12:43:25 <TheCharlatan> What is the point of not exporting a view key from a hardware wallet?
13:00:03 <UkoeHB_> hardware wallets are for secure key management, so maybe you are concerned about the view key getting stolen
13:03:38 <TheCharlatan> It should be protecting the view key from malware on your machine, right?
13:04:36 <UkoeHB_> if that's where you would export it, I suppose so
13:08:32 <TheCharlatan> I think it does not make any sense. You still have to do input selection, amount entering, amount masking, broadcasting, address entering and a bunch of other things on the host.
13:08:44 <TheCharlatan> If you assume that your host is malicious, the host has all this information.
13:09:11 <TheCharlatan> Which is effectively what you are trying not to expose  by not exporting the view key.
13:09:59 <TheCharlatan> Never mind that scanning will introduce a bunch of side channels that are probably hard to mitigate on the hardware wallet itself.
13:15:08 <UkoeHB_> well once someone has your view key they will know about all the outputs you own indefinitely, and if they also know your normal address public spend key they can generate all your subaddresses which is quite useful for large-scale attacks
13:15:38 <TheCharlatan> Besides, there is always the potential for the malicious host to embed metadata in the unsigned transaction that is not detected by the hardware wallet, but perfectly visible as a tag from the outside.
13:16:07 <TheCharlatan> So the answer is forward secrecy in case you encounter a non-malicious host?
13:16:56 <UkoeHB_> seems that way
13:18:04 <UkoeHB_> forward secrecy for owned outputs, and lessens the chance a malicious host will learn your full set of subaddresses
13:30:00 <TheCharlatan> seems like a high price to pay for that :/
22:34:26 <Isthmus> https://usercontent.irccloud-cdn.com/file/l2LEOaIJ/image.png
22:36:56 <Isthmus> How malformed can a transaction be and still calculate a tx_ID?
22:39:09 <Isthmus> Note that you can just move the attack back by one function.
22:39:10 <Isthmus>  i.e. start with a valid transaction, fix 2 of the 3 inputs, and find a collision one of the subfields like one-time address or public
22:41:44 <Isthmus> (assuming the verification is being carried out by Core codebase)
22:44:05 <moneromooo> If it parses, it should have a txid, whatever the semantics of what gets parsed.
22:44:33 <moneromooo> Parses meaning it can find all the stuff it wants. Inputs, outputs, proofs, etc.
22:52:41 * Isthmus nods
22:52:42 <Isthmus> Thanks
22:54:31 <Isthmus> If my node hears a fluffy block containing a certain hash, but I don't receive a copy of the transaction, how long will my node wait before writing off the block as bad/
22:54:36 <Isthmus> s///?
22:54:39 <Isthmus> dang
22:55:06 <Isthmus> s/in ha/in transaction ha
22:55:06 <monerobux> Isthmus meant to say: If my node hears a fluffy block containing a certain transaction hash, but I don't receive a copy of the transaction, how long will my node wait before writing off the block as bad/
22:57:00 <moneromooo> It will not write it off as bad.