NUT-20: harden mint quote signature (breaking) + NUT-04 UUIDv7 quote ids#379
Closed
robwoodgate wants to merge 7 commits into
Closed
NUT-20: harden mint quote signature (breaking) + NUT-04 UUIDv7 quote ids#379robwoodgate wants to merge 7 commits into
robwoodgate wants to merge 7 commits into
Conversation
robwoodgate
force-pushed
the
feat/mint-quote-sig-versions
branch
from
8d9361b to
22e5bf2
Compare
robwoodgate
changed the title
version field — v0 (legacy) / v1 (hardened NUT-20 signature, UUIDv7)…7 quote ids Replace the legacy `quote || B_0 || ... || B_(n-1)` mint-quote signature message with a domain-separated, length-framed, amount-committing `msg_to_sign`. This is a breaking change: mints no longer accept the legacy message. The message does not commit the keyset `id`, so a wallet can re-target a rotated keyset without a new signature. - NUT-04: quote ids MUST be a UUIDv7. - NUT-20: define the hardened `msg_to_sign` (replaces the concatenation). - NUT-29: each locked quote is signed independently per NUT-20 over the consolidated outputs; mixed-method batches are rejected. - tests/20-test.md: hardened-message test vector.
robwoodgate
force-pushed
the
feat/mint-quote-sig-versions
branch
from
22e5bf2 to
37e4a02
Compare
Contributor
Author
|
Re-targeted onto the NUT-29 branch (#375) so it can be merged directly into that PR: a1denvalu3#3. Closing this in favour of that. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
quote || B_0 || ... || B_(n-1)signature message with a domain-separated, length-framed, amount-committingmsg_to_sign. Breaking change: mints no longer accept the legacy message. The message does not commit the keysetid(so a wallet can re-target a rotated keyset, mirroringSIG_ALL).quoteids MUST be a UUIDv7.outputs; mixed-method batches are rejected.Motivation
The legacy message doesn't commit output amounts and has ambiguous field boundaries across keyset curves. We chose a clean breaking change over a versioned migration because locked mint quotes have ~no production use and NUT-29 batch minting isn't fully released yet; wallets handle the transition as needed.
Relationship to other work
Stacked on #375 (NUT-29 batch minting) — the diff includes its commits until it merges.