From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id C393089F for ; Tue, 16 Aug 2016 17:46:14 +0000 (UTC) X-Greylist: from auto-whitelisted by SQLgrey-1.7.6 Received: from erelay3.ox.registrar-servers.com (erelay3.ox.registrar-servers.com [192.64.117.2]) by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 00D7A15F for ; Tue, 16 Aug 2016 17:46:13 +0000 (UTC) Received: from localhost (unknown [127.0.0.1]) by erelay1.ox.registrar-servers.com (Postfix) with ESMTP id ECE3B220A4D7; Tue, 16 Aug 2016 17:46:12 +0000 (UTC) Received: from erelay1.ox.registrar-servers.com ([127.0.0.1]) by localhost (erelay.ox.registrar-servers.com [127.0.0.1]) (amavisd-new, port 10024) with LMTP id M4gDF3XQ76wn; Tue, 16 Aug 2016 13:46:11 -0400 (EDT) Received: from MTA-07.privateemail.com (unknown [10.20.150.170]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by erelay1.ox.registrar-servers.com (Postfix) with ESMTPS id 59256220A4F7; Tue, 16 Aug 2016 13:46:11 -0400 (EDT) Received: from APP-06 (unknown [10.20.147.156]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by MTA-07.privateemail.com (Postfix) with ESMTPSA id 1410860032; Tue, 16 Aug 2016 17:46:11 +0000 (UTC) Date: Tue, 16 Aug 2016 13:46:11 -0400 (EDT) From: Johnson Lau Reply-To: Johnson Lau To: bitcoin-dev@lists.linuxfoundation.org, Luke Dashjr Message-ID: <1210216648.90169.1471369571065@privateemail.com> In-Reply-To: <201608161020.28467.luke@dashjr.org> References: <835406850.86951.1471342201363@privateemail.com> <201608161020.28467.luke@dashjr.org> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_90168_89412966.1471369571007" X-Priority: 3 Importance: Medium X-Mailer: Open-Xchange Mailer v7.8.1-Rev18 X-Originating-Client: open-xchange-appsuite X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,HTML_MESSAGE, RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org Subject: Re: [bitcoin-dev] New BIP: Low S values signatures X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Bitcoin Protocol Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 16 Aug 2016 17:46:14 -0000 ------=_Part_90168_89412966.1471369571007 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit > On August 16, 2016 at 6:20 AM Luke Dashjr wrote: > > > On Tuesday, August 16, 2016 10:10:01 AM Johnson Lau via bitcoin-dev wrote: > > Specification > > > > Every signature passed to OP_CHECKSIG, OP_CHECKSIGVERIFY, OP_CHECKMULTISIG, > > or OP_CHECKMULTISIGVERIFY, to which ECDSA verification is applied, > > Not 20-byte witness v0 programs? That's an implicit CHECKSIG. Will clarify. > > > These operators all perform ECDSA verifications on pubkey/signature pairs, > > iterating from the top of the stack backwards. For each such verification, > > if the signature does not pass the IsLowDERSignature check, > > "the IsLowDERSignature check" is not well-defined. Probably intend to > reference the previous paragraph? IsLowDERSignature is the function in Bitcoin Core. That's a bit complicated as the real checking function is not directly called. I'll clarify. > > Luke ------=_Part_90168_89412966.1471369571007 MIME-Version: 1.0 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable



> On August 16, 2016 at 6:20 AM Luke Das= hjr <luke@dashjr.org> wrote:
>
>
> On Tuesda= y, August 16, 2016 10:10:01 AM Johnson Lau via bitcoin-dev wrote:
> = > Specification
> >
> > Every signature passed t= o OP_CHECKSIG, OP_CHECKSIGVERIFY, OP_CHECKMULTISIG,
> > or OP_CH= ECKMULTISIGVERIFY, to which ECDSA verification is applied,
>
= 2; Not 20-byte witness v0 programs?

That's an implicit CHECKS= IG. Will clarify.

>
> > These operators all perform E= CDSA verifications on pubkey/signature pairs,
> > iterating from= the top of the stack backwards. For each such verification,
> >= if the signature does not pass the IsLowDERSignature check,
>
&= #62; "the IsLowDERSignature check" is not well-defined. Probably in= tend to
> reference the previous paragraph?

IsLowDERSignature= is the function in Bitcoin Core. That's a bit complicated as the real = checking function is not directly called. I'll clarify.


>=
> Luke

=20 ------=_Part_90168_89412966.1471369571007--