[Bitcoin-development] Public key and signature malleability
laanwj at gmail.com
Sun Oct 21 06:47:24 UTC 2012
On Sat, Oct 20, 2012 at 7:55 PM, Pieter Wuille <pieter.wuille at gmail.com> wrote:
> In order to make the Bitcoin network rules more well-defined, I'd like
> to propose strict rules about what is acceptable, and which do not
> depend on OpenSSL's implementation.
I strongly support this too. It is good to make the protocol as
well-defined as possible in a self-contained way, ie define all the
parsing and processing without referring to specific current
implementations of other libraries such as OpenSSL.
What always bothered me is that OpenSSL can change their API to accept
new obscure key encodings at some point, or change their
interpretation, and bitcoin will automatically change with it. As
bitcoin happily links against any OpenSSL version you provide it, in
worst case, this can result in forks and unexpected behavior
completely out of our control.
More information about the bitcoin-dev