📅 Original date posted:2020-02-12
📝 Original message:
Good morning niftynei, waxwing, and list,
> > Probably so that address reuse is not dinged, i.e. I have two UTXOs with the same address and want to make two different channels with different peers.
>
> Having 2 utxos locked to the same pubkey will map to a single H2 value though, which is what is used to flag utxo reuse. With a PoDLE you're proving that you have a key for a utxo; the verifier checks that the key you say you know does in fact map to controlling the utxo that you say it's attached to. Whether or not you added the utxo to the signature commitment doesn't add anything to the security of the verification.
>
> At worse, it might leak what other utxo that the initiator controls, if they accidentally commit to the wrong utxo and the peer decided to try grinding utxo outpoints on the offchance that one matched.
Right, right, H2 commits to knowledge of the privkey, not a specific UTXO.
I suppose the Right Thing to do if somebody foists address reuse on you would be to spend all UTXOs with the same address together.
Regards,
ZmnSCPxj
ZmnSCPxj [ARCHIVE] /
npub1g5…3ms3l
2023-06-09 12:58:46
in reply to nevent1q…mfs5
Author Public Key
npub1g5zswf6y48f7fy90jf3tlcuwdmjn8znhzaa4vkmtxaeskca8hpss23ms3lPublished at
2023-06-09 12:58:46Event JSON
{
"id": "9dd07a29ab853cd6232f288a33fc4d98f3c39465340a1fc81ae6120ed35167ad",
"pubkey": "4505072744a9d3e490af9262bfe38e6ee5338a77177b565b6b37730b63a7b861",
"created_at": 1686315526,
"kind": 1,
"tags": [
[
"e",
"c218110e24b04f0c1c5d2dd6e63487b0dca619f1f570c991ff7f4dc7c65213bd",
"",
"root"
],
[
"e",
"6532bb95c10b8719ed3f9039c3610cd83c0f596a89fe7de4373541890e045d52",
"",
"reply"
],
[
"p",
"804770eb58d163d63f0f996fd6bebabe1b8c582a5dd544cf61bba0bc5335720a"
]
],
"content": "📅 Original date posted:2020-02-12\n📝 Original message:\nGood morning niftynei, waxwing, and list,\n\n\u003e \u003e Probably so that address reuse is not dinged, i.e. I have two UTXOs with the same address and want to make two different channels with different peers.\n\u003e\n\u003e Having 2 utxos locked to the same pubkey will map to a single H2 value though, which is what is used to flag utxo reuse. With a PoDLE you're proving that you have a key for a utxo; the verifier checks that the key you say you know does in fact map to controlling the utxo that you say it's attached to. Whether or not you added the utxo to the signature commitment doesn't add anything to the security of the verification.\n\u003e\n\u003e At worse, it might leak what other utxo that the initiator controls, if they accidentally commit to the wrong utxo and the peer decided to try grinding utxo outpoints on the offchance that one matched.\n\nRight, right, H2 commits to knowledge of the privkey, not a specific UTXO.\n\nI suppose the Right Thing to do if somebody foists address reuse on you would be to spend all UTXOs with the same address together.\n\nRegards,\nZmnSCPxj",
"sig": "9ef696a0270e1a5531451b059a6df45e072383b3d0dff45d10d29f5de5b7364a3d3bd8cd82b51140d78c360bd039e67d52aac050b59d8f9c79b81158ff9d413c"
}