Author: Jose Manuel Arenillas 2019-01-24 18:00:51
Published on: 2019-01-24T18:00:51+00:00
A user contacted Anton Kumaigorodski to claim that he did not receive payment even though the payer was able to provide a preimage. It was found out that the user reused the same invoice which has already expired. If the invoice is fulfilled, a routing node will return a preimage right away. This incident raises concerns about QR reuse and calls for action. In response, ZmnSCPxj stated that the possession of the payment preimage is considered sufficient proof of payment, regardless of what the receiver claims. However, the reuse of payment hashes should be strongly discouraged as it can lead to theft by intermediate routing nodes. Andrea RASPITZU suggested that this should be made clear in BOLT11. Overall, there is a need to clarify the issue of payment hash reuse and its implications to prevent potential theft in the future.
Updated on: 2023-06-02T16:58:13.125885+00:00