1. In ECDSA we can recover public key from signature + message but we may end up with more than one possible pubkey (up to 4 for secp256k1 with h=1).
Can you explain this further? Why can you end up with up to 4 public keys for secp256k1 with h=1?
(I guess with h you mean hash of the message)