Closed darosior closed 3 years ago
What about outsourced WTs that shouldn't be trusted with the Emergency?
Good point...
This was discussed on another medium with Jacob (and others). Outsourced watchtower are out of the scope for v0, but actually separating each transaction sig sharing allows us to more granularly allocate fee-bumping UTXOs: only do once we receive the signature for the UnvaultEmergency and Cancel transactions (wallet implicitly signals us the vault became active).
It makes sense as it's how we are using them in the daemon right now, and this way you can't be in a state where part of the revocation signatures were ACKed but not all