You didn't add it to the call to DepDiscourageFlags() in PolicyScriptChecks()

You probably want different values from the OP_CAT deployment?

I'm going to need an explainer to figure out deployments in inquisition; can fix it along with potential signet one

@ajtowns could you provide guidance here?

See #82; though you'll need a binana number. Maybe figure out a nice way to make a binana doc just reference a particular revision of a bip? (Have BIN-2025-xxx.md just have a header and a table that maps binana revision numbers to bips repo commit ids maybe?)

bitcoin-inquisition/binana#1 turns out IK is already a thing in BINANA (and compatible), CSFS needs modification. Can the BINANA be modified with author's consent or do you suggest a new one? I believe the *VERIFY variant is considered abandoned.

Modifications should be with author's agreement, and bumping the revision number and date. If it's just changing to reference an updated spec from the same author in the bips repo, I'd be happy to assume the author's agreement. Just getting a new number assigned is fine too (though I guess I'd want to add the author to the table in the README to better distinguish them in that case?).

If it's just changing to reference an updated spec from the same author in the bips repo, I'd be happy to assume the author's agreement

I'd want the literal spec in BIP348 (obviously), seems easiest.

@reardencode Are you ok with this idea?

Yes, that seems reasonable. Definitely better than trying to keep the two docs in sync.

Maybe figure out a nice way to make a binana doc just reference a particular revision of a bip?

You might like to reference BIN16-118 for how to simplify BINANA assignments for BIPs.

duplicate line, it's already added in the main commit

removed

nit: could introduce a new error code SCRIPT_ERR_DISCOURAGE_OP_CHECKSIGFROMSTACK

added

This comment was a bit confusing to me - perhaps someting like: "BIP348 CSFS messages and signatures can be embedded directly into the tapleaves to simplify testing since they do necessarily cover the spending transaction"

doesn't sound right to validate the signature before checking this

EvalChecksigTapscript does this check first before validating the sig and in the core PR it is done first as well

This PR follows the BIP more closely than random implementation details of taproot. I'm willing to change it but I'd need general agreement on it.

The BIP says "These opcodes are treated identically to other signature checking opcodes and count against the sigops and budget." which to me implies it should closely follow the random implementation details of the other signature checking opcodes...

(Checking the budget before incurring the expense doesn't seem like a random implementation detail, though...)

I think this is strictly equivalent? There is no execution path where we would perform the verification but not end up either accounting for it here or immediately stopping Script execution.

you'd do one extra signature validation, not the end of the world jut calling it out that its different from how checksig implemented

@benthecarman I assume he meant consensus semantically, not implementation-wise.

If it's a blocker for moving forward it can be changed...

Not a huge deal, just calling out the difference

I think this is strictly equivalent?

You get a different error message (failing signature vs exceeded the budget); and you spend more execution time reporting the failed signature. Still fails in either case, so not the end of the world, but seems strictly worse, and not particularly justified by any of the BIP text. Matching the EvalChecksigTapscript implementation seems more logical to me. 🤷‍♂️

"reverted" to taproot flow in #87

nit: this is between EvalChecksigPreTapscript and EvalChecksigTapscript which can be a little confusing/annoying

moved in #87