Contacts
• Change the Send screen so that you can send any of the coins or altcoins that you own
• Merge the develop branch into the main branch
• Begin R&D for the native support of the Steem chain

Stealth related:
 
Lots of work being done on the new Stealth api so that we can use it in the web wallet, light client wallets and eventually all mobile devices.
 
More commits:
https://github.com/kenCode-de/bitshares-core/commit/a74639131e0812e2664329037af8b1f7d87daa60
https://github.com/kenCode-de/bitshares-core/commit/6ff204d6f329c14154598997b6f23b37711f5d41
 
Stealth commands are being ported to javascript too for the UI. As the api grows, so does the UI actual functionality.
 
So far performance has been good, sending to a Stealth address from public address (cli-wallet), but if it were to become an issue we are already looking at moving that processing to the server along with async. As this progresses I'll keep you guys informed right here on the forum. So far so good though and you guys should be able to join us on our testnet in a few weeks too, at least for the basic stuff. The UI will probably need refinements as always.
 
Alfredo Garcia, Bitshares Core Dev update:
 
Alfredo as always is kickin butt too, here is some of his work from the past week:
1) "Clean up re-indexing logic"
https://github.com/bitshares/bitshares-core/issues/175
Tested, commented and requested to close.
 
2) "Fix the get_ticker crash"
https://github.com/bitshares/bitshares-core/pull/250
There was a segmentation fault in the get_ticker function. Researched. Fixed (found another issue and we're working on that one now too).
Awaiting approval and merge on this one now.
 
3) Closed github issues:

• "No spam sub function" finally merged! https://github.com/bitshares/bitshares-core/pull/249 -which also closes out:
• "No spam sub function2" https://github.com/bitshares/bitshares-core/pull/245
• "No spam sub function" https://github.com/bitshares/bitshares-core/pull/234
• "Socket spamming too much data" https://github.com/bitshares/bitshares-core/issues/231 -running final test today

4) Got this one closed:
"cli_wallet: create_account_with_brain_key doesn't save owner key"
https://github.com/bitshares/bitshares-core/issues/196
 
5) Requested to close - Closed by TheTaconator with fix..
"Proposed fix for Issue #196: create_account_with_brain_key doesn't save owner key"
https://github.com/bitshares/bitshares-core/pull/235
 
6) Configured and started using our BitShares Munich testnet server for development environment
 
7) Helping out Alex a bit on the Stealth UI and getting all the json involved in the blinded and Stealth transactions.
This should be completed by this sunday the 26th.
 
==============
On a side note, I'd like to ask the community if I can add one more of my Devs to help out Alfredo. If it's cool with you then I will have Chris write up the 6mo Worker Proposal and get it posted asap for your review so we can get him voted in. It's time we ramped things up even more imo.