Hi Greg, Getting back to this:
Another solution could be to make annex usage "opt-in" > by requiring all inputs to commit to an annex to be relay-standard. In > this case, you've opted into a possible > vector, but at least current usage patterns wouldn't be unduly affected. > Ignoring the argument that policy may provide a false sense of security, I think this is an interesting idea. Opt-in would enable convenants through presigned txes with atomic on-chain signature backup, without needing to worry about non-annex multi-party protocols (coinjoin and dual funded lightning mentioned previously) that may suffer from annex inflation or the last signer presenting an unexpected annex. The downside is just that extra empty annex byte per input, if there are other inputs involved. To me that would be a reasonable trade-off. Would it then still be necessary to restrict the annex to a maximum size? Perhaps not opting into annex for multi-party protocols is sufficient. Or otherwise, #24007 may be helpful. It is hard to pick a constant usually. Joost.
_______________________________________________ bitcoin-dev mailing list firstname.lastname@example.org https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev