From c3fe3f2a7730554b42071968f0e3c2c636b26f7b Mon Sep 17 00:00:00 2001 From: t-bast Date: Mon, 12 May 2025 17:47:49 +0200 Subject: [PATCH 1/2] Increase default revocation timeout We increase the delay after which we disconnect peers that don't send their revocation (which can indicate malicious behavior or a known lnd bug). The previous 20 seconds delay was too aggressive for Tor nodes, or nodes that have large blocking file backups. Fixes #3081 --- eclair-core/src/main/resources/reference.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/eclair-core/src/main/resources/reference.conf b/eclair-core/src/main/resources/reference.conf index a58d0cc735..0d23b7e560 100644 --- a/eclair-core/src/main/resources/reference.conf +++ b/eclair-core/src/main/resources/reference.conf @@ -166,7 +166,7 @@ eclair { // (with the default behavior, it would "only" cause a local force-close of the channel). unhandled-exception-strategy = "local-close" // local-close or stop - revocation-timeout = 20 seconds // after sending a commit_sig, we will wait for at most that duration before disconnecting + revocation-timeout = 60 seconds // after sending a commit_sig, we will wait for at most that duration before disconnecting channel-open-limits { max-pending-channels-per-peer = 3 // maximum number of pending channels we will accept from a given peer From 41de6fea9d3cc82996b0c2354334d1735c22d075 Mon Sep 17 00:00:00 2001 From: t-bast Date: Tue, 13 May 2025 09:12:09 +0200 Subject: [PATCH 2/2] fixup! Increase default revocation timeout --- eclair-core/src/main/resources/reference.conf | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/eclair-core/src/main/resources/reference.conf b/eclair-core/src/main/resources/reference.conf index 0d23b7e560..e241ad42c9 100644 --- a/eclair-core/src/main/resources/reference.conf +++ b/eclair-core/src/main/resources/reference.conf @@ -374,10 +374,10 @@ eclair { } peer-connection { - auth-timeout = 15 seconds // will disconnect if connection authentication doesn't happen within that timeframe - init-timeout = 15 seconds // will disconnect if initialization doesn't happen within that timeframe + auth-timeout = 30 seconds // will disconnect if connection authentication doesn't happen within that timeframe + init-timeout = 30 seconds // will disconnect if initialization doesn't happen within that timeframe ping-interval = 30 seconds - ping-timeout = 20 seconds // will disconnect if peer takes longer than that to respond + ping-timeout = 60 seconds // will disconnect if peer takes longer than that to respond ping-disconnect = true // disconnect if no answer to our pings // When enabled, if we receive an incoming connection, we will echo the source IP address in our init message. // This should be disabled if your node is behind a load balancer that doesn't preserve source IP addresses.