Author: ZmnSCPxj 2018-07-11 07:43:49
Published on: 2018-07-11T07:43:49+00:00
The email thread discusses the potential risks associated with using the flag SIGHASH_NOINPUT in Bitcoin wallets. The flag is intended for use in specialty protocols like LN and CoinSwap, and not for general-purpose user wallets. By default, the flag is not set and address reuse is still slightly safe for common usage. Even for LN/CoinSwap/etc., SIGHASH_NOINPUT will be used only in the exact specialty protocol, and not for general wallet usage. Luke Dashjr's wallet explicitly rejects address reuse. While address reuse is not perfectly safe, it can still be widely used in fact. The concern is that if a user imports their address (keys, seeds) to one of the SIGHASH_NOINPUT enabled Bitcoin/LN wallets and signs a transaction, it makes their donate address disabled immediately and may continue to lose coins in the future. Gregory Maxwell suggests that the name of the flag should be changed to "SIGHASH_REPLAY_VULNERABLE" or "SIGHASH_WEAK_REPLAYABLE" to reflect its potential insecurity for traditional applications where third party payments to an address can occur. However, Luke Dashjr argues that address reuse is undefined behavior and nobody should assume that it is safe or works.
Updated on: 2023-06-13T01:48:35.076581+00:00