Andrew Poelstra
Andrew Poelstra
Oh, nice! Chapter 5 of Leo's thesis has a proof of exactly what you want, in the random oracle model. @petertodd rebased and added a commit which assets that point-reencoding...
I should update this to be consistent with https://github.com/ElementsProject/secp256k1-zkp/pull/111 when that gets merged. Or perhaps I should hold off until the Taproot equivalent. Interesting thought to interpret invalid points as...
In addition to the space savings and uncensorability (which I agree, OT already does a very good job on both), - Letting OT work with Mimblewimble - I'd like to...
I'm not sure what you mean by 1 byte. Do you mean, do we ever need non-unary opcodes?
Per our in-person conversation earlier: I misunderstood what you meant by "assumed 1 byte serialization" -- I thought you were suggesting that there be no binary opcodes, since these naturally...
The segwit difficulty is that sign-to-contract puts a commitment into witness data, which has its own Merkle tree which is committed to in the coinbase transaction of the transaction tree,...
Right, it's purely an efficiency problem.
It is correct that rust-bitcoin has nothing to do with asicboost and this is not a bug in our library. I won't comment on whether it is CVE-worthy or even...
I wouldn't mind adding this support if there's a use case for it, but * Address reuse is address reuse, even if you change assets, and we don't want to...
cc @achow101 can you add an option to `walletcreatefundedpsbt` to populate these fields?