The under is a direct excerpt of Marty’s Bent Situation #1278: “One other LND/btcd bug emerges.” Join the publication right here.
through GitHub
For the second time in lower than a month, btcd (an alternate implementation of Bitcoin) and, by extension, LND (one of many Lightning implementations) turned incompatible with the remainder of the Bitcoin community resulting from some meddling from a developer named Burak.
On October 9, Burak accomplished a 998-0f-999 tapscript multisig transaction that btcd acknowledged as invalid whereas Bitcoin Core and different implementations (accurately) acknowledged it as legitimate. Since LND’s implementation of the Lightning Community relies on btcd, it turned incompatible with the remainder of the Lightning Community, subsequently disrupting all of their customers’ potential to transact safely. Not supreme.
Quick-forward to yesterday and Burak was again once more to disrupt btcd and LND with the kind of transaction you see above: a P2TR (pay-to-taproot) spend containing N OP_SUCCESSx with 500,001 pushes, which exceeds the restrict hardcoded into btcd. Whereas the 998-of-999 tapscript multisig transaction appeared to be an sincere mistake, yesterday’s transaction was an overt exploit within the wild by Burak.
Proof Burak knew this is able to break LND
One thing to notice about this OP_SUCCESSx transaction is that it sometimes wouldn’t be included in a block. Nonetheless, it appears that evidently Burak bribed miners by attaching a very excessive price to this transaction that F2Pool couldn’t resist.
This example has surfaced loads of debate during the last two days. Was Burak incorrect to use this bug within the wild on mainnet? Ought to he have correctly disclosed the vulnerability to btcd and LND in non-public, permitting them to patch the code earlier than the bug was exploited within the wild? Ought to LND be depending on btcd, which is an alternate implementation of Bitcoin that doesn’t get practically as near the quantity of consideration and overview that Bitcoin Core receives?
Your Uncle Marty actually doesn’t have the fitting solutions to all of those questions, but it surely’s vital for you freaks to concentrate on these items so I assumed I’d carry them to your consideration.
That is the character of open supply distributed techniques. There could possibly be loads of vulnerabilities lurking on the market and there’s no clear option to deal with the issues. Many will advocate for accountable disclosures in non-public whereas others will advocate for overt adversarial actions that pressure the difficulty. This is likely one of the trade-offs you select once you determine to decide right into a free market financial community.
