Recent episodes
Bitcoin Optech: Newsletter #405 Recap
- BIP proposal for UTXO set sharing over P2P: Fabian discussed a draft BIP to enable nodes to receive UTXO snapshots from peers rather than downloading from external sources, improving the AssumeUTXO feature for faster node bootstrap. - Bitcoin Core CVE-2024-52911 disclosure: A use-after-free vulnerability affecting versions 0.14–28 was disclosed. The bug allowed crafted invalid blocks to crash nodes; exploitation required valid proof-of-work but would not propagate on the network. - AssumeUTXO adoption and trust model debate: Discussion centered on whether AssumeUTXO is suitable for resource-constrained users. Supporters emphasize its value for nodes with limited bandwidth or hardware; critics argue it introduces unacceptable trust assumptions. - Core Lightning 26.06 RC1 release: New features include graceful shutdown RPC, send_amount RPC for invoice payment with routing fees specified upfront, and experimental Bolt 12 payer-proof support. - BIP 323 (24-bit version field extra nonce space): Proposal to use version field bits for additional entropy in block mining, reducing or eliminating the need for timestamp rolling and allowing significantly more block candidates per second. - BIP 322 message signing completion: Updated generic message signing format now supports all UTXO types with proof-of-funds construction, PSBT support, and moved to complete status for ecosystem adoption.
Bitcoin Optech: Newsletter #404 Recap
- Node fingerprinting via dual-homed networks: Researchers can correlate Bitcoin node identities across different networks (Tor/IPv4) by analyzing address gossip responses and their timestamps. Five potential mitigation approaches are being evaluated, including fuzzing timestamps, network-specific timestamp handling, and making older addresses appear older. - Just-in-time (JIT) Lightning channels and trust model: Current JIT channels require either client or server trust, creating centralization pressure. Thomas Voegtlin proposes using blockchain-published preimages as fraud proofs to reduce trust requirements and enable decentralized Lightning Service Providers. - Public fraud proofs for JIT channels: A three-part fraud proof consists of LSP commitment to channel funding with specific UTXOs, client publishing the HTLC preimage on-chain before a deadline, and proof of UTXO double-spending. Fraud detection infrastructure via Nostr is proposed. - PSBT version 2 support in Bitcoin Core: After five years in development, Bitcoin Core now defaults to creating PSBT v2 (BIP-370) while maintaining backward compatibility. PSBT v2 improves modularity for multiparty transactions by eliminating redundant transaction duplication. - Multiple Lightning protocol upgrades: Eclair and other implementations now support simple Taproot channels and official splicing protocol from Bolt specifications. LDK adds reserve checks for zero-fee commitment channels to prevent issues during simultaneous force closes. - Dust UTXO disposal standard (BIP-451): A new specification enables safe disposal of unwanted dust UTXOs by spending them to zero-value OP_RETURN outputs, with sighash ANYONECANPAY allowing batching of multiple dust disposal transactions.