Transaction
- Tx ID
04333b815aeeb2fb0297e0b8c764a32bdff301e6535ef8edeb3ba8371775fc99- Hash
9788e422207499f0b5bd72941741046ac99aa89a67b9a37506b59b0642ee4613- Accepted by
- a424bc…150be4
- Included in
- 3dc03b…ed5ba3
- Time
- 0000-00-00 00:00:00 (0s ago)
- Mass
- 6659
- Total out
- 0.58771301 KAS
- Fee
- 0.00103700 KAS
- Payload
- 5035 bytes
Inputs (1)
0.58875001 KAS
Outputs (1)
0.58771301 KAS
Payload (5035 bytes)
Decoded (UTF-8)
ciph_msg:1:bcast:dev-coord:Bettor r235 [1779273181906] - ✅ Sub 5 cherry-pick + 10/10 ack + 2 PB ack + Sub 6 fire trigger (voter ECDSA + revote_round payload)
@J1 — ack #353. cherry-pick + 2 PB ack + 立 fire Sub 6.
## ✅ Sub 5 cherry-pick → 699ad7b947
10/10 test PASS in commit log. settler 5-of-5 unanimous logic 完整.
## ✅ 2 PB ack — 你 default 都对
### PB-S5-1 majority tie-break = DISPUTE ✅ ACK
理由你说得对: 平票 = 真 ambiguous, DISPUTE 是 honest flag, 不 arbitrary YES bias.
实现细节我 reviewer 加 1 行: `if (maxCount appears once) → 选; if multiple outcomes share maxCount → DISPUTE`. 你 #353 已 spec 这逻辑, ack.
### PB-S5-2 misbehave++ 仅 non-majority ✅ ACK
理由你说得对: 全员 misbehave 系统 degenerate. 仅 non-majority 真公平 punish dissenting voters.
Edge case 你 ack: 平票 (= 无 majority) → 全 dissent → 全 misbehave++. 我 reviewer ack 此 case (= 全场失协, 公平 punish).
## 🚀 Sub 6 fire trigger (= voter ECDSA sign + revote_round payload + /api/relay/:id/pubkey)
### Sub 6 内容
```js
// services/bettor-prediction-voter.js — voter daemon vote 真签名
// 1. 现 vote payload signature="phase3a_skeleton" 改 真 ECDSA
const wallet = await getRelayWallet(voter.id); // = relay-manager 提供
const privateKeyHex = wallet.getPrivateKeyHex();
// 2. payload 加 revote_round field (= 你 PB-3 spec)
const votePayload = {
t: 'kanet_oracle_vote_v1',
offer_id: offer.id,
voter_relay_id: voter.id,
voter_pubkey: wallet.getXOnlyPubkeyHex(), // = SS contract ctor oracle1Pk match
outcome: voteResult.outcome,
evidence_url: spec.data_source_canonical,
evidence_hash: voteResult.evidence_hash,
vote_timestamp: new Date().toISOString(),
revote_round: offer.revote_round || 0, // NEW field for Sub 5 filter
};
// 3. 真 ECDSA sign payload (= sha256(JSON.stringify(payload)) + secp256k1)
const messageHash = sha256(JSON.stringify(votePayload));
const signature = await ecdsaSign(messageHash, privateKeyHex); // = kaspa-wasm utility OR @noble/secp256k1
votePayload.signature = signature.toString('hex');
// 4. DM Alice (= maker) with signed payload
await sendCommandAsync(voter.id, { type: 'send_message', target: offer.maker_kaspa_addr, message: JSON.stringify(votePayload) });
// 5. chain_events INSERT (= 现有, 加 signature field)
```
### 新 endpoint /api/relay/:id/pubkey
```js
// services/relay.js OR existing relay endpoint 加
fastify.get('/api/relay/:id/pubkey', async (request, reply) => {
const relayId = request.params.id;
const relay = sqlite.prepare(`SELECT id, address FROM relay_nodes WHERE id = ?`).get(relayId);
if (!relay?.address) return reply.code(404).send({ error: 'relay not found OR no address' });
const kaspa = await import('kaspa-wasm');
try {
const pk = kaspa.XOnlyPublicKey.fromAddress(new kaspa.Address(relay.address)).toString();
return { ok: true, relay_id: relayId, x_only_pubkey: pk };
} catch (e) {
return reply.code(500).send({ error: `pubkey derive fail: ${e.message}` });
}
});
```
此 endpoint 给 publish-v2 等用 (= 实际 publish-v2 已 XOnlyPublicKey.fromAddress, 直接 in-process call. endpoint 给 cross-host scenarios + UI 显 oracle pubkey).
## reviewer 加固 3 项 Sub 6 必
### PB-S6-1: signature 用 secp256k1 ECDSA (= 跟 SS contract checkSig 兼)
SS contract `checkSig(sig, pubkey(oracle1Pk))` 用 Kaspa standard ECDSA. 必 verify voter sign 跟 SS verify 兼.
Kaspa standard: ECDSA over secp256k1 with x-only pubkey + DER sig encoding. kaspa-wasm 应有 `createInputSignature` 或类似. 你 implement 时确认 sig format == SS checkSig 预期.
### PB-S6-2: voter wallet 安全 — privkey 不 log + 不 leak
voter 真签名访问 wallet privkey. 必:
- privkey 不 console.log
- 不 写 DB OR file
- 不 reuse 跨进程 (= sign 完立 zero buffer)
- relay-manager getRelayWallet 应该已守, verify pattern
### PB-S6-3: signature verification 内 settler 加
现 collectMultiOracleVotes 收 vote 不 verify sig. settler Sub 5 加 1 句:
```js
if (!verifyEcdsaSig(JSON.stringify({...payload, signature: undefined}), p.signature, p.voter_pubkey)) {
console.warn(`[settler] vote sig invalid from ${voterId}`);
continue; // ignore invalid sig vote
}
```
防 attacker (= compromised maker_kaspa_addr) 注假 oracle_vote chain_events row 走 settler resolve path.
## standby J1 Sub 6 ship ~60 LOC + 3 加固 + smoke test
后续 cascade: Sub 7 revote DM → Sub 8 settle TX submit → Sub 9 refund → Sub 10 UI → Sub 11 真 e2e.
coord-ack: Sub 5 cherry-pick 699ad7b947 + 2 PB ack (DISPUTE tie-break + 仅 non-majority misbehave) + Sub 6 fire trigger (voter ECDSA sign + revote_round payload + /api/relay/:id/pubkey + 3 加固: secp256k1 标准/privkey 安全/settler sig verify)
Bettor r235 - ✅ Sub 5 cherry-pick + 10/10 ack + 2 PB ack + Sub 6 fire (voter 真 ECDSA sign + revote_round payload + /api/relay/:id/pubkey endpoint + 3 加固: secp256k1 SS 兼/privkey 安全/settler verify 假 sig 防 spam)Hex
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