--- Log opened Thu Dec 15 00:00:45 2022
00:10 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
00:10 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
00:13 -!- treyd [~treyd@ip68-9-43-78.cl.ri.cox.net] has quit [Ping timeout: 255 seconds]
00:21 -!- AaronvanW [~AaronvanW@user/AaronvanW] has joined #bitcoin-wizards
00:23 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
00:26 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
01:03 -!- BlueMatt [~BlueMatt@ircb.bluematt.me] has quit [Ping timeout: 246 seconds]
01:08 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
01:19 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
01:25 -!- sgiath [~sgiath@mail.sgiath.dev] has quit [Ping timeout: 255 seconds]
01:25 -!- sgiath [~sgiath@2a02:25b0:aaaa:aaaa:a3c3:ed4b:6b06:0] has joined #bitcoin-wizards
02:27 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
02:27 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
03:02 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
03:04 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
04:35 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
04:50 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has quit [Remote host closed the connection]
04:54 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has joined #bitcoin-wizards
05:36 -!- bitdex [~bitdex@gateway/tor-sasl/bitdex] has quit [Quit: = ""]
05:49 -!- Hercules1 [~Hercules@ti0018a400-7782.bb.online.no] has joined #bitcoin-wizards
05:52 -!- Hercules1 [~Hercules@ti0018a400-7782.bb.online.no] has quit [Quit: Leaving]
05:53 -!- BlueMatt [~BlueMatt@ircb.bluematt.me] has joined #bitcoin-wizards
05:59 -!- jtraub91 [~jason@c-76-111-232-173.hsd1.fl.comcast.net] has joined #bitcoin-wizards
05:59 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
06:16 -!- BlueMatt [~BlueMatt@ircb.bluematt.me] has quit [Ping timeout: 255 seconds]
06:16 -!- freesprung [~freesprun@user/freesprung] has quit [Ping timeout: 256 seconds]
06:23 -!- BlueMatt [~BlueMatt@ircb.bluematt.me] has joined #bitcoin-wizards
06:27 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
06:28 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
06:37 -!- freesprung [~freesprun@user/freesprung] has joined #bitcoin-wizards
06:56 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
06:59 -!- b10c [~quassel@user/b10c] has quit [Quit: https://quassel-irc.org - Chat comfortably. Anywhere.]
07:01 -!- b10c [~quassel@static.33.106.217.95.clients.your-server.de] has joined #bitcoin-wizards
07:01 -!- b10c [~quassel@static.33.106.217.95.clients.your-server.de] has quit [Changing host]
07:01 -!- b10c [~quassel@user/b10c] has joined #bitcoin-wizards
07:09 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
07:38 -!- Guyver2 [~Guyver@77-174-98-73.fixed.kpn.net] has joined #bitcoin-wizards
07:56 -!- treyd [~treyd@ip68-9-43-78.cl.ri.cox.net] has joined #bitcoin-wizards
08:18 -!- kexkey [~kexkey@static-198-54-132-132.cust.tzulo.com] has joined #bitcoin-wizards
08:21 -!- yanmaani1 [~yanmaani@gateway/tor-sasl/yanmaani] has quit [Write error: Connection reset by peer]
08:21 -!- yanmaani1 [~yanmaani@gateway/tor-sasl/yanmaani] has joined #bitcoin-wizards
08:37 -!- kexkey [~kexkey@static-198-54-132-132.cust.tzulo.com] has quit [Ping timeout: 272 seconds]
08:38 -!- kexkey [~kexkey@static-198-54-132-140.cust.tzulo.com] has joined #bitcoin-wizards
08:48 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has quit [Quit: Leaving]
08:49 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has joined #bitcoin-wizards
08:49 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Read error: Connection reset by peer]
08:50 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
08:51 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
08:52 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
08:53 < treyd> Is there anyone here familiar with FROST?  I'm trying to implement it using BIP340-style x-only public keys and I'm having a hard time ensuring that the R' value that gets computed during the verification has an even parity as required.  I only have control over the s value, since that's how FROST works.  Is there any trick I can do to force the R' to have even parity without just retrying the final round (changing R to resample e, then 
08:53 < treyd> recomputing all the z_i) until it succeeds?
08:58 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
08:58 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
09:13 < andytoshi> nickler: ^
09:33 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
09:36 < instagibbs> jesseposner, ^ 
09:37 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
09:41 < jesseposner> treyd: if all the participants negate their nonce shares when signing, then the resulting nonce will be negated as well, and they can do this conditionally depending on whether R' has even parity. This is similar to how MuSig2 handles nonces.
09:41 < jesseposner> Check out my implementation for an example: https://github.com/ElementsProject/secp256k1-zkp/blob/b0234a23eed456dc0b63a3a9cbc2e6ba68588bb3/src/modules/frost/session_impl.h#L553
09:41 < jesseposner> from this PR: https://github.com/ElementsProject/secp256k1-zkp/pull/138
09:42 < jesseposner> I'm also working on a FROST BIP that will have a spec for implementing BIP340 FROST.
09:42 < jesseposner> check out #bip-frost
09:46 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
09:47 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
09:51 < treyd> Hmm I thought I tried negating all the nonce shares
09:51 < treyd> is there a draft of bip-frost anywhere?
09:52 < treyd> I saw the frost impl in the -zkp repo but I didn't dig into it too deeply since I wasn't familiar with the codebase very well
09:54 < treyd> Is this negating the d_i and e_i nonces?  I think I was negating d_i and rho_i in one of the attempts I had
09:55 -!- tristan_ [~tristan_@122.50.217.124] has joined #bitcoin-wizards
09:56 -!- jtraub91_ [~jason@2607:fb91:1905:a397:dd76:2a3b:8fbc:f7db] has joined #bitcoin-wizards
09:57 < treyd> jesseposner: ^
09:59 -!- jtraub91 [~jason@c-76-111-232-173.hsd1.fl.comcast.net] has quit [Ping timeout: 272 seconds]
10:00 -!- jtraub91_ [~jason@2607:fb91:1905:a397:dd76:2a3b:8fbc:f7db] has quit [Ping timeout: 246 seconds]
10:02 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
10:05 < jesseposner> treyd: you negate d_i and e_i but not rho_i
10:06 < treyd> Ok I'll give it a try later
10:09 < treyd> Does this mean participants would have to provide two versions of R_i and z_i for each parity and then in the final round the correct one is picked?
10:10 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
10:10 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
10:13 < treyd> I need to re-read the code
10:24 < jesseposner> No, the participants send R_i, but with the full 33-bytes for the pubkeys. Then when each participant aggregates the R_i to compute the final nonce commitment R that will be used in the challenge hash, they check the parity of R, and when signing to produce z_i they check this parity to determine whether to negate d_i and e_i.
10:25 < jesseposner> note that this final nonce commitment R that is checked for parity includes the rho binding values
10:36 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
10:37 < treyd> interesting, thank you very much for the tips!
11:27 -!- tristan_ [~tristan_@122.50.217.124] has quit [Ping timeout: 272 seconds]
11:34 < jesseposner> You're welcome, happy to help!
11:37 -!- deusexbeer [~deusexbee@95-27-214-142.broadband.corbina.ru] has quit [Quit: Konversation terminated!]
11:58 -!- treyd [~treyd@ip68-9-43-78.cl.ri.cox.net] has quit [Ping timeout: 268 seconds]
14:14 -!- Guyver2 [~Guyver@77-174-98-73.fixed.kpn.net] has quit [Quit: Going offline, see ya! (www.adiirc.com)]
14:33 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has quit [Quit: My iMac has gone to sleep. ZZZzzz…]
15:07 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has quit [Ping timeout: 255 seconds]
15:30 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has joined #bitcoin-wizards
15:35 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
15:36 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
15:44 -!- bitdex [~bitdex@gateway/tor-sasl/bitdex] has joined #bitcoin-wizards
17:18 -!- deusexbeer [~deusexbee@95-27-214-142.broadband.corbina.ru] has joined #bitcoin-wizards
18:59 -!- tristan_ [~tristan_@122.50.217.124] has joined #bitcoin-wizards
19:12 -!- tun4 [~tun4@cpe08a7c0b41e4e-cm08a7c0b41e4c.cpe.net.cable.rogers.com] has joined #bitcoin-wizards
19:36 -!- nsh [~lol@user/nsh] has quit [Remote host closed the connection]
19:41 -!- nsh [~lol@user/nsh] has joined #bitcoin-wizards
20:01 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
20:03 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
20:03 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has quit [Ping timeout: 255 seconds]
20:03 -!- ghost43 [~ghost43@gateway/tor-sasl/ghost43] has joined #bitcoin-wizards
20:08 -!- tun4 [~tun4@cpe08a7c0b41e4e-cm08a7c0b41e4c.cpe.net.cable.rogers.com] has quit [Quit: Client closed]
20:13 -!- jonatack2 [~jonatack@user/jonatack] has joined #bitcoin-wizards
20:14 -!- jonatack1 [~jonatack@user/jonatack] has quit [Ping timeout: 260 seconds]
21:00 -!- nsh [~lol@user/nsh] has quit [Quit: ZNC - http://znc.in]
21:01 -!- nsh [~lol@user/nsh] has joined #bitcoin-wizards
22:34 -!- yanmaani1 [~yanmaani@gateway/tor-sasl/yanmaani] has quit [Remote host closed the connection]
22:37 -!- yanmaani1 [~yanmaani@gateway/tor-sasl/yanmaani] has joined #bitcoin-wizards
22:46 -!- bitdex [~bitdex@gateway/tor-sasl/bitdex] has quit [Ping timeout: 255 seconds]
22:46 -!- bitdex_ [~bitdex@gateway/tor-sasl/bitdex] has joined #bitcoin-wizards
23:52 -!- tromp [~textual@92-110-219-57.cable.dynamic.v4.ziggo.nl] has joined #bitcoin-wizards
23:55 -!- andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has joined #bitcoin-wizards
23:56 -!- _andrewtoth_ [~andrewtot@gateway/tor-sasl/andrewtoth] has quit [Remote host closed the connection]
--- Log closed Fri Dec 16 00:00:46 2022