[Lightning-dev] Probe cancellation

ZmnSCPxj ZmnSCPxj at protonmail.com
Mon Nov 12 00:17:31 UTC 2018 

Good morning aj,

This indeed looks like a good idea to allow freeing up scarce resources on the network.

An attacker will still take the option to not do this, but at least someone making an honest effort to probe the network does not inadvertently attack it in case a probe fails.

Regards,
ZmnSCPxj


Sent with ProtonMail Secure Email.

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
On Saturday, November 10, 2018 11:26 AM, Anthony Towns <aj at erisian.com.au> wrote:

> PING,
>
> It seems like ensuring reliability is going to involve nodes taking
> active measures like probing routes fairly regularly. Maybe it would
> be worth making that more efficient? For example, a risk of probing is
> that if the probe discovers a failing node/channel, the probe HTLC will
> get stuck, and have to gradually timeout, which at least uses up HTLC
> slots and memory for each of the well-behaved nodes, but if the probe
> has a realistic value rather than just a few (milli)satoshis, it might
> lock up real money too.
>
> It might be interesting to allow for cancelling stuck probes from
> the sending direction as well as the receiving direction. eg if the
> payment hash wasn't generated as SHA256("something") but rather as
> SHA256("something") XOR 0xFF..FF or similar, then everyone can safely drop
> the incoming transaction because they know that even if they forwarded
> the tx, it will be refunded eventually anyway (or otherwise sha256 is
> effectively broken and they're screwed anyway). So all I have to do is
> send a packet saying this was a probe, and telling you the "something"
> to verify, and I can free up the slot/funds from my probe, as can everyone
> else except for the actual failing nodes.
>
> From the perspective of the sending node:
>
> generate 128b random number X
> calculate H=bitwise-not(SHA256(X))
> make probe payment over path P, hash H, amount V
> wait for response:
> - success: Y, s.t. SHA256(Y)=H=not(SHA256(X)) -- wtf, sha is broken
> - error, unknown hash: path works
> - routing failed: mark failing node, reveal X cancelling HTLC
> - timeout: mark path as failed (?), reveal X cancelling HTLC
>
> Cheers,
> aj
>
> Lightning-dev mailing list
> Lightning-dev at lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/lightning-dev

More information about the Lightning-dev mailing list