Author: Jeremy 2020-05-01 06:57:09
Published on: 2020-05-01T06:57:09+00:00
In a Bitcoin development discussion, Andrew Kozlik proposed that the signature message of BIP-0341 should commit to the scriptPubKeys of all transaction inputs. He explained that in situations such as CoinJoin, a wallet needs to determine if an input belongs to the wallet or not to calculate the actual amount being spent by the user. Without a mechanism for this determination, an adversary can trick the wallet into displaying incorrect information and potentially stealing user funds. Andrew suggested that if the signature message committed to the scriptPubKeys of all transaction inputs, it would simplify the process for lightweight air-gapped wallets and hardware wallets by only requiring the acquisition of the scriptPubKey of the output being spent rather than the entire previous transaction. Jeremy Rubin responded that SIGHASH_ALL would sign the COutPoints of all inputs, making it unnecessary to sign any additional data. Additionally, he suggested that as a metadata protocol, all input transactions could be provided to check the scriptPubKeys.
Updated on: 2023-06-14T01:05:34.726166+00:00