-
DataHoarder
Is it only me, or are signatures for view-only wallets on Monero GUI do not self-verify within the same wallet?
-
DataHoarder
-
DataHoarder
from inspection and verifying the signature externally such signatures are generated this way:
-
DataHoarder
get_message_hash mode=1
-
DataHoarder
valid spend/view public keys
-
DataHoarder
BUT the signature then uses the spend view public key in the "comm" struct
-
DataHoarder
then signs using all zero bytes private key
-
DataHoarder
when verified using custom code against these parameters, it passes
-
DataHoarder
s_comm.key = spend_pub, but secret_key &sec = spend_zero
-
DataHoarder
nvm, it's mode=0 so less weird, the rest still applies
-
DataHoarder
on Monero GUI, QString Wallet::signMessage(const QString &message, bool filename) const within libwalletqt/Wallet.cpp uses m_walletImpl->signMessage()
-
DataHoarder
signMessage() just takes the message
-
DataHoarder
which then calls m_wallet->sign(message, tools::wallet2::sign_with_spend_key);
-
DataHoarder
hardcoding to always use the spend key, even for view wallets
-
sech1
Signatures use spend key
-
sech1
The fact it's enabled for view-only wallets, is probably a bug
-
DataHoarder
The signature method can explicitly do view key signatures and detect which (spend or view) signed it
-
DataHoarder
The verify return value also has that
-
DataHoarder
So it can display if it was signed with a spend private key or view private key
-
DataHoarder
Proving ownership of the view only keys still has value, and maybe useful in cases like hardware wallets where they expose the view private key but not the spend one
-
DataHoarder
that way limited set of signatures can be made
-
DataHoarder
(however it would be best to have such hardware implement full message signatures within)
-
DataHoarder
The wallet RPC also allows for selecting either spend or view signatures
-
DataHoarder
Seems it is just a missing feature within GUI that is well supported within Monero code and RPC, and the method to sign/verify for both is documented
-
DataHoarder
Additionally signing for subaddresses which is also supported elsewhere but the GUI
-
DataHoarder
Monero-wallet-CLI does it properly, just checked
-
sech1
Interesting
-
sech1
#monero-gui is probably better suited for this topic
-
m-relay
<compdec:matrix.org> Are the outputs on Monero similar to Bitcoin with one output going to the recipient and one going back to the sender as a change address, or am I misunderstanding something?
-
rbrunner
No, on this fundamental level Monero and Bitcoin work the same way.
-
sech1
The second output (change) goes to the same address you send from
-
m-relay
<rucknium:monero.social> compdec: One difference: If you spent all of the amount to a single address in in bitcoin transaction, the bitcoin tx has only one output. In Monero, since version <Y>, the minimum number of outputs allowed by blockchain consensus is 2. Spending everything to a single XMR address will still create two outputs. One of the outputs will have 0 XMR in it.
-
m-relay
<rucknium:monero.social> This prevents these types of rare transactions from appearing different to observers of the blockchain data.
-
m-relay
<rucknium:monero.social> Since 2019 I think.
-
sech1
IIRC the 0 XMR output will go to some random address, not back to you
-
m-relay
<rucknium:monero.social> So it would be "unspendable"? Not that a rational user would ever try to spend a zero XMR output. Just wondering.
-
m-relay
<gorillaquest:matrix.org> that's a waste I need that 0 xmr
-
sech1
yes, it would be unspendable and not even appear in the wallet
-
m-relay
<compdec:matrix.org> that's good to hear there are 0 XMR transactions already, I was just writing about the added entropy (aka # paths) that provides.
-
dMartian
-
dMartian
so far I haven't found a monero android wallet with reproducible builds. Is this reproducible? Is there a plan for it to be?
-
jeff_
I don't know anything about it.
-
jeff_
I wouldn't want my wallet on an Android phone though. That seems as hackable as it comes.
-
dMartian
well, it has its risks that limit its use case, but it still fills an important use case despite that
-
jeff_
Sorry I can't help you either way.
-
dMartian
It's all good
-
jeff_
My current problem is I'm trying to figure out a faster way to download the blockchain. Oh... is your download of the blockchain with the monero GUI limited by your hashrate?
-
jeff_
That would make sense why this thing is so darn slow...
-
dMartian
it has nothing to do with if you're mining or not at all. it just takes a long time
-
dMartian
I run monerod as a service so it's always up to date for me
-
jeff_
I just installed monerod last night. My initial download on this OS
-
jeff_
I've downloaded 100,000 blocks. 2,700,000 to go....
-
jeff_
At this rate it looks like it will take 15 days
-
dMartian
it shouldn't take that long!
-
jeff_
I don't understand the bottleneck
-
jeff_
Go figure
-
jeff_
Anyone mining with older servers?
