You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
BIP-0117: Change semantics of multi-element tail call to not require stack elements to be exactly 520 bytes in size. This allows for more compact direct encoding of scripts of the form "pick 2 of 3 spend conditions" without enabling witness malleability in expected use cases as the components would still be checked against a pre-committed hash tree.
Copy file name to clipboardExpand all lines: bip-0117.mediawiki
+3-7Lines changed: 3 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -42,12 +42,8 @@ while the remaining elements of both stacks remain in place as inputs.
42
42
43
43
If the above conditions hold except for the last one, such that:
44
44
45
-
* the top-most element ''is'' a single byte within the inclusive range of <code>0x51</code> (<code>OP_1</code>, meaning N=2) to <code>0x60</code> (<code>OP_16</code>, meaning N=17);
46
-
47
-
and:
48
-
49
-
* the next N-1 elements on the main stack (continuing on the alt stack if the main stack is exhausted) are 520 byte pushes; and
50
-
* the following Nth element on the main stack (or alt stack, as above) is between 1 and 520 bytes,
45
+
* the top-most element ''is'' a single byte within the inclusive range of <code>0x51</code> (<code>OP_1</code>, meaning N=2) to <code>0x60</code> (<code>OP_16</code>, meaning N=17); and
46
+
* other than this top-most element there are at least N additional elements on the main stack and alt stack combined,
51
47
52
48
then the top-most element of the main stack is dropped,
53
49
and the N=2 (<code>0x51</code>) to 17 (<code>0x60</code>) further elements are popped from the main stack,
@@ -102,7 +98,7 @@ The global SIGOP limit and per-script opcode limits do not apply to the policy s
102
98
because dynamic selection of the policy script makes it not possible for static analysis tools to verify these limits in general,
103
99
and because performance improvements to libsecp256k1 and Bitcoin Core have made these limits no longer necessary as they once were.
104
100
The validation costs are still limited by the number of signature operations it is possible to encode within block size limits,
105
-
and the maximum script size per input is still limited to 10,000 bytes.
101
+
and the maximum script size per input is limited to 10,000 + 17*520 = 18,840 bytes.
106
102
107
103
To allow for this drop of global and per-script limits,
108
104
tail-call evaluation cannot be allowed for direct execution of the scriptPubKey,
0 commit comments