š
Original date posted:2019-05-18
š Original message:
Good morning,
Sent with ProtonMail Secure Email.
āāāāāāā Original Message āāāāāāā
On Thursday, May 16, 2019 3:55 PM, Bastien TEINTURIER <bastien at acinq.fr> wrote:
> Thanks for your answers and links, the previous discussions probably happened before I joined this list so I'll go dig into the archive ;)
>
> > I think it makes sense for us to consider both variants, one committing
> > to the script and the other not committing to the script, but I think it
> > applies rather to the `update_tx` <-> `settlement_tx` link and less to
> > the `funding_tx` <-> `update_tx` link and `update_tx` <-> `update_tx`
> > link. The reason is that the `settlement_tx` needs to be limited to be
> > bindable only to the matching `update_tx` (`anyprevout`), while
> > `update_tx` need to be bindable to the `funding_tx` as well as any prior
> > `update_tx` which differ in the script by at least the state number
> > (hence `anyprevoutanyscript`).
>
> > Like AJ pointed out in another thread, the use of an explicit trigger
> > transaction is not really needed since any `update_tx` can act as a
> > trigger transaction (i.e., start the relative timeouts to tick).
>
> Thanks for confirming, that was how I understood it too.
>
> > Specifically we can't make make use of the collaborative path where
> > we override an `update_tx` with a newer one in taproot as far as I can
> > see, since the `update_tx` needs to be signed with noinput (for
> > rebindability) but there is no way for us to specify the chaperone key
> > since we're not revealing the committed script.
>
> Can you expand on that? Why do we need to "make use of the collaborative path" (maybe it's unclear to me what you mean by collaborative path here)?
The collaborative path is the use of the taproot-tweaked public key to sign, without revealing any scripts.
The bip-taproot proposal specifically disallows all `SIGHASH` that is not the current set of valid `SIGHASH` flags when using this path, and thus does not include `SIGHASH_NOINPUT`/`SIGHASH_ANYPREVOUT`.
New `SIGHASH` types *are* allowed in bip-tapscript (i.e. when signing for a `OP_CHECKSIG` variant inside a taproot script), and this is where the proposal of aj builds upon.
For myself, I do not see any point in using the collaborative path unless we are cooperatively closing anyway.
And once we are cooperatively closing, we can agree to spend the funding txo without requiring that `SIGHASH_ANYPREVOUT` be used (since we already have fallbacks in case of cooperation failure, i.e. the existing update/settlement txes).
So again I do not see this to be an issue.
(I could be wrong)
Regards,
ZmnSCPxj
ZmnSCPxj [ARCHIVE] /
npub1g5ā¦3ms3l
2023-06-09 12:55:01
in reply to nevent1qā¦s285
Author Public Key
npub1g5zswf6y48f7fy90jf3tlcuwdmjn8znhzaa4vkmtxaeskca8hpss23ms3lPublished at
2023-06-09 12:55:01Event JSON
{
"id": "a90b9f524f5917ed4aea4df1a5367a0cf4a9fd014584d597f8f0339c9cea1fa8",
"pubkey": "4505072744a9d3e490af9262bfe38e6ee5338a77177b565b6b37730b63a7b861",
"created_at": 1686315301,
"kind": 1,
"tags": [
[
"e",
"b22173092cbd165b2936a26ab2149ed70db928dfd0cf654a4602754ec10a6751",
"",
"root"
],
[
"e",
"28ad7a610352d8f35b08e64ed5de4daff7db1a94de017dd8cbb474ee355fff23",
"",
"reply"
],
[
"p",
"f0feda6ad58ea9f486e469f87b3b9996494363a26982b864667c5d8acb0542ab"
]
],
"content": "š
Original date posted:2019-05-18\nš Original message:\nGood morning,\n\n\nSent with ProtonMail Secure Email.\n\nāāāāāāā Original Message āāāāāāā\nOn Thursday, May 16, 2019 3:55 PM, Bastien TEINTURIER \u003cbastien at acinq.fr\u003e wrote:\n\n\u003e Thanks for your answers and links, the previous discussions probably happened before I joined this list so I'll go dig into the archive ;)\n\u003e\n\u003e \u003e I think it makes sense for us to consider both variants, one committing\n\u003e \u003e to the script and the other not committing to the script, but I think it\n\u003e \u003e applies rather to the `update_tx` \u003c-\u003e `settlement_tx` link and less to\n\u003e \u003e the `funding_tx` \u003c-\u003e `update_tx` link and `update_tx` \u003c-\u003e `update_tx`\n\u003e \u003e link. The reason is that the `settlement_tx` needs to be limited to be\n\u003e \u003e bindable only to the matching `update_tx` (`anyprevout`), while\n\u003e \u003e `update_tx` need to be bindable to the `funding_tx` as well as any prior\n\u003e \u003e `update_tx` which differ in the script by at least the state number\n\u003e \u003e (hence `anyprevoutanyscript`).\n\u003e\n\u003e \u003e Like AJ pointed out in another thread, the use of an explicit trigger\n\u003e \u003e transaction is not really needed since any `update_tx` can act as a\n\u003e \u003e trigger transaction (i.e., start the relative timeouts to tick).\n\u003e\n\u003e Thanks for confirming, that was how I understood it too.\n\u003e\n\u003e \u003e Specifically we can't make make use of the collaborative path where\n\u003e \u003e we override an `update_tx` with a newer one in taproot as far as I can\n\u003e \u003e see, since the `update_tx` needs to be signed with noinput (for\n\u003e \u003e rebindability) but there is no way for us to specify the chaperone key\n\u003e \u003e since we're not revealing the committed script.\n\u003e\n\u003e Can you expand on that? Why do we need to \"make use of the collaborative path\" (maybe it's unclear to me what you mean by collaborative path here)?\n\nThe collaborative path is the use of the taproot-tweaked public key to sign, without revealing any scripts.\nThe bip-taproot proposal specifically disallows all `SIGHASH` that is not the current set of valid `SIGHASH` flags when using this path, and thus does not include `SIGHASH_NOINPUT`/`SIGHASH_ANYPREVOUT`.\n\nNew `SIGHASH` types *are* allowed in bip-tapscript (i.e. when signing for a `OP_CHECKSIG` variant inside a taproot script), and this is where the proposal of aj builds upon.\n\nFor myself, I do not see any point in using the collaborative path unless we are cooperatively closing anyway.\nAnd once we are cooperatively closing, we can agree to spend the funding txo without requiring that `SIGHASH_ANYPREVOUT` be used (since we already have fallbacks in case of cooperation failure, i.e. the existing update/settlement txes).\nSo again I do not see this to be an issue.\n(I could be wrong)\n\nRegards,\nZmnSCPxj",
"sig": "c7c15ed22ef9e911a6040e8b746b340107a1cc4446f094c5aaf7e84133c614f8a36dfd11b818933637ecebb9a4e0a6896d1b2891433fe0615d9d78f7637646d9"
}