Pages:
Author

Topic: The end of Lightning Network? (Read 580 times)

legendary
Activity: 2422
Merit: 1451
Leading Crypto Sports Betting & Casino Platform
October 26, 2023, 04:39:39 PM
#47
I made a post to specifically discuss potential mistakes and wrong decisions that were made in the aftermath of the 2015-2017 big block scaling debate:
https://bitcointalk.org/index.php?topic=5471530.0;topicseen

If you think you have any input on the matter feel free to drop by there too.
legendary
Activity: 2534
Merit: 1713
Top Crypto Casino
October 26, 2023, 04:35:28 PM
#46
The faster and cheaper method is something we all would like bu the number of lightening transactions are tiny in comparison to what was earlier called normies in this thread. There is still a chance it will grow but it is dependent on adoption. The more people that use it will mean the more prominence it will have. I have never used lightening before though I had on one occasion looked at using it and by what has been said it does not look as though I am missing out on something spectacular.

and so we thought LN is a very good alternative when it comes to cheaper payment method. and now with this news, i don't think people will think of this network to be viable in the payment system anymore. people are looking for ways on how to get cheaper transactions via btc and now this option is out already. but in any case, i believe up until now, only few are using LN for their transactions so yes, it is no big deal.
legendary
Activity: 4424
Merit: 4794
October 26, 2023, 04:18:37 PM
#45
I believe Lightning Network initially was designed for off-chain transactions with small or not too big value so how recently it becomes a big problem.

initially yea. but these days majority of the liquidity is linked to 3 large companies. and they will want to further protect their locked liquidity by disavowing its customers control of the agreements/commitment states.

this topics flaw is not even a major problem but when lightning devs admit they cant fix something within their own network and resign. it shows not only they need to want bitcoin to fork to fix THEIR error. but also that when the other flaws get publicised which also cant be fixed. more and more will start to realise its time to break their sponsored contract. and try something new

and so we thought LN is a very good alternative when it comes to cheaper payment method. and now with this news, i don't think people will think of this network to be viable in the payment system anymore. people are looking for ways on how to get cheaper transactions via btc and now this option is out already. but in any case, i believe up until now, only few are using LN for their transactions so yes, it is no big deal.

heres the thing. (mentioning other issues)with liquidity bottlenecks and many users rebalancing causing other users to rebalance to cancel out their result of someones reblance ends up causing more payments and "router" fees. then we have a ignorance of fixes to this and instead have work arounds like custodianising funds in hubs (services and cex) then we have other work arounds to solve channel balance threats due to bugs with autopilot features so they start getting people to buy/rent LN balance units(msats) where central services run the node and users just have a lite wallet they dont need to have active all day and never sleep..
so now the promises of a decentralised own your own value network is 95% centralised with majority of users reliant on central services charging them 'rent' and subscription charges as the replacement of just a nominal fee.. all while the subnetwork itself is still less secure then the bitcoin network

its time they come up with something else. learn from the mistakes and start from scratch, stop prodding the problem down the road requiring bitcoin to change just to keep a flawed network open.. if a subnetwork cant fix itself using its own code.. its just not good enough

i do laugh when they 'greenlight' new services.. it just shows that if devs need to offer a service instead of a network code feature.. they have reached their coding limit of fixing the problems
legendary
Activity: 3122
Merit: 1102
Leading Crypto Sports Betting & Casino Platform
October 26, 2023, 03:48:50 PM
#44
I believe Lightning Network initially was designed for off-chain transactions with small or not too big value so how recently it becomes a big problem.

initially yea. but these days majority of the liquidity is linked to 3 large companies. and they will want to further protect their locked liquidity by disavowing its customers control of the agreements/commitment states.

this topics flaw is not even a major problem but when lightning devs admit they cant fix something within their own network and resign. it shows not only they need to want bitcoin to fork to fix THEIR error. but also that when the other flaws get publicised which also cant be fixed. more and more will start to realise its time to break their sponsored contract. and try something new

and so we thought LN is a very good alternative when it comes to cheaper payment method. and now with this news, i don't think people will think of this network to be viable in the payment system anymore. people are looking for ways on how to get cheaper transactions via btc and now this option is out already. but in any case, i believe up until now, only few are using LN for their transactions so yes, it is no big deal.
legendary
Activity: 2534
Merit: 1713
Top Crypto Casino
October 26, 2023, 12:27:15 PM
#43
time for them to scrap it and start afresh, new model, new method. les flaws, less bugs

we should not be forking bitcoin just to make a subnetwork function.. a subnetwork should function prebridge.. and then program itself on its side to interact with bitcoin

if they cant even have a working prototype thats secure. they failed at the first post
I do not know if now is the right time to completely scrap and give up while looking for another solution. There has been a lot of time, effort and collaboration that was put in to creating what is being used now therefore an alternative might not be the nest thing to bring forth right now.

I believe Lightning Network initially was designed for off-chain transactions with small or not too big value so how recently it becomes a big problem.
initially yea. but these days majority of the liquidity is linked to 3 large companies. and they will want to further protect their locked liquidity by disavowing its customers control of the agreements/commitment states.

this topics flaw is not even a major problem but when lightning devs admit they cant fix something within their own network and resign. it shows not only they need to want bitcoin to fork to fix THEIR error. but also that when the other flaws get publicised which also cant be fixed. more and more will start to realise its time to break their sponsored contract. and try something new
I did not read anything about three large companies dominating but after a look around I found the pool of stakeholders with serious interests seems more than three. River seems to have just completed a $35 million fundraising round therefore it is getting some publicity:

sr. member
Activity: 728
Merit: 444
October 26, 2023, 12:14:12 PM
#42
This puts some serious doubt on the future of lightning and the viability of it as a scaling solution.
What are your thoughts? Is there a path of recovery for developing scaling solutions?
And how about the years of waiting and supposed progress of development on the lightning network? Does it all go to waste?
For many, lightning network was the go to solution to bircoin's scaling issues.
My thoughts on this is that the lightning network is not dead. I think what has happened is just a FUD. If there were any real attack we would have noticed a depletion in the huge bug bounty reward of 5,288.66 BTC. If you check the https://mempool.space/lightning you would see it. Also, just as you would not leave the bulk of your bitcoin on any centralized exchange, also, treat your lightning network wallet in the same manner. The money there should be minimal just for quick spending and not kept as your savings. So that if eventually, so real attack happens, you will lose nothing substantial.
legendary
Activity: 4424
Merit: 4794
October 24, 2023, 01:22:37 AM
#41
I believe Lightning Network initially was designed for off-chain transactions with small or not too big value so how recently it becomes a big problem.

initially yea. but these days majority of the liquidity is linked to 3 large companies. and they will want to further protect their locked liquidity by disavowing its customers control of the agreements/commitment states.

this topics flaw is not even a major problem but when lightning devs admit they cant fix something within their own network and resign. it shows not only they need to want bitcoin to fork to fix THEIR error. but also that when the other flaws get publicised which also cant be fixed. more and more will start to realise its time to break their sponsored contract. and try something new
hero member
Activity: 1442
Merit: 775
October 23, 2023, 11:25:52 PM
#40
I would still be more concerned with someone stealing one of the RaspberryPi nodes in a box on my desk and getting my BTC that way then pulling this off.
It's just so out there as to be not something worth worrying about for the average user.

For the larger businesses running nodes I could see it being a concern, BUT since as pointed out there are some ways, admittedly non optimal ways but still ways, of mitigating it, once again not that big a deal
I don't see people use Bitcoin Lightning Network for big valued transactions and I could be wrong but from my understanding, people thought of two possible solutions.

Increasing time lock;
Increasing cost for attackers to high enough that is not worthy to do attacks like they will get nothing to do 51% attacks on Bitcoin blockchain for on-chain blocks and transactions.

I believe Lightning Network initially was designed for off-chain transactions with small or not too big value so how recently it becomes a big problem.
legendary
Activity: 4424
Merit: 4794
October 23, 2023, 01:50:41 PM
#39
funny part
lightning advocates wanted RBF enabled on the bitcoin network to make pre-confirm transaction handling non-trusted on the bitcoin network, just so they can advertise a pre-confirm transaction handling feature on their crappy subnet.

now they admit their desire for RBF is causing people to scam scheme and steal funds from their crappy subnet and they cant do anything about it just within their crappy subnet without forking bitcoin again

..
i predict the next part will be having to raise crappy subnet fee's to sway people from starting low and RBF'ing until theft... but then want to demand bitcoin network fee war to make bitcoin fees extremes just to make crappy subnetwork seem discounted

sounds like an endless snowball avalanche of bad work arounds rather than having a subnetwork that simply does as advertised/promised in a secure way in-of-itself

time for them to scrap it and start afresh, new model, new method. les flaws, less bugs

we should not be forking bitcoin just to make a subnetwork function.. a subnetwork should function prebridge.. and then program itself on its side to interact with bitcoin

if they cant even have a working prototype thats secure. they failed at the first post
hero member
Activity: 1554
Merit: 762
October 23, 2023, 09:04:04 AM
#38
Quote
Then you come in one morning and close all the channels to nodes that are not yours at once.
Why? You can just turn off your nodes. You don't have to close those channels. Let your users do that, so they will start betting, by closing their channels in panic, and setting higher and higher on-chain fees, and reaching levels, where a proper fee to get it included in the next block, will reach the holy "1000 satoshis per virtual byte" limit, or will exceed the amount locked in the channel.

And then, your side would be clear. Being offline is less serious crime than closing the channels by yourself, even if the final outcome is exactly the same. It is sad, that LN can be attacked just by being offline, but it is true, and many attacks can be done in this way.

The Lightning network does not depend on centralized parties. Anyone with Bitcoin can channel it to any node and use it completely unauthorized. On the other hand, there are of course nodes that act as "hubs" with excess liquidity for routing. But there are still many options for payment paths to the same destination. You can also choose to ignore large nodes for routing if you are concerned about centralization.
member
Activity: 1218
Merit: 49
Binance #Smart World Global Token
October 23, 2023, 08:41:11 AM
#37


In the past years, I heard many good things that can supposedly come out once the Lightning Network would be fully implemented and be adopted by many for transactions. This is one thing that we are pinning our hope that can translate massive and mainstream adoption for Bitcoin - most especially with small everyday transactions. I am then wondering...is this defect something that is beyond repair for one of its developers named Antoine Riard to disassociate himself with the project instead of coming up with the possible solution?
legendary
Activity: 3500
Merit: 6320
Crypto Swap Exchange
October 23, 2023, 08:33:59 AM
#36
mononautical on twitter sums it up nicely:

https://twitter.com/mononautical/status/1715736871534264818
Quote
14) This attack isn't easy. Pulling it off involves:
 - opening two channels with the victim.
 - routing a payment through them.
 - successfully replacement-cycling the victim's htlc-timeouts for Δ blocks.
 - without the victim discovering the htlc-preimage transaction.

I would still be more concerned with someone stealing one of the RaspberryPi nodes in a box on my desk and getting my BTC that way then pulling this off.
It's just so out there as to be not something worth worrying about for the average user.

For the larger businesses running nodes I could see it being a concern, BUT since as pointed out there are some ways, admittedly non optimal ways but still ways, of mitigating it, once again not that big a deal.

-Dave

legendary
Activity: 4326
Merit: 8950
'The right to privacy matters'
October 23, 2023, 06:45:46 AM
#35
I like what Jameson Lopp says though here:



https://twitter.com/lopp/status/1716022677515723107

For many, it seems that this is a big problem, but this can be used as a tool to spread FUD as well.

On the other hand, not all of us are very technical here, unless really a individual take time to exploit it and proved a point. But other than that, it has been identified and maybe a solution could be released very soon.

So let's see some dedicated attacks wrecking LN seems to me that if LN is wrecked 4 people with 5 btc combined could lay some nodes to waste. We may as well find out now rather than letting the problem stay hidden and dormant.

I say white hatters attack LN by this method and show us LN is dead.
hero member
Activity: 2632
Merit: 833
October 23, 2023, 06:39:14 AM
#34
I like what Jameson Lopp says though here:



https://twitter.com/lopp/status/1716022677515723107

For many, it seems that this is a big problem, but this can be used as a tool to spread FUD as well.

On the other hand, not all of us are very technical here, unless really a individual take time to exploit it and proved a point. But other than that, it has been identified and maybe a solution could be released very soon.
legendary
Activity: 1302
Merit: 1089
Goodnight, o_e_l_e_o 🌹
October 23, 2023, 04:44:29 AM
#33
Not sure why some people are calling it dead already.

1. While he's a core dev, he's definitely not the only dev

2. Lightning has never been perfect. But while it technically works, it's simply not ready yet. There's a reason why I never recommended it to normies yet as of yet. But, let's not forget that —

3. Software can be improved

1. There's always this strong vibration if the core developer leaves. He might not be the finest developer, but when the soldier who pulled the first shot is down, the zeal to soldier on is always not assured.

2. No technology ever came in a perfect form, even the bitcoin is still in beta version. Continuing on decentralisation will do the wonders.

3. Yea, we are expecting improvements but I lost some confidence in LN during the event of mempool congestion that skyrocketed the transaction fees. At that time that the LN was needed most, it didn't help much.
legendary
Activity: 2534
Merit: 1713
Top Crypto Casino
October 22, 2023, 09:52:29 PM
#32
Not sure why some people are calling it dead already.

1. While he's a core dev, he's definitely not the only dev

2. Lightning has never been perfect. But while it technically works, it's simply not ready yet. There's a reason why I never recommended it to normies yet as of yet. But, let's not forget that —

3. Software can be improved
How much impact can one core dev have on the project if he pulls out? It will probably allow for other devs to put forward different likelihoods of how to go forward. Maybe other devs can start finding workarounds or solutions. It may end up being one temporary solution to another but if it works Lightening users will not complain too much.

How many normies actively use lightening in ratio to transaction?

Lightning's fucked, but not dead. I don't see why it would be. There's just too much support for the network, and they're filled with capable devs that could take from where Riard will leave. Plus at the end of the day he's not the glue that puts everything together, long as there's people who are willing to improve upon Lightning Network cause just as what MK4 has said it's far from perfect, it will remain functional and pretty much alive. In the event that it does die, I don't think it connotes to anything other than previous efforts about Layer 2 solutions being moot.
That cannot be denied, Lightening does have a lot of support and it is used more commonly than before therefore it is going to continue. Some of the noises about it becoming a relic of the past soon are somewhat premature but they will not stop until there is improvement to show it is capable of functioning more widely.
sr. member
Activity: 2380
Merit: 366
October 22, 2023, 09:17:51 PM
#31
So can nobody on here actually explain what the issue is in plain words?

Unless someone can actually describe what the problem is its hard to tell if this is just a lone dev throwing up his hands at a problem and storming out dramatically (not the first time that will have happened in the Bitcoin world) or if its actually a serious problem for LN.

What's the attack? What does it compromise? How hard is it to do? How bad is the effect? How likely is it to occur?

I read what Antoine wrote, I didn't understand. I tried looking for a simpler explanation. Not that I understand the problem now, but at least it gave me a little idea. To a non-technical person, this is indeed hard to digest. But it seems Antoine is making it appear as if it's something too huge of a problem to successfully address. This is the impression because when I read other experts' opinions, it seems they're not really as bothered as Antoine.

Here's a simpler explanation of the problem by mononaut over twitter. This isn't everything so you may continue reading there https://twitter.com/mononautical/status/1715736832950825224.

Quote
How does a lightning replacement cycling attack work?

Imagine Bob is routing a lightning payment from Alice to Carol.

While in flight, the payment is protected by HTLC outputs in his pre-signed channel commitments with each peer.

An HTLC (Hash/Time Lock Contract) is a conditional payment from sender to receiver.

It can be spent immediately by the receiver by revealing the preimage to a hash H, or reclaimed by the sender after some timeout.

By securing the HTLC on each hop with the same hashlock, payments can be routed atomically.

Carol can't claim the outgoing HTLC without revealing the preimage, which Bob can then use to redeem the incoming HTLC from Alice.

At least that's the theory...

To ensure Bob has time to react if something goes wrong, the timelock on the outgoing HTLC expires first at some block height T.

Then the timelock on the incoming HTLC expires at some later height T+Δ, after which Alice can reclaim her money.

OK, so here's the attack:

Remember Bob has HTLCs pending in two channels.

One outgoing HTLC to Carol, which expires at block T, and one incoming HTLC from Alice, which expires at block T+Δ.

At block T, Carol still hasn't revealed the preimage to settle the payment, so Bob is forced to time it out on-chain.

He broadcasts the commitment tx to close his channel with Carol, and once it confirms sends an "htlc-timeout" tx which spends the HTLC to reclaim his funds.

Unbeknownst to Bob, Alice and Carol are colluding to steal his money.

They have prepared for the attack by broadcasting a chain of two transactions with low fees, apparently unrelated to the lightning channel, which we'll call the "cycle parent" and "cycle child".

As soon as the attackers see Bob's htlc-timeout transaction hit the mempool, they broadcast an "htlc-preimage" transaction, which spends both the HTLC output (using Carol's hash preimage) and an output from the cycle parent.

Since this htlc-preimage transaction pays a higher fee rate and spends the same inputs, it replaces both the cycle child and Bob's htlc-timeout transaction in the mempool.

If Bob sees this, he can take the preimage and use it to immediately redeem the incoming HTLC from Alice.

So the attackers broadcast a new transaction replacing the cycle parent.

The htlc-preimage depends on that for one of its inputs, so is also evicted from the mempool.

At the end of this cycle, the HTLC from Bob's channel with Carol ends up unspent, and no trace of the htlc-timeout and htlc-preimage transactions remain in the mempool.

The attackers repeat the cycle to eject Bob's htlc-timeout transaction every time he rebroadcasts it.

If they prevent it getting mined for another Δ blocks, Alice can timeout the HTLC on the other channel, and leave Bob out of pocket for the entire value of the payment.
hero member
Activity: 2240
Merit: 848
October 22, 2023, 08:58:29 PM
#30
So can nobody on here actually explain what the issue is in plain words?

Unless someone can actually describe what the problem is its hard to tell if this is just a lone dev throwing up his hands at a problem and storming out dramatically (not the first time that will have happened in the Bitcoin world) or if its actually a serious problem for LN.

What's the attack? What does it compromise? How hard is it to do? How bad is the effect? How likely is it to occur?
legendary
Activity: 3346
Merit: 3130
October 22, 2023, 03:43:37 PM
#29
Peter Todd mentioned potential fixes requiring soft forks on the mailing list - https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2023-October/022042.html

Shinobi says that the problem can be solved just with a few tweaks - https://twitter.com/brian_trollz/status/1715743794098753952

Quote from: Shinobi
Lightning is not dead, and this is getting silly as shit at this point. The solution to this issue is as simple as extending timelocks and rebroadcasting transactions regularly with a slight fee bump, or just handling pre-signed TXes in a different way.

The sky isn't falling.

It sounds like someone finds a bug and had to make some noise about it to make the devs make some changes, but as they mention "The sky isn't falling", but is a nice discovery. That guy should get a bug bounty.

We must keep in mind that if the bug is that critic then the blockchain would stop working, i mean if that guy could take all the mempool then he should do it just to test his theory. But there are some white hacks who always do the right think and report the bug before the attack.
legendary
Activity: 2422
Merit: 1451
Leading Crypto Sports Betting & Casino Platform
October 22, 2023, 03:32:13 PM
#28
Shinobi says that the problem can be solved just with a few tweaks - https://twitter.com/brian_trollz/status/1715743794098753952

Quote from: Shinobi
Lightning is not dead, and this is getting silly as shit at this point. The solution to this issue is as simple as extending timelocks and rebroadcasting transactions regularly with a slight fee bump, or just handling pre-signed TXes in a different way.

The sky isn't falling.

That does not sound "simple" at all.

Antoine Riard is a senior Lightning dev, not just some junior dev.

Higher time_lock_delta leads to longer time for locked funds. That's a tradeoff.

Rebroadcasting with higher fees: Also known as "defensive fee mitigation". I suppose that's doable to keeping spamming the mempool dozens of times until the attacker gives up. Would be a simple client update, but it introduces additional spam and client complexity.

I'm going to wait until the experienced Lightning devs test this attack and report back the costs of attacking and defending. This is beyond my level of understanding.

It sounds like they're going to look for a sustainable fix, but it'll take several months of testing and implementation. In the meantime, I would refrain from keeping high value on Lightning, like everyone should've been doing from the start.
Indeed, if this was a simple issue, why not integrate a solid base in the project you're building from the beginning? 5000 BTC locked in this system is no game.
Building on production with millions at stake doesn't sound like something bitcoin should ever be doing. How are we going to defend the labels "future of money" and "digital gold" like this? It simply makes no sense... With such serious flaws lightning should have just been a testnet beta.
Pages:
Jump to: