--- Log opened Wed Jun 09 00:00:32 2021 08:47 -!- gnusha [~gnusha@user/gnusha] has joined #secp256k1 08:47 -!- Topic for #secp256k1: libsecp256k1 development discussion | https://github.com/bitcoin-core/secp256k1 | Channel logs: http://gnusha.org/secp256k1 08:47 -!- Topic set by real_or_random [] [Tue Jun 1 01:19:08 2021] 08:47 [Users #secp256k1] 08:47 [ ajonas ] [ elichai2 ] [ gnusha ] [ kaushik ] [ Nebraskka ] [ sebx2a ] 08:47 [ belcher ] [ FelixWeis] [ jesseposner] [ lightningbot ] [ nickler ] [ sipa_ ] 08:47 [ BlueMatt ] [ fjahr ] [ jnewbery ] [ luke-jr ] [ real_or_random] [ uasf_ ] 08:47 [ calvinalvin] [ glozow ] [ kallewoof ] [ meshcollider ] [ roconnor ] [ waxwing] 08:47 [ dr_orlovsky] [ gmaxwell ] [ kanzure ] [ michaelfolkson] [ sanket1729 ] [ windsok] 08:47 -!- Irssi: #secp256k1: Total of 30 nicks [0 ops, 0 halfops, 0 voices, 30 normal] 08:48 -!- Channel #secp256k1 created Wed May 19 12:44:13 2021 08:49 -!- Irssi: Join to #secp256k1 was synced in 138 secs 08:57 -!- gnusha [~gnusha@user/gnusha] has joined #secp256k1 08:57 -!- Topic for #secp256k1: libsecp256k1 development discussion | https://github.com/bitcoin-core/secp256k1 | Channel logs: http://gnusha.org/secp256k1 08:57 -!- Topic set by real_or_random [] [Tue Jun 1 01:19:08 2021] 08:57 [Users #secp256k1] 08:57 [ ajonas ] [ elichai2 ] [ gnusha ] [ kaushik ] [ Nebraskka ] [ sebx2a ] 08:57 [ belcher ] [ FelixWeis] [ jesseposner] [ lightningbot ] [ nickler ] [ sipa_ ] 08:57 [ BlueMatt ] [ fjahr ] [ jnewbery ] [ luke-jr ] [ real_or_random] [ uasf_ ] 08:57 [ calvinalvin] [ glozow ] [ kallewoof ] [ meshcollider ] [ roconnor ] [ waxwing] 08:57 [ dr_orlovsky] [ gmaxwell ] [ kanzure ] [ michaelfolkson] [ sanket1729 ] [ windsok] 08:57 -!- Irssi: #secp256k1: Total of 30 nicks [0 ops, 0 halfops, 0 voices, 30 normal] 08:58 -!- Channel #secp256k1 created Wed May 19 12:44:13 2021 09:00 -!- Irssi: Join to #secp256k1 was synced in 138 secs 09:41 < real_or_random> :) 10:02 -!- sipa_ is now known as sipa 10:23 -!- dr_orlovsky [~dr-orlovs@31.14.40.19] has quit [Ping timeout: 252 seconds] 11:58 < real_or_random> hm andrew points out that this is out somewhere by LN implementations 11:59 < roconnor> their fault for using experimental? 11:59 < sipa> i think the better question is exactly what the higher-level scheme is they need it for, and considering if that can be added directly 12:03 < real_or_random> indeed 13:01 -!- belcher [~belcher@user/belcher] has quit [Quit: Leaving] 13:24 < nickler> https://github.com/ElementsProject/lightning/blob/76b8eb3afda4905dbeb059f88b2bbe994cbaa50a/common/key_derive.c#L168 13:24 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has joined #secp256k1 13:45 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has quit [Quit: leaving] 13:45 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has joined #secp256k1 13:45 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has quit [Client Quit] 13:46 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has joined #secp256k1 13:46 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has quit [Client Quit] 13:48 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has joined #secp256k1 13:49 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has quit [Client Quit] 13:50 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has joined #secp256k1 14:12 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has quit [Quit: leaving] 14:13 -!- andytoshi [~apoelstra@s66-183-0-205.bc.hsia.telus.net] has joined #secp256k1 14:31 < nickler> It seems like if per_commitment_secret is known, then pubkey combine can be replaced by tweak_add: 14:31 < nickler> As before, use tweak_mul to compute add[0] = revocation_basepoint * SHA256(...), then compute revocationpubkey as pubkey_tweak_add(add[0], per_commitment_secret*SHA256(per_commitment_point || revocation_basepoint)) 14:51 -!- gmaxwell [~gmaxwell@c-73-170-118-145.hsd1.ca.comcast.net] has quit [Changing host] 14:51 -!- gmaxwell [~gmaxwell@user/gmaxwell] has joined #secp256k1 15:09 < roconnor> I didn't look at it very carefully, but superfically it seemed like it ought to be using a tweak. 15:20 < gmaxwell> hard to see how you could do anything with a public key formed from two points where you don't know their DL wrt G. ... and if you know one you can use tweak. 18:36 -!- belcher [~belcher@user/belcher] has joined #secp256k1 21:33 -!- belcher_ [~belcher@user/belcher] has joined #secp256k1 21:37 -!- belcher [~belcher@user/belcher] has quit [Ping timeout: 268 seconds] --- Log closed Thu Jun 10 00:00:33 2021