Full Disclosure: CVE-2023-40231 / CVE-2023-40232 / CVE-2023-40233 / CVE-2023-40234 "All your mempool are belong to us"
Posted by Peter Todd
Oct 21, 2023/02:43 UTC
The email discusses the topic of storing ephemeral data, specifically focusing on HTLC (Hashed Time-Locked Contract) transactions and commitment transactions. The sender mentions that since lightning uses disclosed secrets to invalidate old state, it is not necessary to keep every signature from the counterparty indefinitely. The email also mentions that RBF (Replace-By-Fee) has a minimum incremental relay fee of 1sat/vByte by default.
Regarding SIGHASH_SINGLE, it is stated that since it requires one output per input, combining multiple SIGHASH_SINGLE transactions together does not result in significant savings. Only 18 bytes are saved for nVersion, nLockTime, and the txin and txout size fields. On the other hand, the HTLC-timeout transaction is 166.5 vBytes, resulting in a savings of just 11%.
The sender brings up the scenario of needing to fee bump and add an additional input. In this case, the input takes up space and a change output is likely needed. The email suggests that using a pre-signed transaction may have been a better option in such cases.
Additionally, the sender mentions that the assumption of having many HTLCs in flight that need to be spent is often not the case.
The email includes a link to https://petertodd.org, along with the sender's email address: 'peter'[:-1]@petertodd.org.
TLDR
Join Our Newsletter
We’ll email you summaries of the latest discussions from authoritative bitcoin sources, like bitcoin-dev, lightning-dev, and Delving Bitcoin.
Explore all Products
We'd love to hear your feedback on this project?
Give Feedback