P2sh support #246
P2sh support #246
Conversation
…. OP_CHECKMULTISIG only supports public keys. No public key hashes or script hashes are allowed. As such the canonical Senders Address is the 1 of N necessary to redeem the output is not available to p2sh addresses. As it was never explicitly required in the spec that this pubkey match the senders address, it is now explicitly mentioned that it can be any address the sender designates to be the output redeemer
|
Awesome, thanks for pushing this forward.
Is there any reason to keep this restriction instead of opening up completely? Also +1 for letting the user choose the destination - in the utmost worst case this could default to the Exodus pubkey. |
|
since other projects have hit problems with certain addressing schemes I feel more comfortable requiring any new pay-to standard transactions to pass analysis by the protocol team before allowing it through. For instance a pay-to-multisig input would have multiple associated pubkeys and we would need to disambiguate which of those pubkeys we would use for the mastercoin protocol "sender address" if that is the only input. This was a bug that counterparty hit which allowed someone to spend another addresses coins. |
|
@CraigSellars asked me to look at our plans for p2sh with an eye toward finding corner cases or other gotchas. I can't think of any, but I think it would be safest to roll this out in stages (i.e. testnet first, and try to break it there before wider rollout). |
Pay-to-script-hash addresses represent some of the better security options for bitcoin addresses. With bitcoin core talking about extending the features allowed in the hashed script, these addresses will become increasingly powerful.
From the protocol's perspective these addresses may as well be opaque addresses like pubkey-hashes. Currently, this would afford users of the protocol the ability to create M-of-N multisig addresses to hold MASTER protocol tokens.
The one caveat is that our Class B transactions use 1-of-N outputs to redeem the bitcoin spent in the service of the protocol (Note: multisig outputs are distinct from p2sh addresses which utilize multisig). OP_CHECKMULTISIG only accepts public key addresses. We are currently bridging support for pubkey-hash addresses IFF the address is in our local wallet. This PR proposes to allow the constructor/sender of the transaction to designate a public key address to redeem outputs with so that in the case of an address flavor that isn't compatible with multisig outputs the bitcoin are not lost.
this is paired with a code PR mastercoin-MSC/mastercore#102