Lightning is nice however one cannot say it’s battle-tested. If script children would have an interest, they may take down these shiny new 5 BTC wumbo channels with negligible value and no effort in any respect.

The underlying problem is {that a} channel can’t maintain greater than 483 HTLCs at a time, whatever the channel capability. Sending 483 micro-payments to your self and holding on to the HTLCs is sufficient to incapacitate a channel for as much as two weeks.

By using the max route size so as to add loops, every cost can devour as much as 9 HTLC slots on the goal channel. If the script child is fortunate, they solely must ship 54 funds to get it performed. A single tiny channel takes double-digit quantities of Bitcoin out of enterprise.

Under is me locking up roughly 5,800,000 satoshis with a refundable 18 satoshi cost looping 5 occasions via three mainnet channels owned by Bitfinex and OpenNode. For mainly so long as I need. This occurred at present.

Eager to turn out to be the world’s cost system sounds good however we won’t have trivially exploitable vulnerabilities like this. Stroll the speak.

Subsequently I began a brand new venture referred to as Circuit Breaker: a firewall for Lightning nodes. The first objective is to encourage occupied with this drawback with the potential to develop right into a full-fledged Lightning safety system.

joost debug output

This query was answered by Joost Jager on Twitter.



Source link

LEAVE A REPLY

Please enter your comment!
Please enter your name here