Bitcoin Optech #148: A Security Disclosure Affecting Protocols

Bitcoin Optech #148: A Security Disclosure Affecting Protocols
фото показано с : bitcoinmagazine.com

2021-5-13 20:11

This week’s newsletter covers a security disclosure, a summary of a Bitcoin Core PR Review Club meeting and more.

The Bitcoin Optech newsletter provides readers with a top-level summary of the most important technical news happening in Bitcoin, along with resources that help them learn more. To help our readers stay up-to-date with Bitcoin, we're republishing the latest issue of this newsletter below. Remember to subscribe to receive this content straight to your inbox.

This week’s newsletter describes a security disclosure affecting protocols depending on a certain BIP125 opt-in replace by fee behavior and includes our regular sections with the summary of a Bitcoin Core PR Review Club meeting, announcements of new software releases and release candidates, and descriptions of notable changes to popular Bitcoin infrastructure software.

NewsCVE-2021-31876 discrepancy between BIP125 and Bitcoin Core implementation: the BIP125 specification of opt-in Replace By Fee (RBF) says that an unconfirmed parent transaction that signals replaceability makes any child transactions that spend the parent’s outputs also replaceable through inferred inheritance. This week, Antoine Riard posted to the Bitcoin-Dev mailing list the full disclosure of his previously privately reported finding that Bitcoin Core does not implement this behavior. It is still possible for child transactions to be replaced if they explicitly signal replaceability or for them to be evicted from the mempool if their parent transaction is replaced.
Riard analyzed how the inability to use inherited replaceability might affect various current and proposed protocols. Only LN appears to be affected and only in the sense that an existing attack (see Newsletter #95) that uses pinning becomes cheaper. The ongoing deployment of anchor outputs by various LN implementations will eliminate the ability to perform that pinning.
As of this writing, there has not been any substantial discussion of the issue on the mailing list.Call for Brink grant applications: Bitcoin Optech encourages any engineer contributing to open source Bitcoin or Lightning projects to apply for a Brink grant before the application deadline on May 17th. Initial grants are one year long and allow developers to work full time on open source projects from anywhere in the world.Bitcoin Core PR Review Club

In this monthly section, we summarize a recent Bitcoin Core PR Review Club meeting, highlighting some of the important questions and answers. Click on a question below to see a summary of the answer from the meeting.

Introduce node rebroadcast module is a PR (#21061) by Amiti Uttarwar that continues work on the rebroadcast project (see Newsletters #64, #96, #129 and #142), previously discussed in review clubs #16698 and #18038, whose goal is to make node rebroadcast behavior for wallet transactions indistinguishable from that of other peers’ transactions.

The review club discussion focused on current transaction behavior and the proposed changes:

Why might we want to rebroadcast a transaction? When our transaction didn’t propagate (perhaps our node was offline) or appears to have been dropped by other nodes’ mempools in the network.

Why does a node drop a transaction from its mempool? Apart from being included in a block, a transaction can expire after 14 days, be squeezed out of a node’s limited mempool size (default size 300 MiB) by higher-fee transactions, be replaced via BIP125 opt-in Replace-By-Fee (RBF), be removed if a conflicting transaction is included in a block, or be included in a block that is later reorged out (in which case the node will try to re-add it while updating the mempool to be consistent again after the reorg).

What could be an issue with the current behavior of each wallet being responsible for rebroadcasting its own transactions?
This can be a privacy leak that allows linking the IP address to the wallet address, as under the current rebroadcasting behavior, a node that broadcasts a transaction more than once is essentially announcing that the transaction is from its wallet.

When might a miner exclude a transaction that is in our mempool? When the miner deprioritized it for having a low fee, didn’t see it yet, removed it from its mempool by RBF, censored it, or mined an empty block.

When might a miner include a transaction that is not in our mempool? When the miner manually prioritized the transaction (e.g. as a commercial service), received it before our node, or the transaction conflicted with another one in our mempool but not in theirs.

How would the proposal under review decide which transactions to rebroadcast?
Once per new block, it proposes to rebroadcast transactions above an estimated feerate that are at least 30 minutes old, have been rebroadcast no more than 6 times and not more recently than 4 hours ago, with up to 3/4 of the transactions that fit the block.

Why might we want to keep a transaction in our rebroadcast attempt tracker even after it has been removed from our mempool?
After a consensus rule change, there can be non-updated nodes on the network rebroadcasting transactions that don’t meet the new consensus rules. Keeping transactions in the rebroadcast attempt tracker would avoid these nodes rebroadcasting them too many times (a maximum of 6 times over 90 days) and allow the transactions to expire.

When would we remove a transaction from our rebroadcast attempt tracker? When the transaction is confirmed, RBFed, or conflicts with another transaction included in a block.

How would the estimated minimum feerate for rebroadcast be calculated? Why not use the lowest feerate in the last mined block?
The rebroadcast feerate floor would be estimated once a minute by assembling a block from the mempool to simulate inclusion in the next mined block. This approach is better than using the lowest feerate of the last mined block because it calculates fees based on the immediate future in a changing environment instead of based on the past.Releases and release candidates

New releases and release candidates for popular Bitcoin infrastructure projects. Please consider upgrading to new releases or helping to test release candidates.

Rust-Lightning 0.0.14 is a new release that makes Rust Lightning more compatible with getting data from Electrum-style servers, adds additional configuration options, and improves compliance with the LN specification, among other bug fixes and improvements.Notable code and documentation changes

Notable changes this week in Bitcoin Core, C-Lightning, Eclair, LND, Rust-Lightning, libsecp256k1, Hardware Wallet Interface (HWI), Rust Bitcoin, BTCPay Server, Bitcoin Improvement Proposals (BIPs), and Lightning BOLTs.

Bitcoin Core #20867 increases the number of keys that can be included in multisig descriptors and used in the addmultisigaddress and createmultisig RPCs from 16 to 20. The increased limit can only be used in P2WSH outputs. P2SH outputs are limited to 520 byte scripts which are only large enough to hold 15 compressed public keys.Bitcoin Core GUI #125 enables users to adjust the autoprune block space size from the default in the intro dialog. It also adds an improved description for how the pruned storage works, clarifying that the entire blockchain must be downloaded and processed but will be discarded in the future to keep disk usage low.C-Lightning #4489 adds a funder plugin for configuring dual-funding contribution behavior in response to incoming channel open requests. Users will be able to specify a general contribution policy (percent match, percent available funds, or fixed contribution), a wallet reserve amount under which no dual-funding contributions will happen, a maximum contribution amount for any single channel open request, and more.
This PR represents the last step in enabling experimental dual-funding support between C-Lightning nodes. The interactive transaction construction and channel establishment v2 protocols arising out of this work is still being standardized in the open BOLTs #851 PR.C-Lightning #4496 adds the ability for plugins to register topics about which they plan to publish notifications. Other plugins can subscribe to those topics to receive notifications. C-Lightning already had several built-in topics, but this merged PR allows plugin authors to create and consume notifications for any new topic category they’d like to use.Rust Bitcoin #589 starts the process of implementing support for taproot with schnorr signatures. The existing ECDSA support is moved to a new module but continues to be exported under existing names to preserve API compatibility. A new util::schnorr module adds support for BIP340 schnorr key encodings. Issue #588 is being used to track the complete implementation of taproot compatibility.

Find the original post here.

Please subscribe to the Bitcoin Optech newsletter directly to receive this content straight to your inbox every month.

Similar to Notcoin - Blum - Airdrops In 2024

origin »

Bitcoin (BTC) на Currencies.ru

$ 76623.44 (+0.32%)
Объем 24H $65.858b
Изменеия 24h: 2.40 %, 7d: 9.17 %
Cегодня L: $74544.69 - H: $76623.44
Капитализация $1515.542b Rank 1
Цена в час новости $ 50184.32 (52.68%)

disclosure security bitcoin core review meeting club

disclosure security → Результатов: 36


Фото:

The Most Reliable Bitcoin Mixer BitMix.Biz – Your Fast Crypto Security in 2020

The one who called himself Satoshi Nakomoto, created cryptocurrency so that anyone can keep their financial life untouchable and protected from the interference of others. However, requirements of customer disclosure put these principles at risk and ordinary users under threat of theft, extortion, and even kidnapping by bandits.

2020-6-1 14:00


Фото:

Microsoft’s open-source election software now has a bug bounty program

Microsoft has announced a bug bounty program for its open-source election software ElectionGuard, allowing researchers to uncover vulnerabilities and help bolster election security. Available as a software development kit (SDK), ElectionGuard aims to make voting tamper-proof by leveraging encryption to “enable a new era of secure, verifiable voting.

2019-10-21 09:04


Фото:

Bitcoin’s Lightning Network has security vulnerabilities that could cause loss of funds

Security vulnerabilities have been discovered in “various” Bitcoin Lightning Network projects that have potential to cause users to lose their cryptocurrency. Those running Lightning Network nodes have been advised to upgrade their clients as soon as possible, including those related to popular wallet solution Eclair.

2019-8-30 14:47


Фото:

Apple steps in to automatically remove Zoom’s risky software from Macs

Apple has pushed a silent update to Mac users to remove the web server sneakily installed by popular video conference app Zoom, TechCrunch reports. Earlier this week, a disclosure by security researcher Jonathan Leitschuh revealed how Zoom installed a secret local web server on Mac devices — with an intent to save an extra click — but left users vulnerable by making it possible for an attacker to hijack their webcams.

2019-7-11 08:41


Фото:

Steam vulnerability exposed users to account hijacking and malware

A vulnerability in Valve‘s Steam platform made it possible for malicious actors to take over user accounts, pilfer their items, and even infect their systems with additional malware. The security kink resided in Steam‘s server browser functionality – which lets players look up severs for a number of games (including hit titles like CS:GO, Half-Life 2, and Team Fortress 2) – according to a HackerOne vulnerability disclosure made public on March 15.

2019-3-21 19:42


Фото:

Aboveboard Founder Claims ‘Nobody Is Buying’ STOs

Andy Singleton, the founder of securities exchanges Aboveboard, has published an article asserting that the security token offering (STO) market is “lifeless. ” While Singleton acknowledges the efficiency savings facilitated by the introduction of distributed ledger technology to the securities industry, he argues that current offerings are plagued by poor liquidity and inadequate disclosure,.

2019-2-21 07:30


$275 Million ZCash’s Fix of Deadly ‘Infinite Counterfeit’ Vulnerability Earns Praise from Edward Snowden

According to a disclosure made Tuesday by the development team behind ZCash, the most highly capitalized privacy-focused cryptocurrency (with a market cap in excess of $270M at the time of publication), has secretly fixed a critical security flaw in ZCash’s design, which was discovered by ZCash cryptographer, Ariel Gabizon, about a year ago.

2019-2-7 11:15


Фото:

Security Researchers Reveal Wallet Vulnerabilities On Stage at 35C3

In a demonstration titled “Wallet. fail,” a team of security researchers hacked into the Trezor One, Ledger Blue and Ledger Nano S. Unfortunately, it appears as if their findings were first put on display at the 35th Chaos Communication Congress (35C3) in Leipzig, Germany, rather than through accepted Responsible Disclosure practices, which would have allowed the manufacturers to patch the vulnerabilities and protect their customers from any potential attack.

2019-1-1 19:15


Blockchain App Factory Expands Offerings Into ICO’s and STOs

India-based Blockchain App Factory has announced the expansion of its offerings, releasing their new Security Token and White-label Exchange Development services. Disclosure: This is a Sponsored Article Blockchain App Factory details The project already caters to over 25 clients within the blockchain space including companies like Li & Fung, an almost 120 year-old global supply […] The post Blockchain App Factory Expands Offerings Into ICO’s and STOs appeared first on NullTX.

2018-9-16 17:30


Trade.io Rolls Out Security Systems In Anticipation For Upcoming Crypto Exchange

Trade.io has announced the employment of a world-class security officer alongside a trained team with the intention of enhancing their cybersecurity robustness. Disclosure: This is a Sponsored Article Strong security controls were in place for their token sale, allowing the system to fend off numerous cyber attacks and attempted hacks on both the website and […]

2018-7-3 16:30


Decentralized Crypto Exchange Trade.io Starts Promotional Campaign With a $100,000 Luxury World Tour as Prize

Trade.io is a crypto exchange that has been designed to provide an efficient, fair and safe marketplace for the trading of digital crypto assets. Based on blockchain, the platform banks on the immensely high speed, security and low cost of operations to provide services that outpace even the best exchanges today. Disclosure: This is a […]

2018-6-29 16:30