Hash for Role is not using cyrptographic hash #2662

ManfredKarrer · 2019-04-06T19:03:59Z

The hash which is used at Role is useing hashCode instead of a cryptographic hash.
hashCode is not guaranteed to be determinisitic across JVM implementations and versions so we must not use that in any consensus relevant use case. The hash for Role seems to have not much usage atm but will likely get more at least for arbitrators, mediators and maybe seed node operators. So better to fix that before the mainnet launch...

ManfredKarrer · 2019-04-07T00:15:01Z

The consequences with the change with the current data and network is that a because of the hash change a bonded role is not found anymore and interpreted as bonded reputation.
If a bonded role was locked up it cannot be revoked in the UI. So when we add this change there can be smaller confusions but it should not break consensus.

…shcode Fixes bisq-network#2662

ManfredKarrer added the in:dao label Apr 6, 2019

ManfredKarrer self-assigned this Apr 6, 2019

ManfredKarrer added this to the v1.0.0 milestone Apr 6, 2019

ManfredKarrer added a commit to ManfredKarrer/bisq that referenced this issue Apr 7, 2019

Use cryptographic hash from protobuffer serialized data instead of ha…

2b15bd2

…shcode Fixes bisq-network#2662

ManfredKarrer mentioned this issue Apr 7, 2019

Use cryptographic hash from protobuffer serialized data instead of hashCode #2665

Merged

ripcurlx closed this as completed in #2665 Apr 8, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Hash for Role is not using cyrptographic hash #2662

Hash for Role is not using cyrptographic hash #2662

ManfredKarrer commented Apr 6, 2019

ManfredKarrer commented Apr 7, 2019

Hash for Role is not using cyrptographic hash #2662

Hash for Role is not using cyrptographic hash #2662

Comments

ManfredKarrer commented Apr 6, 2019

ManfredKarrer commented Apr 7, 2019