diff options
author | Peter Todd <pete@petertodd.org> | 2023-12-20 19:48:59 +0000 |
---|---|---|
committer | bitcoindev <bitcoindev@gnusha.org> | 2023-12-20 19:49:11 +0000 |
commit | 2e7d3dd8d37d30ae19f67e8883156c2fbc220933 (patch) | |
tree | 3ac4670897aad10c0f54188be21497be54ef08e3 | |
parent | a9be0034df091f0a5ae030a90a793abe802b13eb (diff) | |
download | pi-bitcoindev-2e7d3dd8d37d30ae19f67e8883156c2fbc220933.tar.gz pi-bitcoindev-2e7d3dd8d37d30ae19f67e8883156c2fbc220933.zip |
Re: [bitcoin-dev] V3 Transactions are still vulnerable to significant tx pinning griefing attacks
-rw-r--r-- | 16/7efcfdad39334de13c035ea1a371c22888ea00 | 174 |
1 files changed, 174 insertions, 0 deletions
diff --git a/16/7efcfdad39334de13c035ea1a371c22888ea00 b/16/7efcfdad39334de13c035ea1a371c22888ea00 new file mode 100644 index 000000000..af679472f --- /dev/null +++ b/16/7efcfdad39334de13c035ea1a371c22888ea00 @@ -0,0 +1,174 @@ +Return-Path: <pete@petertodd.org> +Received: from smtp2.osuosl.org (smtp2.osuosl.org [140.211.166.133]) + by lists.linuxfoundation.org (Postfix) with ESMTP id 24C50C0037 + for <bitcoin-dev@lists.linuxfoundation.org>; + Wed, 20 Dec 2023 19:49:11 +0000 (UTC) +Received: from localhost (localhost [127.0.0.1]) + by smtp2.osuosl.org (Postfix) with ESMTP id DBD6140A74 + for <bitcoin-dev@lists.linuxfoundation.org>; + Wed, 20 Dec 2023 19:49:10 +0000 (UTC) +DKIM-Filter: OpenDKIM Filter v2.11.0 smtp2.osuosl.org DBD6140A74 +Authentication-Results: smtp2.osuosl.org; dkim=pass (2048-bit key, + unprotected) header.d=messagingengine.com header.i=@messagingengine.com + header.a=rsa-sha256 header.s=fm2 header.b=8++6EjvA +X-Virus-Scanned: amavisd-new at osuosl.org +X-Spam-Flag: NO +X-Spam-Score: -2.6 +X-Spam-Level: +X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 + tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, + RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, + RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] + autolearn=ham autolearn_force=no +Received: from smtp2.osuosl.org ([127.0.0.1]) + by localhost (smtp2.osuosl.org [127.0.0.1]) (amavisd-new, port 10024) + with ESMTP id z1sNiEdZurba + for <bitcoin-dev@lists.linuxfoundation.org>; + Wed, 20 Dec 2023 19:49:09 +0000 (UTC) +Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com + [66.111.4.28]) + by smtp2.osuosl.org (Postfix) with ESMTPS id 0E0BE41767 + for <bitcoin-dev@lists.linuxfoundation.org>; + Wed, 20 Dec 2023 19:49:08 +0000 (UTC) +DKIM-Filter: OpenDKIM Filter v2.11.0 smtp2.osuosl.org 0E0BE41767 +Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) + by mailout.nyi.internal (Postfix) with ESMTP id 17B895C05A2; + Wed, 20 Dec 2023 14:49:03 -0500 (EST) +Received: from mailfrontend2 ([10.202.2.163]) + by compute3.internal (MEProxy); Wed, 20 Dec 2023 14:49:03 -0500 +DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= + messagingengine.com; h=cc:cc:content-type:content-type:date:date + :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to + :message-id:mime-version:references:reply-to:subject:subject:to + :to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= + fm2; t=1703101743; x=1703188143; bh=pL2gT2bmjxfbng5o2gYstIAh+hYh + 1CDnkA1TB2XJqBo=; b=8++6EjvAfLxRmPO46QW0vjXD2xI2Jac6D9kjnnyGQ3Vv + oX0OCZ+mRfVrLqmhGShoON+XZ+gHf/5IdI4x2UxPwzM/ekC38PIs0MLwvEki1TkQ + ISv87pXSXm8Ge71YzSffDqDkRs4EWSHEc180Qw3EZTZndMx4OocbX5p2DMBTwBON + Wzv9b8W27H49uiBADpwNVkQatb0eaJjimixqQk8EnnvgtJxbML1DHWKv57w6r5Hh + fYd5iJMf588y5LiNuqq0msr+lY0B4+jY49lac8N/FF8ICCIklIvGJFmJ8qfy4Jmy + 8gmbx8dnI/pT9PE1V/ffndVJMAqRmerkWi/K/ZwafQ== +X-ME-Sender: <xms:LkWDZcrO1jA9iC3pEUzaFhXjNVQP8VsV7hk3hZj4Yz3IPVh9ktiWCA> + <xme:LkWDZSqkbd-Q7GlIMzPmphoXfdgGNFKJnwwZN0TIS6jKGdeZ2pJg2gD2xahimPLRS + h47cfbZcLkIScc6Ox0> +X-ME-Received: <xmr:LkWDZRP6RF2kI-5r42BByeoftzTRpKkd_-KRNuisMl77ROvR9gfDb0yXNQ> +X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvkedrvdduvddgudeftdcutefuodetggdotefrod + ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh + necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd + enucfjughrpeffhffvvefukfhfgggtuggjsehgtderredttddvnecuhfhrohhmpefrvght + vghrucfvohguugcuoehpvghtvgesphgvthgvrhhtohguugdrohhrgheqnecuggftrfgrth + htvghrnhepledvleelffdtudekudffjefgfeejueehieelfedtgfetudetgeegveeutefh + jedtnecuffhomhgrihhnpehpvghtvghrthhouggurdhorhhgnecuvehluhhsthgvrhfuih + iivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepphgvthgvsehpvghtvghrthhouggu + rdhorhhg +X-ME-Proxy: <xmx:LkWDZT74cvc0xvM6eugMHR2Vw_Kx2Csqw4lKBA23xNsWvi3g9wVdHg> + <xmx:LkWDZb4qZ4D_T7Ex_sU06lrjFZx28JGYbDoOaSppZpPNnlOk174Jsg> + <xmx:LkWDZTiDYgjH7aaR1RD1lQTu14HvGQXJ5YvDrKdSzxZibg8oXOMGGQ> + <xmx:L0WDZdkX8-hT9HzYO_2LekehKJmc3rXCKNf_i3uJSb9xX1rGWNmyjw> +Feedback-ID: i525146e8:Fastmail +Received: by mail.messagingengine.com (Postfix) with ESMTPA; Wed, + 20 Dec 2023 14:49:02 -0500 (EST) +Received: by localhost (Postfix, from userid 1000) + id 9B97B5F84E; Wed, 20 Dec 2023 19:48:59 +0000 (UTC) +Date: Wed, 20 Dec 2023 19:48:59 +0000 +From: Peter Todd <pete@petertodd.org> +To: Gloria Zhao <gloriajzhao@gmail.com> +Message-ID: <ZYNFK5V5e9PnT9eL@petertodd.org> +References: <ZYMhEJ3y11tnDOAx@petertodd.org> + <CAFXO6=KS05So_5FizLJxCLEPwBxNPV9Wrgi=9sjzmrZ+PLpLOQ@mail.gmail.com> +MIME-Version: 1.0 +Content-Type: multipart/signed; micalg=pgp-sha512; + protocol="application/pgp-signature"; boundary="eHvNDj2GtvZ+LdUw" +Content-Disposition: inline +In-Reply-To: <CAFXO6=KS05So_5FizLJxCLEPwBxNPV9Wrgi=9sjzmrZ+PLpLOQ@mail.gmail.com> +Cc: Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org> +Subject: Re: [bitcoin-dev] V3 Transactions are still vulnerable to + significant tx pinning griefing attacks +X-BeenThere: bitcoin-dev@lists.linuxfoundation.org +X-Mailman-Version: 2.1.15 +Precedence: list +List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org> +List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>, + <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe> +List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/> +List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org> +List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help> +List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>, + <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe> +X-List-Received-Date: Wed, 20 Dec 2023 19:49:11 -0000 + + +--eHvNDj2GtvZ+LdUw +Content-Type: text/plain; charset=us-ascii +Content-Disposition: inline +Content-Transfer-Encoding: quoted-printable + +On Wed, Dec 20, 2023 at 07:13:22PM +0000, Gloria Zhao wrote: +> The "damage" of the pin can quantified by the extra fees Alice has to pay. +>=20 +> For a v3 transaction, Mallory can attach 1000vB at 80sat/vB. This can +> increase the cost of replacement to 80,000sat. +> For a non-v3 transaction, Mallory can attach (101KvB - N) before maxing o= +ut +> the descendant limit. +> Rule #4 is pretty negligible here, but since you've already specified +> Alice's child as 152vB, she'll need to pay Rule #3 + 152sats for a +> replacement. +>=20 +> Let's say N is 1000vB. AFAIK commitment transactions aren't usually small= +er +> than this: + +You make a good point that the commitment transaction also needs to be incl= +uded +in my calculations. But you are incorrect about the size of them. + +With taproot and ephemeral anchors, a typical commitment transaction would = +have +a single-sig input (musig), two taproot outputs, and an ephemeral anchor +output. Such a transaction is only 162vB, much less than 1000vB. + +In my experience, only a minority of commitment transactions that get mined +have HTLCs outstanding; even if there is an HTLC outstanding, that only get= +s us +up to 206vB. + +> > Mallory can improve the efficiency of his griefing attack by attacking +> multiple +> > targets at once. Assuming Mallory uses 1 taproot input and 1 taproot +> output for +> > his own funds, he can spend 21 ephemeral anchors in a single 1000vB +> > transaction. +>=20 +> Note that v3 does not allow more than 1 unconfirmed parent per tx. + +Ah, pity, I had misremembered that restriction as being removed, as that is= + a +potentially significant improvement in scenarios where you need to do things +like deal with a bunch of force closes at once. + +--=20 +https://petertodd.org 'peter'[:-1]@petertodd.org + +--eHvNDj2GtvZ+LdUw +Content-Type: application/pgp-signature; name="signature.asc" + +-----BEGIN PGP SIGNATURE----- + +iQIzBAEBCgAdFiEE0RcYcKRzsEwFZ3N5Lly11TVRLzcFAmWDRSkACgkQLly11TVR +LzenvBAAlZo/mBduMLIqCcUC0ryGerwPgSVfT6oOWh5La0XVwIjnQTPqxK6pR+x6 +WNenlGlWtrPx4Prl+pgsSeCrzL/VNw8bpVjT3AotkQ4yB0ln63yG1sgysLGQ2KdF +3W+fNiQMLijgz06L7MVf72qBtpYa3swt9zWQgdMVTpc8La5CnWXbBIRbe2joRtTK +eO3aakFWMr+2HDC6/CrhmA+SdytRLSC1vhEJoamRMfF8wdnkcGULq1oQhqDEYCcf +DQapf6dYPVVxvmINnrCK+nXeRMcr0amJH0q94H821Njtohp4f2hQbcAKh8/FxZ5d +13clUl2UzChdIp96ACdzO26RpOcv7fTYTdXuLEJmOv4mNWxnfD7AkoEteZ0wy/bX +ZEtzS5r53pTbgvFS5PtGsT1qpzmIqqTwl6LATDB046F4creumV8+l5NWnPJMz3vh +X4o7MnC7SnkRLIyhTcd27GYhukCEvX1MCWeSIVGQopkHld/dWT1LpLpxDVfIWaKM +5ZcA2tL8nHOY5Y2L9Z75xikpR18nv2KTaGTjuk8fudKV0KTPKhgK3LFhd1Ikfkwe +z81Zj10nCWHbJkre+GTCcpdA0w83R0stA/hMXe22LY4/y8d0odvBfhwCtEW+4vpe +/cAFwguQHzQyKER9jXwkZg29lo88Dm++1Zq2KJeGL1J3d7PXUsw= +=WdHc +-----END PGP SIGNATURE----- + +--eHvNDj2GtvZ+LdUw-- + |