12:27:28 <lostpon> i'm trying to install the monero-gui package on Artix but i get "error: monero: signature from "kpcyrd <git⊙rc> is unknown trust"
12:39:26 <kpcyrd> lostpon: `pacman -S archlinux-keyring`
12:44:24 <kpcyrd> I mean, I don't know about Artix, but you seem to have an old key of mine in your keyring and you need to update the package that provides it
12:59:40 <lostpon> kpcyrd: thanks, Artix moved the package to another repo so it wasn't updated on my last update
12:59:57 <lostpon> added the new repo, updated the package, installed monero. thx
13:00:17 <kpcyrd> huh, interesting. glad it's working now tho. :)
17:09:37 <Nomenclatura> hi ho!
17:10:40 <Nomenclatura> hey... about Tx keys. I see private and public, but what happens if the private key is disclosed? 
17:11:37 <Nomenclatura> Transaction can't be reversed, they can't use it to create another payment, so... what evil could be done if 3rd party knows Tx private key?
17:22:17 <Mochi101> Nomenclatura, they could spend your XMR
17:22:27 <Mochi101> ohhh tx private
17:22:31 <Mochi101> no
17:22:40 <Nomenclatura> yeah tx
17:22:42 <Mochi101> nvm... I know nothing
17:22:59 <Mochi101> probably just tx details
17:23:23 <moneromooo> With the tx private key, you can create an old style spend proof.
17:23:40 <moneromooo> I think you can also tell which of the inputs are the real spends. Not 100% sure.
17:24:34 <sech1> isn't private key the key that is used to spend outputs of that transaction?
17:24:52 <sech1> the receiving side can calculate private key by using their wallet's private keys
17:25:20 <moneromooo> Then you cannot tell which inputs are the real ones :)
17:25:39 <moneromooo> Wait. No.
17:26:18 <moneromooo> There's a Diffie Helman key exchange going there, the receiver does not recover the secert key I think.
17:26:39 <moneromooo> Do you *think* they do, or do you *know* they do ?
17:27:27 <Nomenclatura> ¯\_(ツ)_/¯
17:27:28 <sech1> https://www.getmonero.org/library/Zero-to-Monero-2-0-0.pdf 4.2 One-time addresses
17:27:40 <Nomenclatura> info on that is meager, that's why I'm asking here.
17:27:55 <sech1> To spend his ‘0’ amount output [sic] in a new transaction, all Bob needs to do is prove ownership by signing a message with the one-time key Ko. The private key ksB is the ‘spend key’ since it
17:27:55 <sech1> is required for proving output ownership, while kvB is the ‘view key’ since it can be used to find outputs spendable by Bob.
17:28:39 <moneromooo> Just for clarity, the output secret key is not the tx secret key.
17:29:30 <moneromooo> The recipient uses its view sec key with the tx pub key to get... what the sender creates with the tx secret key and the recipient's view pubkey. To me, this implies the recipient cannot get the tx secret key back.
17:29:58 <moneromooo> (otherwise, why do the dance)
17:30:16 <Nomenclatura> But every transaction is unique so the private key is teh signature for that one transaction only not for ll transactions, right?
17:30:49 <Nomenclatura> s/ll/all
17:30:57 <moneromooo> The signature signs all the tx prefix, which includes the tx pub key. Not sure if that's what you're asking. Tx secret keys are randomly rolled per tx.
17:31:15 <moneromooo> (and the tx pubkey is deterministically derived from the tx secret key)
17:31:53 <moneromooo> Several txes can use the same tx secret key. In fact, it is likely some do on the current chain.
17:32:45 <Nomenclatura> so it is like an ssk private key
17:33:13 <Nomenclatura> and the public tx is like the hash of an specific connection
17:33:17 <moneromooo> If you're using an ECC ssh key, I guess yes.
17:33:29 <moneromooo> That second one lost me :D
17:34:24 <Nomenclatura> mmm
17:35:15 <Nomenclatura> but this is diffie hellman?
17:47:20 <moneromooo> I think so. sec/pub vs pub/sec. Maybe not canonical, but that's the idea behind DH.
17:47:30 <Nomenclatura> If the tx private key is like an ssh private key, then yes, it can be used to generate new keys, this is, new transactions and spend xmr in the address.
17:48:35 <moneromooo> The output sec keys can be derived by the recipient, but not by the sender (thankfully). So that one's not a straight DH from the keys above.
17:49:05 <moneromooo> But your questions are almost certainly answered in the PDF sech1 linked above. Which I really should read one day..
17:49:10 <Mochi101> cables for 3 and 4 should be underneath 1 and 2 cables chrono 
17:49:14 <Mochi101> oops
17:50:51 <Nomenclatura> sech1: thanks man, I'll read that
17:51:13 <Nomenclatura> moneromooo: it's all clear now =p
18:43:47 <Nomenclatura> But, what you see as "tx private key" in transaction details refers to the private view key or the private spend key?
18:45:31 <hyc> neither
18:45:51 <hyc> private view key and private spend key belong to wallets, not to txns
18:46:11 <hyc> a txn has already been spent, so what sense would it make for it to have a spend key?
18:48:05 <Nomenclatura> right!
18:48:24 <Nomenclatura> So, the Tx key in transaction details is the public key, ain't it?
18:49:18 <Nomenclatura> Reason is I am checking https://monerohash.com
18:49:39 <Nomenclatura> To prove a transaction it asks for "Tx private key"
18:50:22 <moneromooo> That's the old style "proof". The new style is better, since it doesn't leak the tx secret key.
18:50:31 <Nomenclatura> so, private for the transaction signature I would assume, but reading sech1 I understand that is either the private spend or private view
18:50:52 <Nomenclatura> right, but I wat to understand what it is
18:51:11 <moneromooo> It's almost certainly the secret tx kjey, which is different from hte secret spend key and the secret view key. and the secret output key.
18:51:47 <moneromooo> The view/spend ones make up your address (or, rather their public counterparts do),
18:52:01 <moneromooo> The tx pub key is per tx, rolled randonly by the spender.
18:52:05 <Nomenclatura> 'cause if that website asks for tx private key, then it could spend the addresses of everybody who checks it there
18:52:13 <moneromooo> The output secret key is per output, derived by the recipient.
18:52:24 <moneromooo> No, it can't.
18:53:57 <Nomenclatura> right, so, tx private key is what is used to sign that transaction alone, not all transactions, therefore it cannot be used to either view or spend in stake of that address, right?
18:54:38 <moneromooo> It doesn't sign the tx. Your spend secret key does.
18:54:39 <Nomenclatura> If so, then why have a private/public key and not just a hash?
18:54:58 <Nomenclatura> okay it makes no sense
18:55:03 <moneromooo> Your spend, and possibly view, key does.
18:55:18 <moneromooo> Zero to monero will explain the details if you wnat to know them.
18:56:21 <Nomenclatura> oh I'm reading it
18:56:27 <Nomenclatura> not a 5 min read tho
18:58:12 <Nomenclatura> So, in short... If tx private key is neither private spend or private view key, and tx privake key is the unique private to generate the public, which is the spend, then there is no possible misuse of the private tx key since it is the private key for the transaction already spent
18:58:20 <Nomenclatura> correcto?
19:00:05 <DataHoarder> You can confirm you have outputs in a transaction by using the tx private key, and the destination public address 
19:00:56 <DataHoarder> For example in p2pool Coinbase tx private key is known for blocks mined, and as such every other node can verify payments were done proper
19:02:41 <Nomenclatura> okay
19:02:56 <Nomenclatura> Then why not a hash instead of a private/public?
19:02:56 <DataHoarder> For example for this random miner https://p2pool.observer/miner/44fVopMqBVzPaepLaA2WWbPmaVg3BsvP4XNcmC294cGy2xkw1RZnYUJ9f8MPwGN9ibG8zaYbBUvwN9AcW8Kn6SThSkZ8wWK 
19:03:07 <DataHoarder> last payout proof goes to https://p2pool.observer/p/EJKT/Ox 
19:03:32 <DataHoarder> With tx private key 42fc2a92317fd6fe907297bb5d248bcb717269536df6d6620b061fb012c6ec0e
19:04:19 <DataHoarder> That way you can verify the miner provided a proper payout in the transaction that mined the block https://p2pool.observer/share/4e8526216ab909aa8dbb6d12973812a4da9cdb99e168826723cef30a32fbd2c6
19:04:23 <Nomenclatura> thinking_face.gif
19:05:02 <DataHoarder> Basically you can recreate the calculation to generate the ephemeral public key if you have the tx private key
19:05:09 <Nomenclatura> oooooh I see
19:05:10 <DataHoarder> and the destination address
19:05:30 <DataHoarder> if ephemeral public key on output index equals what you have calculated, that output is yours
19:05:31 <Nomenclatura> So you can use it to prove several outputs for the same address
19:05:47 <DataHoarder> Or prove outputs for many addresses 
19:06:12 <Nomenclatura> So, the only possible bad use is that having tx private key allows you to see what outputs that address has had
19:06:14 <DataHoarder> you need to know the destination address you want to test against, however, and the tx private key
19:06:23 <DataHoarder> yes 
19:06:32 * Nomenclatura gets it now
19:06:39 <Nomenclatura> thank you!