Skip to content

bolt12: Add test vector for missing offer_amount with offer_currency #1279

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

bolt12: Add test vector for missing offer_amount with offer_currency #1279

wants to merge 1 commit into from

Conversation

@erickcestari
Copy link
Contributor

During differential fuzzing between C-lightning and rust-lightning, discovered that C-lightning incorrectly accepts offers with offer_currency set but offer_amount missing, while rust-lightning rejects them.

The BOLT 12 specification states in "Requirements For Offers":

if offer_currency is set and offer_amount is not set:

  • MUST NOT respond to the offer.

This pr adds a test vector for the invalid offer:
lno1qcp4256ypgx9getnwss8vetrw3hhyuckyypwa3eyt44h6txtxquqh7lz5djge4afgfjn7k4rgrkuag0jsd5xvxg

Which contains CURRENCY=USD but no amount field, and should be rejected by all compliant implementations.

I got this test vector from:
https://github.com/ElementsProject/lightning/blob/c3362b057c2174589024254f4cab9eb8d955a26f/common/test/run-bolt12-encode-test.c#L439

@erickcestari
bolt12: Add test vector for missing offer_amount with offer_currency
96938ce 
Adds a test case to verify that offers with offer_currency set but
offer_amount missing are correctly rejected, as required by BOLT 12
specification section "Requirements For Offers":

"if `offer_currency` is set and `offer_amount` is not set:
 - MUST NOT respond to the offer."
@thomash-acinq thomash-acinq mentioned this pull request Aug 18, 2025
Merged
@thomash-acinq
Copy link

Thanks.
Eclair too fails this test, I've fixed it in ACINQ/eclair#3140.

t-bast
t-bast approved these changes Aug 19, 2025
View reviewed changes
Copy link
Collaborator

@t-bast t-bast left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ACK 96938ce

thomash-acinq added a commit to ACINQ/eclair that referenced this pull request Aug 19, 2025
@thomash-acinq
Offers with currency must set amount. (#3140)
b651e5b 
Adds check and corresponding test from lightning/bolts#1279
@t-bast
Copy link
Collaborator

t-bast commented Sep 17, 2025

@rustyrussell could you fix this on the cln side and verify this test vector?

@t-bast t-bast mentioned this pull request Sep 17, 2025
Closed
24 tasks
vincenzopalazzo
vincenzopalazzo approved these changes Sep 22, 2025
View reviewed changes
Copy link
Contributor

@vincenzopalazzo vincenzopalazzo left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ACK 96938ce

@t-bast t-bast mentioned this pull request Oct 1, 2025
Open
24 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@t-bast t-bast t-bast approved these changes

+1 more reviewer

@vincenzopalazzo vincenzopalazzo vincenzopalazzo approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@erickcestari @thomash-acinq @t-bast @vincenzopalazzo