Ecosystem/basicswap
1
0
Fork 0
mirror of https://github.com/basicswap/basicswap.git synced 2024-11-17 00:07:56 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
basicswap/doc/protocols/xmr.md
tecnovert bf00f80b4d
ui: Start describing xmr bid states.
2021-10-18 20:48:48 +02:00

7.6 KiB
Raw Blame History

XMR protocol

WIP

Relies on a One-Time Verifiably Encrypted Signature (OtVES) to function An OtVES:

  • Is a valid signature for key (a) encrypted with a public key (B)
  • Can be decrypted into a valid signature for key (a) with the private key (b) to the encrypting public key (B)
  • The encrypting private key (b) can be recovered using both the encrypted and decrypted signatures.

Leader - sends the first lock tx.

NOSCRIPT_COIN lock tx:

  • sent second
  • is sent to a combined key using a private key from each participant.

SCRIPT_COIN lock tx:

  • Sent first
  • Requires two signatures to spend from.
  • Refund to sender txn is presigned for and can only be mined in the future.
    • Spending the refund tx reveals the leader's NOSCRIPT_COIN split private key
  • Sender withholds signature until NOSCRIPT_COIN lock tx is confirmed.
  • spending the spend txn reveals the follower's NOSCRIPT_COIN split private key
Offerer (Leader)                                                        | Bidder (Follower)                                                             |
------------------------------------------------------------------------|-------------------------------------------------------------------------------|
o1. Sends offer                                                         |                                                                               |
    - x SCRIPT_COIN for y NOSCRIPT_COIN                                 |                                                                               |
    - sends smsg OfferMessage                                           |                                                                               |
                                                                        | b1. Receives offer                                                            |
                                                                        |     - validates offer                                                         |
                                                                        | b2. Sends bid                                                                 |
                                                                        |     - sends smsgs XmrBidMessage + 2x XmrSplitMessage                          |
                                                                        |                                                                               |
o2. Receives bid                                                        |                                                                               |
    - validates bid                                                     |                                                                               |
o3. Accepts bid                                                         |                                                                               |
    - sends smsgs XmrBidAcceptMessage + 2x XmrSplitMessage              |                                                                               |
                                                                        |                                                                               |
                                                                        | b3. Receives bid accept                                                       |
                                                                        |     - validates                                                               |
                                                                        |     - signs for lock tx refund                                                |
                                                                        |     - sends smsg XmrBidLockTxSigsMessage                                      |
                                                                        |                                                                               |
o4. Receives bidder lock refund tx signatures                           |                                                                               |
    - sends smsg XmrBidLockSpendTxMessage                               |                                                                               |
      - full SCRIPT_COIN lock tx                                        |                                                                               |
      - signature to prove leader can sign for split key                |                                                                               |
    - submits SCRIPT_COIN lock tx to network                            |                                                                               |
                                                                        |                                                                               |
                                                                        | b4. Receives XmrBidLockSpendTxMessage                                         |
                                                                        |     - validates SCRIPT_COIN lock tx and signature                             |
                                                                        |     - waits for SCRIPT_COIN lock tx to confirm in chain                       |
                                                                        | b5. Sends NOSCRIPT_COIN lock tx                                               |
                                                                        |                                                                               |
o5. Waits for NOSCRIPT_COIN lock tx to confirm in chain                 |                                                                               |
o6. Sends SCRIPT_COIN lock release.                                     |                                                                               |
    - sends smsg XmrBidLockReleaseMessage                               |                                                                               |
      - includes OtVES ciphertext signature for the SCRIPT_COIN lock    |                                                                               |
        spend tx.                                                       |                                                                               |
                                                                        |                                                                               |
                                                                        | b6. Receives offerer OtVES for SCRIPT_COIN lock spend tx.                     |
                                                                        |     - submits SCRIPT_COIN lock spend tx to network.                           |
                                                                        |                                                                               |
o7. Waits for SCRIPT_COIN lock spend tx.                                |                                                                               |
    - Extracts the NOSCRIPT_COIN bidders key using the signature        |                                                                               |
o8. Combines the keys to spend from the NOSCRIPT_COIN lock tx           |                                                                               |
    - submits NOSCRIPT_COIN lock spend tx to network                    |                                                                               |

Offerer sent 6 smsgs (2 extra from split messages) Bidder sent 4 smsgs (2 extra from split messages)