Received: from sog-mx-2.v43.ch3.sourceforge.com ([172.29.43.192] helo=mx.sourceforge.net) by sfs-ml-3.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1TPpJr-0008AP-Sd for bitcoin-development@lists.sourceforge.net; Sun, 21 Oct 2012 06:47:31 +0000 Received-SPF: pass (sog-mx-2.v43.ch3.sourceforge.com: domain of gmail.com designates 209.85.217.175 as permitted sender) client-ip=209.85.217.175; envelope-from=laanwj@gmail.com; helo=mail-lb0-f175.google.com; Received: from mail-lb0-f175.google.com ([209.85.217.175]) by sog-mx-2.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1TPpJr-0001rK-2T for bitcoin-development@lists.sourceforge.net; Sun, 21 Oct 2012 06:47:31 +0000 Received: by mail-lb0-f175.google.com with SMTP id y2so1086899lbk.34 for ; Sat, 20 Oct 2012 23:47:24 -0700 (PDT) MIME-Version: 1.0 Received: by 10.152.110.42 with SMTP id hx10mr5086350lab.0.1350802044480; Sat, 20 Oct 2012 23:47:24 -0700 (PDT) Received: by 10.112.43.138 with HTTP; Sat, 20 Oct 2012 23:47:24 -0700 (PDT) In-Reply-To: References: Date: Sun, 21 Oct 2012 08:47:24 +0200 Message-ID: From: Wladimir To: Pieter Wuille Content-Type: text/plain; charset=UTF-8 X-Spam-Score: -1.6 (-) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (laanwj[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.0 AWL AWL: From: address is in the auto white-list X-Headers-End: 1TPpJr-0001rK-2T Cc: Bitcoin Dev Subject: Re: [Bitcoin-development] Public key and signature malleability X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 21 Oct 2012 06:47:32 -0000 On Sat, Oct 20, 2012 at 7:55 PM, Pieter Wuille wrote: > In order to make the Bitcoin network rules more well-defined, I'd like > to propose strict rules about what is acceptable, and which do not > depend on OpenSSL's implementation. I strongly support this too. It is good to make the protocol as well-defined as possible in a self-contained way, ie define all the parsing and processing without referring to specific current implementations of other libraries such as OpenSSL. What always bothered me is that OpenSSL can change their API to accept new obscure key encodings at some point, or change their interpretation, and bitcoin will automatically change with it. As bitcoin happily links against any OpenSSL version you provide it, in worst case, this can result in forks and unexpected behavior completely out of our control. Wladimir