DHT should only store valid message body hashes in the dedup cache #3419
Comments
stringhandler
pushed a commit
that referenced
this issue
Apr 7, 2022
Description --- - construct the dedup hash correctly in SAF messages - consolidate dedup hashing - move dedup to after decryption/validation step in saf processor Motivation and Context --- SAF db is also used for dedup, so the hash must match. Closes #3419 How Has This Been Tested? --- Existing unit tests, memorynet and manually
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
It is possible for a malicious node to tamper with the DHT header of a message to make the message invalid. It can then forward this message. All receiving nodes will store the message body in the dedup cache and proceed to process the message. It will then discard it, rightly so.
But when the correct message arrives with the correct header the node will discard the message because the body is already in the dedup cache making it believe it already processed the message.
The text was updated successfully, but these errors were encountered: