Hi Peter,<br /><br />See also that can be relevant for taproot annex support:<br />https://github.com/bitcoin/bips/pull/1381<br /><br />&gt; 1) All non-empty annexes start with the byte 0x00, to distinguish them<br />&gt; from consensus-relevant annexes. This ensures that any use of the<br />&gt; annex will not conflict with future soft-forks that may assign<br />&gt; meaning to the annex.<br /><br />So IIUC, it would be 1-byte: 0x00 | &lt;random_data payload&gt;.<br /><br />&gt; 2) All inputs have an annex. This ensures that use of the annex is<br />&gt; opt-in, preventing transaction pinning attacks in multi-party<br />&gt; protocols. This requirement may be relaxed in the future, eg to allow<br />&gt; spends of keyless outputs, and/or if RBF for witness-only<br />&gt; replacements is implemented.<br /><br />I think it's good to start with all inputs have an annex. It avoids<br />the kind of issue, like what if the annex size is inflated to downgrade<br />the feerate of the multi-party transaction (e.g to have a coinjoin<br />stucking in network mempools).<br /><br />One thing that might be missed, without having looked to the code, is<br />potentially a policy transaction-relay rule to limit the max size of the<br />annex, to avoid the same concern than above. There shouldn't be max<br />limit for now, as normally the annex is not standard at all as a taproot<br />data field.<br /><br />Best,<br />Antoine<br />OTS hash: 5b620c444896f05d05fe00542a4ac04c44f21684<br /><div class="gmail_quote"><div dir="auto" class="gmail_attr">Le jeudi 20 mars 2025 à 01:02:10 UTC, Peter Todd a écrit :<br/></div><blockquote class="gmail_quote" style="margin: 0 0 0 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">I&#39;m working on adding support for the taproot annex to Libre Relay:
<br>
<br><a href="https://github.com/petertodd/bitcoin/commit/04c8e449a34e74e048bf5751d13592a22763ff7e" target="_blank" rel="nofollow" data-saferedirecturl="https://www.google.com/url?hl=fr&amp;q=https://github.com/petertodd/bitcoin/commit/04c8e449a34e74e048bf5751d13592a22763ff7e&amp;source=gmail&amp;ust=1742597172176000&amp;usg=AOvVaw1ZApO8er4UoxBgvjqHNCnv">https://github.com/petertodd/bitcoin/commit/04c8e449a34e74e048bf5751d13592a22763ff7e</a>
<br>
<br>I&#39;m basing this on Joost Jager&#39;s pull-req: <a href="https://github.com/bitcoin/bitcoin/pull/27926" target="_blank" rel="nofollow" data-saferedirecturl="https://www.google.com/url?hl=fr&amp;q=https://github.com/bitcoin/bitcoin/pull/27926&amp;source=gmail&amp;ust=1742597172176000&amp;usg=AOvVaw3NBOE7rT47DCctsmiAmKxf">https://github.com/bitcoin/bitcoin/pull/27926</a>
<br>
<br>Specifically, transactions containing taproot annexes will be standard
<br>if:
<br>
<br>1) All non-empty annexes start with the byte 0x00, to distinguish them
<br>   from consensus-relevant annexes. This ensures that any use of the
<br>   annex will not conflict with future soft-forks that may assign
<br>   meaning to the annex.
<br>
<br>2) All inputs have an annex. This ensures that use of the annex is
<br>   opt-in, preventing transaction pinning attacks in multi-party
<br>   protocols. This requirement may be relaxed in the future, eg to allow
<br>   spends of keyless outputs, and/or if RBF for witness-only
<br>   replacements is implemented.
<br>
<br>An example of a transaction meeting these requirements is:
<br>
<br>010000000001011a559447098aaa14dec0c62ea55f43f9ce6bda07d1759f11b634334ab9da939b0000000000ffffffff010000000000000000076a05616e6e657802406840b6fa27a00ba001cc92797ce4f3ab7b7a32c21d1fce49e893b42e506bd92e8db187966a84ef799915cf671334cc59779915b192bfb66b2afcf384bb61d0f422500049276d20616e20616e6e6578212041726520796f7520616e20616e6e65783f0000000000
<br>
<br>-- 
<br><a href="https://petertodd.org" target="_blank" rel="nofollow" data-saferedirecturl="https://www.google.com/url?hl=fr&amp;q=https://petertodd.org&amp;source=gmail&amp;ust=1742597172176000&amp;usg=AOvVaw3NIc9qw2c6r3kNa0tlsqvu">https://petertodd.org</a> &#39;peter&#39;[:-1]@<a href="http://petertodd.org" target="_blank" rel="nofollow" data-saferedirecturl="https://www.google.com/url?hl=fr&amp;q=http://petertodd.org&amp;source=gmail&amp;ust=1742597172176000&amp;usg=AOvVaw1J8LUZ-r9EduHgzAIAhnP3">petertodd.org</a>
<br></blockquote></div>

<p></p>

-- <br />
You received this message because you are subscribed to the Google Groups &quot;Bitcoin Development Mailing List&quot; group.<br />
To unsubscribe from this group and stop receiving emails from it, send an email to <a href="mailto:bitcoindev+unsubscribe@googlegroups.com">bitcoindev+unsubscribe@googlegroups.com</a>.<br />
To view this discussion visit <a href="https://groups.google.com/d/msgid/bitcoindev/d906eece-2edb-428c-8d67-3836d52f4897n%40googlegroups.com?utm_medium=email&utm_source=footer">https://groups.google.com/d/msgid/bitcoindev/d906eece-2edb-428c-8d67-3836d52f4897n%40googlegroups.com</a>.<br />