17:08:19 UkoeHB: The current address format doesn't have a checksum at the consensus level. A checksum is enforced by wallet software. With what you're working on, (1) is it possible to have an address checksum, (2) at what level of enforcement would it be, and (3) are there any costs to a checksum? 17:09:54 Consensus does not *know* the addresses, and should not. 17:09:59 What do you mean by checksum? 17:10:41 what problem are you trying to solve for? 17:10:59 Rucknium[m]: maybe this kind of thing is what you want? https://github.com/mobilecoinfoundation/mcips/pull/4 17:12:35 err I guess this would be the text: https://github.com/mobilecoinfoundation/mcips/blob/main/text/0004-recoverable-transaction-history.md 17:18:41 "what problem are you trying to..." <- Mistyping the address by one character and sending XMR to the void accidentally. 17:19:13 Does that happen? The address format has an internal checksum 17:19:31 https://xmr.llcoins.net/addresstests.html 17:21:22 UkoeHB: Does an internal checksum mean that a tx with a mistyped address won't be mined? Or that it would be impossible to construct, anyway, even with bad wallet software? 17:22:44 It a tx is created, it will be mined (as long as valid, miners aren't jerks, etc). 17:23:57 The checksum's at least 32 bits though. Very unlikely to match for a random change. 17:26:33 What I'm trying to understand is if the employed cryptography prevents a mistyped address through a checksum or if what is being relied upon is that the wallet software has been written well. 17:26:59 The latter. 17:27:16 For example, the GUI wallet is fine, but would an alternative wallet implementation (there are many, of course), skip the checksum. 17:27:22 I see. Thanks 17:33:43 Your software would have to be pretty shit if it's ignoring the checksum. 17:44:12 Have we checked if the major alternative wallets implement the checksum? 17:45:01 Define "we". 17:45:26 I think jberman uncovered evidence that some wallets are using really old mixin selection algorithms, which is why I think it's plausible that a wallet could skip the checksum. 18:00:23 s/mixin/decoy/g ... 18:11:39 "s/mixin/decoy/g ..." <- Oops. Right. Old habits die hard. Should have said "decoy selection algorithm". 18:52:36 Thanks Rucknium and isthmus @isthmus_mpkt:matrix.org for the detailed updates on your respective work. I'm looking forward to reading more, and the mitigation discussions. If you don't mind, I will post your updates as an addendum to the meeting logs because they happened right after and relate to agenda items 18:57:22 Thanks @carrington[m] 👍 19:29:50 carrington: Sounds great. Thank you for doing the legwork. 19:47:34 the checksum has been the same since the beginning 19:48:15 so old doesn't really matter (they might not recognize new address types, but should error in that case) 19:50:29 if (!valid(address)) address = MYADDRESS; 19:50:46 /* fallback to avoid user error */ 20:12:11 very good