State resolution attacks

These are some notes on various different kinds of attacks that might be attempted on state resolution algorithms, such as the one in Matrix. Different kinds of state resolution algorithms are vulnerable to different kinds of attacks; a reliable state algorithm should be vulnerable to none of them.

These notes are not complete. More details, graphs, etc. will be added at some later time.

Frontrunning attack

Detect an event that bans or demotes the user, then quickly craft a fake branch full of malicious events (eg. banning other users), but do not submit those events to any other homeserver yet, and then craft an event that parents both the fake branch and the event prior to the detected ban/demote, claiming that the fake branch came earlier and thereby bypassing the ban. Requires a malicious homeserver.

Dead horse attack

Attach crafted event to recent parent and ancient parent, to try and pull in ancient state and confuse the current state; eg. an event from back when a user wasn't banned yet, to try and get the membership state to revert to 'joined' by pulling it into current state. Named this because it involves "beating a dead horse".

Piggybacking attack

A low-powerlevel user places an event in a DAG branch that a high-powerlevel user has also attempted to change state in, as the high-powerlevel state change might cause their branch to become prioritized (ie. sorted in front) in state resolution.

Fir tree attack

Resource exhaustion attack; deliberately constantly creating side branches to trigger state resolution processes. Named after the shape of half a fir tree that it generates in the graph.

Huge graph attack

Resource exhaustion attack; attach crafted event to a wide range of other parent events throughout the history of the room, to pull as many sections of the event graph into state resolution as possible

Mirror attack

Takes advantage of non-deterministic state resolution algorithms to create a split-brain situation that breaks the room, by creating a fake branch containing the exact inverse operations of the real branch, and then resolving the two together; as there is no canonically 'correct' answer under these circumstances, the goal of the attack is to make different servers come to different conclusions.

Automatic authentication keys

Whirlwind tour of (correct) npm usage

An overview of Javascript tooling

Monolithic vs. modular - what's the difference?

Synchronous vs. asynchronous

What is state?

Promises reading list

The Promises FAQ - addressing the most common questions and misconceptions about Promises

Error handling (with Promises)

Bluebird Promise.try using ES6 Promises

Please don't include minified builds in your npm packages!

How to get the actual width of an element in jQuery, even with border-box: box-sizing

A survey of unhandledRejection and rejectionHandled handlers

Quill.js glossary

Riot.js cheatsheet

Quick reference for `checkit` validators

ES Modules are terrible, actually

A few notes on the "Gathering weak npm credentials" article

How to install Node.js applications, if you're not a Node.js developer

Getting started with Node.js

Node.js for PHP developers

Rendering pages server-side with Express (and Pug)

Running a Node.js application using nvm as a systemd service

Persistent state in Node.js

node-gyp requirements

Introduction to sessions

Secure random values

Checking file existence asynchronously

Fixing "Buffer without new" deprecation warnings

Why you shouldn't use Sails.js

Setting up Bookstack

A *complete* listing of operators in Nix, and their predence.

Setting up Hydra

Stepping through builder steps in your custom packages

Using dependencies in your build phases

Source roots that need to be renamed before they can be used

Error: `error: cannot coerce a function to a string`

`buildInputs` vs. `nativeBuildInputs`?

QMake ignores my `PREFIX`/`INSTALL_PREFIX`/etc. variables!

Useful tools for working with NixOS

Proprietary AMD drivers (fglrx) causing fatal error in i387.h

Installing a few packages from `master`

GRUB2 on UEFI

Unblock ports in the firewall on NixOS

Guake doesn't start because of a GConf issue

FFMpeg support in youtube-dl

An incomplete rant about the state of the documentation for NixOS

Futures and Tokio

Database characteristics

Prefix codes (explained simply)

Cleaning sticky soda spills in a mechanical keyboard without disassembly

Hacking the Areson L103G

Batch-migrating Gitolite repositories to Gogs

What is(n't) Docker actually for?

Don't use VPN services.

Normies just don't care about privacy

Why you probably shouldn't use a wildcard certificate

The 5-minute guide to the fediverse and Mastodon

No, your cryptocurrency cannot work

Is my blockchain a blockchain?

You don't need a blockchain.

Transitive dependencies and the commons

How to de-escalate situations

Treating hair lice in difficult hair

State resolution attacks

State resolution attacks

Frontrunning attack

Dead horse attack

Piggybacking attack

Fir tree attack

Huge graph attack

Mirror attack

No Comments

A complete listing of operators in Nix, and their predence.