73071be742
|
||
|---|---|---|
| data | ||
| scripts | ||
| setup | ||
| .gitignore | ||
| README.md | ||
README.md
Attackathon
Let's break lightning!
Task
In this attackathon, your task will be to write a program that performs a channel jamming attack against a test lightning network.
You will be required to write a program that performs a jamming attack against a node in the test network. Your goal is to completely jam all of the node's channels for an hour.
Your program should:
- Accept the following parameters:
- LND configuration details (parameters TODO)
- Target node public key
- Write an attack against the hybrid approach to jamming mitigations which is deployed on the network*.
- Open any channels required to perform the attack, and close them when the attack has competed.
APIS to note:
- AddHoldInvoice provides more granular control over HTLC
- We are running a fork of LND which surfaces endorsement signalling on ??? api. (TODO - check sendtoroute)
- Note that endorsement signaling and reputation tracking are fully deployed on the test network, but unconditional fees are not. You should assume that they will be 1% of your success-case fees, and we will account for them during attack analysis.
Network
The attack you develop will be tested against a warnet running a network of LND nodes that have the jamming attack mitigation implemented (via an external tool called circuitbreaker).
Some relevant characteristics of the network:
- The reputation system has been primed with historical forwarding data, so nodes in the network have already had a chance to build up reputation before the attack begins.
- The graph was obtained by reducing the mainnet graph using a random walk around our target node, and real-world routing policies are used.
- When you run the attack, the non-malicious nodes in the network will be executing randomly generated payments to mimic an active network.
To assist with local development, we've provided a test network that can be used to run your attacks against. Please follow the instructions here to set it up!
We're trying to break channel jamming mitigations, not our setup itself so please be a good sport and let us know if there's anything buggy! Real attackers won't be able to take advantage of our test setup, so neither should we.
Deliverables
TODO: warnet scenario + docker image
Assessment
Attacks will be assessed using the following measures:
- Did the attacker successfully occupy the resources of the targeted node such that it could not process honest payments?
- What was the total cost of the attack, considering:
- On-chain fees: for channel opens and closes, sending funds between nodes on-chain will node be included for simplicity's sake.
- Off-chain fees: the sum of fees paid for successful off-chain payments plus 1% of the success-case fees for all payments that are sent to represent unconditional fees.
- Opportunity cost of capital: for each channel that is opened, 5% p.a. charged on the total capital deployed in the channels, assuming 10 minute blocks.
Setup
Participants do not need to read the following section, it contains instructions on how to setup a warnet network to run the attackathon on.
Setup Instructions
Payment Bootstrap
To run a realistic attackathon, nodes in the network need to be bootstrapped with payment history to build up their reputation scores for honest nodes in the network. We're interested in bootstrapping 6 months of data (as this is the duration we look at in the proposal), so we need to simulate and insert that data (rather than leave a warnet running for 6 months / try to mess with time).
The steps for payment bootstrapping are:
- Select desired topology for attackathon
- Run SimLN in
sim_networkmode to generate fake payment data for the network with simulation time (not real time). - Convert simulation timestamps to real dates.
- Run warnet with the same topology, and import data via Circuitbreaker
1. Choose Topology
SimLN requires a description of the desired topology to generate data.
The lnd_to_simln.py script can be used to
convert the output of LND's describegraph command to a simulation
file for SimLN. This utility is useful when simulating a reduced
version of the mainnet graph, as you'll already have the data in this
format.
To convert LND's graph (graph.json) to a sim_graph.json for SimLN:
python setup/lnd_to_simln.py graph.json
To prepare a SimLN file that can be used to generate data for warnet, the script will perform the following operations:
- Reformat the graph file to the input format that SimLN requires
- Replace short channel ids with deterministically generated short
channel ids:
- Block height = 300 + index of channel in json
- Transaction index = 1
- Output index = 0
- Set an alias for each node equal to their index in the list of nodes provided in the original graph file.
The script will output a json file with the same name as the input file,
with a simln.json suffix added in the current directory.
2. Run SimLN to Generate Data
Next, run SimLN with the generated simulation file setting the total
time flag to the amount of time that you'd like to generate data for:
sim-cli --sim-file={path to sim_graph.json} --total-time=1.577e+7
When the simulator has finished generating data in its simulated
network, the output will be available in results/htlc_forwards.csv.
This file contains a record of every forward that the network has
processed during the period provided.
3. Convert Simulation Timestamps
For the attackathon, we want nodes to have recent timestamps so that
honest peers reputation is up to date. This means that we'll always
need to progress the timestamps in htlc_forwards.csv to the present
before running the attackathon warnet. Note that the payment activity
can be pre-generated, but this "fast fowwarding" must be done at the
time the warnet is spun up (or future dated to a known start time).
To progress the timestamps in your generated data such that the latest timestamp reported by the simulation is set to the present (and all others are appropriately "fast-forwarded"), use the following command:
python setup/progress_timestamps.py htlc_forwards.csv
It will output htlc_forwards_timewarp.csv which has the updated
forwarding data.
4. Circuitbreaker Images
For the first iteration of the attackathon, the htlc_forwards.csv
file is built into the circuitbreaker image for bootstrapping. This
means that you must rebuild the image each time you want to update
the network/payment activity.
To build the container:
TODO
5. Run warnet
- Install Warnet
git clone https://github.com/bitcoin-dev-project/warnet
git checkout XYZ <- we'll have a hackathon branch w/ stuff?
python3 -m venv .venv # Use alternative venv manager if desired
source .venv/bin/activate
pip install --upgrade pip
pip install -e .
If you run into problems, check the installation instructions as this doc may be outdated!
- Start your warnet
Warnet operates with a server and a cli, so you'll need to start the
server:
warnet
And then use warcli to bring up your network:
warcli network up test/data/attackathon_100.graphml
- Setup lightning channels
To setup your network, run the channel setup "scenario": `warcli scenario run ln_init'
This may take a while, because it opens up one channel per block and waits for gossip to be fully synced. You must wait for this to complete before proceeding to the next step!
- Setup sim-ln
While you're attempting to attack warnet, the other nodes in the network will be randomly sending payments amongst themselves to mimic an active network. You'll need to setup sim-ln, provide it with access to your wanet's credentials and run it.
git clone https://github.com/bitcoin-dev-project/sim-ln
cargo install --locked --path sim-cli
warcli network export -> {warnet path}
sim-cli --sim-file {warnet path}/sim.json