Skip to content

[feature]: Make payment address mandatory #9700

New issue
New issue
Open
Feature
#9702
Open
[feature]: Make payment address mandatory#9700
Feature
#9702
Assignees
erickcestari
Labels
enhancementImprovements to existing features / behaviour
Milestone
 
v0.20.0
@erickcestari

Description

@erickcestari
erickcestari
opened on Apr 10, 2025

Is your feature request related to a problem? Please describe.
Currently, LND only requires the payment secret (s field) for BOLT11 invoice writers but not for readers. This creates an inconsistency with the updated Lightning Network specifications where the payment secret is now mandatory for both writing and reading.

Describe the solution you'd like
Update LND to make the payment secret (s field) mandatory when reading/processing BOLT11 invoices. Specifically:

  1. Modify the invoice validation logic to reject invoices that lack a payment secret field
  2. Remove any code that allows skipping s fields with incorrect length
  3. Update relevant tests to ensure invoices without payment secrets are properly rejected
  4. Update LND's feature bit handling to treat payment_secret as ASSUMED (per BOLT 9 changes)

Additional context
This change aligns with recent updates to the BOLT11 specifications where the payment secret field (s) is now mandatory for both writers and readers. The change is motivated by privacy improvements - payment secrets prevent intermediate nodes from probing for the destination by generating their own payment onions.

Other implementations like LDK have already implemented this requirement by refusing to pay invoices missing a payment secret. Since it has been approximately 4 years since the writer-side requirement was introduced, and all modern implementations now include payment secrets in their invoices, this change represents the formalization of existing best practices.

The BOLT 9 specification has also been updated to change the payment_secret feature to ASSUMED status, reflecting that this is now considered a core part of the Lightning Network protocol rather than an optional feature.

Related changes in the BOLT specifications (lightning/bolts#1242):

  • Added requirement for readers to fail payment if the s field is missing
  • Removed requirement to skip 's' fields with incorrect length
  • Added test vectors for invalid invoices missing the s field
  • Changed the payment_secret feature to ASSUMED in BOLT 9

Metadata

Metadata

Assignees

Labels

enhancementImprovements to existing features / behaviour

Type

Projects

lnd v0.20

Status

In progress

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions