Feed for tag: lightning
Why double spend attacks on Lightning are not possible

Margherita Favaretto, a student working on remediation protocol for Lightning Network double-spend attacks asked for feedback for a proposed solution to double spend attacks using a “trusted remediation” gossip protocol.

ZmnSCPxj pointed out that double spend attacks are not possible on the Lightning Network unless both parties involved in the channel agree to it, which is not likely, first because the man at the other end of the channel will lose money. Secondly even if the other end of the channel is irrational enough to help the other guy double spend, they will still ask for an invoice and give the money using “existing invoice-payment mechanisms.” ZmnSCPxj added:

If the problem you are trying to solve, is the inadvertent publication of revoked commitment transactions, then the correct solution is not to have revocable transactions in the first place, i.e. eltoo. While it can be argued that it would take time for needed features of eltoo to appear on the blockchain layer (SIGHASH_NOINPUT_UNSAFE), it would also take time to implement “trusted remediation”, by which time the problem could be solved by switching over to eltoo.

eclair: v0.2-beta8

This release fixes a bug in our router module where we would tag signatures for channel_update messages that include an optional htlc_maximum_msat field as invalid and close the channel, even when these signatures were actually valid.

This bug is specific to our server/desktop node and does not affect our mobile wallet. Our testnet and mainnet nodes have already been patched. We * strongly * encourage users to upgrade as soon as possible.

### Verifying signatures

You will need gpg and our release signing key 7A73FE77DE2C4027. Note that you can get it: - from our website: https://acinq.co/pgp/drouinf.asc - from github user @sstone, a committer on eclair: https://api.github.com/users/sstone/gpg_keys

To import our signing key:

$gpg --import drouinf.asc  To verify the release file checksums and signatures: $ gpg -d SHA256SUMS.asc > SHA256SUMS.stripped
$sha256sum -c SHA256SUMS.stripped  ### Upgrading This release is compatible with Eclair v0.2-beta7. You don’t need to close your channels, just stop eclair, upgrade and restart. Commitment Transaction Format Update Proposals Commitment transactions are huge part of the penalty system Lightning enforces to make sure everyone plays nicely with one another, it make sure that if someone in the channel broadcasts an older transaction, thus trying to scam the other party, the commitment transaction will allow the first party access to the scamming party’s coins. There were recently a few proposals to edit the commitment transaction, mainly the edits are about the format. Making the CLTV timeout symmetrical to avoid trying to pressure the peer into closing, making the remotepubkey BIP-32 styled and using the OP-TRUE style output to allow Child Pays For Parent fee dependancy. Proposal for Syncing Channel Updates An update was suggested to include channel update timestamps to the channel range queries, the reply_channel_range will now include 4 bytes of a timestamp and the query_short_channel_ids will include a flag that is set to 1 if the node should send back a channel announcement and the updates, and would otherwise send just the updates. eclair: v0.2-beta7 This is a maintenance release of eclair, which is now compatible with Bitcoin Core v0.17.0 (see our README).It will also work with Bitcoin Core v0.16.3. ### Verifying signatures You will need gpg and our release signing key 7A73FE77DE2C4027. Note that you can get it: - from our website: https://acinq.co/pgp/drouinf.asc - from github user @sstone, a committer on eclair: https://api.github.com/users/sstone/gpg_keys To import our signing key: $ gpg --import drouinf.asc


To verify the release file checksums and signatures:

$gpg -d SHA256SUMS.asc > SHA256SUMS.stripped$ sha256sum -c SHA256SUMS.stripped


This release is compatible with Eclair v0.2-beta6. You don’t need to close your channels, just stop eclair, upgrade and restart.

### Change log

• Only persist trimmed htlcs (#724)
• Add instructions for Bitcoin Core 0.17.0 (#732)
• Update scalatest and remove junit runner (#728)
• Simplify bitcoind version check (#731)

• Complete commit logs

Move bitcoin UTXOs off-chain with Statechains
Statechains author @SomsenRuben gives several different depths of explanations for how statechains work including a short FAQ. Statechain aim to allow users to move bitcoin UTXOs entirely off-chain. Enables instant off-chain creation of Lightning channels, with the ability to easily add or remove funds, and more.
RTL — A Web UI for Lightning Network Daemon

RTL or “Ride the Lightning” is an easy to use interface for LND. It is a web app written in Angular 6 and with a node.js middle-layer that is meant to provide an “abstraction” to the currently used command line interface users use to interact with LND.