ACINQ · t-bast · Apr 21, 2021
diff --git a/src/commonMain/kotlin/fr/acinq/lightning/payment/PaymentRequest.kt b/src/commonMain/kotlin/fr/acinq/lightning/payment/PaymentRequest.kt
@@ -5,6 +5,7 @@ import fr.acinq.bitcoin.Script.tail
 import fr.acinq.bitcoin.io.ByteArrayInput
 import fr.acinq.bitcoin.io.ByteArrayOutput
 import fr.acinq.lightning.*
+import fr.acinq.lightning.Lightning.randomBytes
 import fr.acinq.lightning.Lightning.randomBytes32
 import fr.acinq.lightning.serialization.ByteVector32KSerializer
 import fr.acinq.lightning.serialization.ByteVectorKSerializer
@@ -157,6 +158,19 @@ data class PaymentRequest(
             return Features(activated = features.activated.filter { (f, _) -> bolt11Features.contains(f) })
         }
 
+        /**
+         * To avoid collision on payment preimages, we use a mix of randomness and timestamping.
+         * The end of the preimage contains a timestamp and the rest (at least 192 bits) comes from our RNG.
+         * This ensures that even if the randomness fails, it's unlikely that preimages will be reused.
+         */
+        fun generatePreimage(): ByteVector32 {
+            val timestamp = ByteArrayOutput()
+            LightningCodecs.writeTU64(currentTimestampMillis(), timestamp)
+            val timestampBytes = timestamp.toByteArray()
+            val random = randomBytes(32 - timestampBytes.size)
+            return ByteVector32(random + timestampBytes)
+        }
+
         fun create(
             chainHash: ByteVector32,
             amount: MilliSatoshi?,

diff --git a/src/commonTest/kotlin/fr/acinq/lightning/payment/PaymentRequestTestsCommon.kt b/src/commonTest/kotlin/fr/acinq/lightning/payment/PaymentRequestTestsCommon.kt
@@ -1,9 +1,11 @@
 package fr.acinq.lightning.payment
 
 import fr.acinq.bitcoin.*
+import fr.acinq.bitcoin.io.ByteArrayInput
 import fr.acinq.lightning.*
 import fr.acinq.lightning.tests.utils.LightningTestSuite
 import fr.acinq.lightning.utils.*
+import fr.acinq.lightning.wire.LightningCodecs
 import fr.acinq.secp256k1.Hex
 import kotlin.test.*
 
@@ -317,6 +319,18 @@ class PaymentRequestTestsCommon : LightningTestSuite() {
         assertEquals(ref, check)
     }
 
+    @Test
+    fun `insert current timestamp in payment preimage generation`() {
+        val now = currentTimestampMillis()
+        val pr1 = PaymentRequest.generatePreimage()
+        val preimageTimestamp = LightningCodecs.tu64(ByteArrayInput(pr1.takeRight(6).toByteArray()))
+        assertTrue(now <= preimageTimestamp)
+        assertTrue(preimageTimestamp <= now + 5000)
+
+        val pr2 = PaymentRequest.generatePreimage()
+        assertNotEquals(pr1, pr2)
+    }
+
     @Test
     fun `reject invalid invoices`() {
         val refs = listOf(