From a868d1381dada7318f82196ad8651da6c2bc29f3 Mon Sep 17 00:00:00 2001
From: Christian Decker <decker.christian@gmail.com>
Date: Sat, 10 Dec 2016 02:15:44 +0100
Subject: [PATCH] onion: Specifying `payment-key` commitment in onion (#47)

Specifying that the `onion-routing-packet` commits to the
`payment-key` by setting the associated data. This avoids replay
attacks and specifying it here keeps the onion-routing spec clean.
---
 02-peer-protocol.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/02-peer-protocol.md b/02-peer-protocol.md
index 7444cb7..347ac69 100644
--- a/02-peer-protocol.md
+++ b/02-peer-protocol.md
@@ -539,6 +539,9 @@ reconnection if it has the sender did not previously acknowledge the
 commitment of that HTLC.  A receiving node MAY fail the channel if
 other `id` violations occur.
 
+The `onion-routing-packet` contains an obfuscated list of hops and instructions for each hop along the path.
+It commits to the HTLC by setting the `payment-key` as associated data, i.e., including the `payment-key` in the computation of HMACs.
+This prevents replay attacks that'd reuse a previous `onion-routing-packet` with a different `payment-key`.
 
 #### Rationale