Update bip-0352.mediawiki

Co-authored-by: Vojtěch Strnad <43024885+vostrnad@users.noreply.github.com>
bitcoin · Aug 4, 2023 · 537ab3e · 537ab3e
1 parent 259593d
commit 537ab3e
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/bip-0352.mediawiki b/bip-0352.mediawiki
@@ -239,7 +239,7 @@ While any UTXO with known output scripts can be used to fund the transaction, th
 * ''P2SH-P2WPKH''
 * ''P2PKH''
 
-Inputs with conditional branches or multiple public keys (e.g. ''CHECKMULTISIG'') are not included as this introduces malleability and would allow a sender to re-sign with a different set of public keys after the silent payment output has been derived. This is not a concern when the sender controls all of the inputs, but is an issue for CoinJoins and other collaborative protocols, where a malicious participant can participate in deriving the silent payment address with one set of keys and then re-broadcast the transaction with signatures for a different set of public keys. P2TR can have hidden conditional branches (script path), but we work around this as described below.
+Inputs with conditional branches or multiple public keys (e.g. ''CHECKMULTISIG'') are not included as this introduces malleability and would allow a sender to re-sign with a different set of public keys after the silent payment output has been derived. This is not a concern when the sender controls all of the inputs, but is an issue for CoinJoins and other collaborative protocols, where a malicious participant can participate in deriving the silent payment address with one set of keys and then re-broadcast the transaction with signatures for a different set of public keys. P2TR can have hidden conditional branches (script path), but we work around this by using only the output public key.
 
 ''' P2TR '''