Multisig option when exporting public key #2658
Comments
sime
added
core
|
Is the slack discussion public? Would like to get an idea on possible timeline for fix to issue 6918 as this has effect on setting up a multisig wallet in electrum using public keys pulled at BIP48 paths. |
|
@CaveRock It's not public and cannot offer a timeline. Though trezor/trezor-suite#6918 doesn't affect Electrum, Electrum uses |
|
Thanks for the feedback. Just to give some more info on our electrum issue, which may not be a major use case and I can understand there not being an eta on an update but for interest sake I wanted to describe it. The Electrum problem we have is where a watch only Electrum native segwit multisig wallet is being setup using master keys pulled from Trezor devices using Trezor Connect. If a user uses Trezor connect to pull keys at BIP48 path to setup a watch only Electrum native segwit multisig wallet, the keys the Trezor will export will be vpubs (zpubs). If one attempts to submit a vpub (zpub) as the master key in Electrum native segwit multsig wallet setup it will, correctly, throw an error. This means that the user must know to convert the vpub (zpub) to a Vpub (Zpub) before inputting into Electrum to create the watch only wallet. It also means that there is no way for a user to have their Trezor confirm a Vpub (Zpub) on screen for peace of mind in confirming they are part of a native segwit multisig wallet. (I have put main net prefixes in brackets for clarity) |
|
Thanks for the context. You are using Trezor Content medium for fetching master public keys which will be input into Electrum. So no direct Electrum to Trezor integration. |
|
That's correct, and I also confirm no direct Electrum / Trezor integration. |
FWIW, this can be done. The way to do it is to show a receiving address, then you can confirm all the multisig cosigners, including yourself, with the correct Vpub / Zpub prefixes. |
|
@matejcik |
|
So possibly related to this issue: I created a multisig native segwit wallet in Sparrow. Added a keystore using my trezor safe 3 (firmware: 2.8.0). I wanted to verify that the zpub shown in sparrow matched with the one shown on the trezor device so I ran this command: trezorctl btc get-public-node -n "m/48h/0h/0h/2h" -d but the zpub that was shown on the trezor did not match with that in sparrow. Retrieving the xpub for the legacy path maybe also relates to trezor/trezor-suite#6918 |
|
@gwilkinson01 when you use the trezorctl command, does Trezor show a zpub or an xpub? How about if you add |
|
@andrewkozlik Trezor shows a zpub (although confusingly the header states xpub 😆). See below image:
I get the same output with |
|
@gwilkinson01, I see. Your problem is indeed what this issue is about. I think that a simple workaround for now is to use |
|
@andrewkozlik perfect, works for me. Thanks for the swift response! |
|
FYI, I created a draft PR to fix this, see #4305. I still need to implement the corresponding changes in legacy and add device tests. |
Related issue: trezor/trezor-suite#6918
Internal Slack discussion: https://satoshilabs.slack.com/archives/C02V2PSDNA2/p1669125576505009
Introduce an option in CTL in
get-public-nodeand in protobuf to export multisig specific xpubs.The text was updated successfully, but these errors were encountered: