📅 Original date posted:2016-01-25
📝 Original message:> > In the release notes for 0.12, it says that we have moved from
> > using OpenSSL to libsecp256k1 for signature validation. So what
> > else is it being used for that we need to keep it as a dependency?
>
> Openssl was dropped from the consensus layer (ECC) in 0.12, though, it
> still used for...
>
> 1) ... getting random numbers (randomize the ECC signing context)
> 2) [wallet only] ... AES256 encryption of private keys
> 3) [GUI only] ... SSL/X.509 for BIP70 (payment protocol)
>
> Openssl dependency for 1) and 2) could be removed. There are some –
> outdated – relevant PRs:
>
> Entropy: https://github.com/bitcoin/bitcoin/pull/5885
> AES: https://github.com/bitcoin/bitcoin/pull/5949
>
> I guess for point 3) [BIP70] it makes sense to keep openssl.
Exactly - the plan is that OpenSSL will, in due time, be a dependency only if the
GUI is enabled. Most of the work for that is already done but it has to be made
up to date and carefully tested and integrated.
Wladimir
Wladimir J. van der Laan [ARCHIVE] /
npub1ts…rfl5y
2023-06-07 17:47:59
in reply to nevent1q…ww4x
Author Public Key
npub1ts9hljj3l4yrpdxelpqdup3l46lw40fmkhw3rr0feh6s5ml247vqerfl5yPublished at
2023-06-07 17:47:59Event JSON
{
"id": "6ea6701eba26478ae6c564b32d380845f8ea83df584ec1dc98619f9245bbe27d",
"pubkey": "5c0b7fca51fd4830b4d9f840de063faebeeabd3bb5dd118de9cdf50a6feaaf98",
"created_at": 1686160079,
"kind": 1,
"tags": [
[
"e",
"ef5dde92725afdb85cf5de68b79bda90601206705e3d8da3230ef1a65f276d4a",
"",
"root"
],
[
"e",
"813164a198c343f0aaf958fb18e88ecfe7d3e96ffb463b859a3fd74f7c84eaa4",
"",
"reply"
],
[
"p",
"9a463e0fab8963b013698c15a0f2449d19c97f3b88458e5874095b5006df9a0c"
]
],
"content": "📅 Original date posted:2016-01-25\n📝 Original message:\u003e \u003e In the release notes for 0.12, it says that we have moved from\n\u003e \u003e using OpenSSL to libsecp256k1 for signature validation. So what\n\u003e \u003e else is it being used for that we need to keep it as a dependency?\n\u003e \n\u003e Openssl was dropped from the consensus layer (ECC) in 0.12, though, it\n\u003e still used for...\n\u003e \n\u003e 1) ... getting random numbers (randomize the ECC signing context)\n\u003e 2) [wallet only] ... AES256 encryption of private keys\n\u003e 3) [GUI only] ... SSL/X.509 for BIP70 (payment protocol)\n\u003e \n\u003e Openssl dependency for 1) and 2) could be removed. There are some –\n\u003e outdated – relevant PRs:\n\u003e \n\u003e Entropy: https://github.com/bitcoin/bitcoin/pull/5885\n\u003e AES: https://github.com/bitcoin/bitcoin/pull/5949\n\u003e \n\u003e I guess for point 3) [BIP70] it makes sense to keep openssl.\n\nExactly - the plan is that OpenSSL will, in due time, be a dependency only if the\nGUI is enabled. Most of the work for that is already done but it has to be made\nup to date and carefully tested and integrated.\n\nWladimir",
"sig": "36ef89340571fb9851ae4a3b38c3a81b0c654321d856667ab2460cb953d0be2d5be510194de56e3841ba583083adcf1318973db81e6bed22b961d7e6593378e3"
}