Bitcoin Stack Exchange
Bitcoin Stack Exchange

Questions tagged [taproot]

Taproot is a Bitcoin softfork activated in 2021. It introduced a new output type, P2TR (Pay to Taproot), which uses the Schnorr signature scheme to combine a public key with an optional script tree. The public key can additionally be an aggregation of multiple keys, which enables cheaper and more private multisignature transactions.

223 questions
25
votes
1 answer

Why does hashing public keys not actually provide any quantum resistance?

In the discussions about taproot, it was mentioned that outputs will include the public key directly instead of hashing them. It is stated that, currently, hashing does not really provide quantum resistance. Why is that?
Andrew Chow
  • 67,209
  • 5
  • 76
  • 149
22
votes
1 answer

Is it possible to convert a taproot address into a native segwit address?

A few days ago I requested a BTC withdrawal on Binance, I used a bc1p address and the request went through as usual without any issue or warning. (my first time using taproot address). Binance checked the transaction as completed and provided Txn…
Mario
  • 223
  • 2
  • 5
14
votes
1 answer

Musig Signature Interactivity

2 Questions: Why is Musig signing always interactive? Let's say I have a Musig wallet where keys are stored in secure locations with no internet access. What are some methods to sign from these secure, offline locations given Musig interactivity…
justinmoon
  • 567
  • 2
  • 11
12
votes
1 answer

What is the script assembly and execution in P2TR spend (spend from Taproot)

So I have found and fundamentally understand how P2PKH is assembled from inputs and outputs to create a bitcoin forth-like script for execution. I looked at the SegWit BIP examples section and I found them easy enough to understand as well. But…
Dan
  • 451
  • 2
  • 8
11
votes
1 answer

Why does Taproot require a new address format?

Dawid Ciężarkiewicz asked on Twitter: Hey #bitcoin ers. I'm trying to figure out why taproot needs a new address format, as I missed it. If you have a good link or something - please share. I thought that "A Taproot output is a native SegWit output…
Murch
  • 71,155
  • 33
  • 180
  • 600
9
votes
2 answers

How are scriptless scripts and taproot different?

I recently read Aaron van Wirdum's layman explanation of both scriptless scripts and taproot. I gather that both utilize the aggregation of Schnorr signatures to hide complex scripts (smart contracts) in a normal-looking transaction. What are the…
blee
  • 193
  • 4
9
votes
1 answer

BIP-341: Should key-path-only P2TR be eschewed altogether?

Consider BIP-341 "Constructing and spending Taproot outputs" where it says If the spending conditions do not require a script path, the output key should commit to an unspendable script path instead of having no script path. and also the answer…
davidbak
  • 261
  • 1
  • 7
8
votes
1 answer

In theory could we skip the proposed Taproot soft fork, activate Simplicity instead and use Simplicity to write the equivalent of Taproot scripts?

In theory could we skip the proposed Taproot soft fork, activate Simplicity instead and use Simplicity to write the equivalent of Taproot scripts? Or does Simplicity need more development and maturation? This question has been paraphrased and was…
Michael Folkson
  • 14,337
  • 3
  • 11
  • 45
8
votes
2 answers

Was the lifting of the Taproot transaction size limit "accidental"? Why would ordinals want to fill a block with OP_RETURNs?

I was reading this Twitter thread from pourteaux. I'm pretty sure there are some inaccuracies in it but I have a couple of questions. He states: Taproot accidentally blew up the old transaction size limit in OP_RETURN It wasn't accidental at all…
Michael Folkson
  • 14,337
  • 3
  • 11
  • 45
7
votes
3 answers

What are Merklized Alternative Script Trees?

I have seen the acronym MAST floating around. I saw that it stands for Merklized Alternative Script Trees, but what does that mean? In what context do they appear and what can they be used for?
Murch
  • 71,155
  • 33
  • 180
  • 600
7
votes
1 answer

What are the different upgradeability features in the BIP-Taproot (BIP 341) proposal?

What are the different upgradability features in the BIP-Taproot (BIP 341) proposal? Why are there so many upgradability paths? Is there something an annex can do that a leaf version can't? This question was asked by James Prestwich on Twitter.
Michael Folkson
  • 14,337
  • 3
  • 11
  • 45
7
votes
2 answers

How can I find samples for P2TR transactions on mainnet?

Can I ask for a P2TR transaction id example past block 709632? I was trying to debug one of my scripts and something is wrong when searching for witness_v1_keyhash, and couldn't manually find one in the blockchain explorers.
Tony Sanak
  • 1,654
  • 4
  • 22
7
votes
1 answer

How to tweak a public key for Taproot

From what I know, to tweak a public key, I can use: Q = P + H(P|c)G where Q is the tweaked public key P is the initial public key (P = xG where x is the private key) H is the hash function | is concatenation c is the commitment to the script path…
Keijyu
  • 85
  • 4
7
votes
2 answers

Should the Bitcoin Core wallet (or any wallet) prevent users from sending funds to a Taproot address pre activation?

The Bitcoin Core wallet prevents mainnet Taproot descriptors from being imported pre activation (November 2021) as a safeguard. However, you can send mainnet Bitcoin to a Taproot (P2TR) address pre activation. Should the sendtoaddress Core RPC…
Michael Folkson
  • 14,337
  • 3
  • 11
  • 45
7
votes
1 answer

Support for P2WSH-wrapped P2TR addresses

Given that Taproot addresses use a new SegWit version and a new address encoding (bech32m), it's reasonable to expect a transition from the ecosystem to this new address version similar to what we saw for the P2PKH/P2SH -> P2WPKH/P2WSH transition.…
esneider
  • 308
  • 1
  • 4
1
2 3
14 15