taler-docs

Documentation for GNU Taler components, APIs and protocols
Log | Files | Refs | README | LICENSE
commit 2433c7e9446bd1be2339e01bb0b8360cbf18e6e1
parent 06665cc8f0f638ac77290e4a8d91b5d969c4bd3b
Author: Özgür Kesim <oec-taler@kesim.org>
Date:   Tue, 22 Apr 2025 09:41:24 +0200

[dd:pq-refresh] fixing typos, extending schema

Diffstat:

Mdesign-documents/062-pq-refresh.rst | 12+++++++-----


1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/design-documents/062-pq-refresh.rst b/design-documents/062-pq-refresh.rst
@@ -95,7 +95,7 @@ published.
 
    - Client chooses a master seed r and derives κ nonces r_1, ... r_κ.
    - Client generates, using RefreshDeriveBatch, κ*n blinded coin planchets
-     m[1][1],...,m[1][n],...,m[κ][1],..,m[κ][n] from the seeds.
+     m[1][1],...,m[1][n],...,m[κ][1],..,m[κ][n] from the nonces.
    - Sends dirty coin, r, all m[i][j] and new denom-info pkD[] to the exchange,
      with signature σ_c of the dirty coins' private key over the request.
    - Exchange verifies the request.
@@ -130,7 +130,7 @@ Database Changes
 ^^^^^^^^^^^^^^^^
 
 Not taking sharding and coinstraints into account, the table layout will look
-basically like this:
+basically like this (names might change):
 
 .. table:: SQL table layout for refresh
    :align: left
@@ -139,14 +139,16 @@ basically like this:
    Field           Type          Description
    ==============  ============  ================================================
    refresh_id      BIGINT        autoincremented identity of the record
-   h_planchets     BYTEA         the value h_m above, serving as primary key
+   rc              BYTEA         refresh commitment (h_m), serving as primary key
    timestamp       INT8          execution date of the refresh
    amount          taler_amount  amount with fee of the refresh
-   old_coin_pub    BYTEA         the old coin's public key
+   old_coin_pub    BYTEA         old coin's public key
    old_coin_sig    BYTEA         old coin's signature over the refresh request
+   old_age_com_h   BYTEA         old coin's hash of age commitment, if applicable
    noreveal_index  SMALLINT      the γ for cut-and-choose, chosen by the exchange
    h_blind_evs     BYTEA[]       the blinded coin evelopes, i.e. (many) m_γ above
-   r_nonce         BYTEA         the master seed for the refresh, the r above
+   refresh_seed    BYTEA         the master seed for the refresh, the r above
+   blinding_seed   BYTEA         the seed for nonces needed for CS singatures
    denom_serials   INT8[]        the row ID's of the denominations in the DB
    denom_sigs      BYTEA[]       the denom signatures for each h_blind_evs
    ==============  ============  ================================================