Received: from sog-mx-1.v43.ch3.sourceforge.com ([172.29.43.191] helo=mx.sourceforge.net) by sfs-ml-1.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1XmKev-0005Ie-HR for bitcoin-development@lists.sourceforge.net; Thu, 06 Nov 2014 10:51:21 +0000 Received-SPF: pass (sog-mx-1.v43.ch3.sourceforge.com: domain of gmail.com designates 209.85.213.179 as permitted sender) client-ip=209.85.213.179; envelope-from=pieter.wuille@gmail.com; helo=mail-ig0-f179.google.com; Received: from mail-ig0-f179.google.com ([209.85.213.179]) by sog-mx-1.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1XmKet-0000tE-Lp for bitcoin-development@lists.sourceforge.net; Thu, 06 Nov 2014 10:51:21 +0000 Received: by mail-ig0-f179.google.com with SMTP id r10so3153409igi.6 for ; Thu, 06 Nov 2014 02:51:14 -0800 (PST) MIME-Version: 1.0 X-Received: by 10.107.137.91 with SMTP id l88mr3541220iod.61.1415271074318; Thu, 06 Nov 2014 02:51:14 -0800 (PST) Received: by 10.50.98.40 with HTTP; Thu, 6 Nov 2014 02:51:14 -0800 (PST) In-Reply-To: References: <20141106103820.GA17096@savin.petertodd.org> Date: Thu, 6 Nov 2014 02:51:14 -0800 Message-ID: From: Pieter Wuille To: Peter Todd Content-Type: text/plain; charset=ISO-8859-1 X-Spam-Score: -1.6 (-) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (pieter.wuille[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature X-Headers-End: 1XmKet-0000tE-Lp Cc: Bitcoin Dev Subject: Re: [Bitcoin-development] SCRIPT_VERIFY_STRICTENC and CHECKSIG NOT X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 06 Nov 2014 10:51:21 -0000 On Thu, Nov 6, 2014 at 2:47 AM, Pieter Wuille wrote: >> I suggest we either change STRICTENC to simply fail unrecognized pubkeys >> immediately - similar to how non-standard signatures are treated - or >> fail the script if the pubkey is non-standard and signature verification >> succeeds. > > Sounds good to me, I disliked those semantics too. Of course: do we apply this rule to all pubkeys passed to CHECKMULTISIG (my preference...), or just the ones that are otherwise checked? This will likely make existing outputs hard to spend as well (I don't have numbers), are we okay with that? We probably can't make this a consensus rule, as it may make existing P2SH outputs/addresses unspendable. -- Pieter