refs: Prohibit IDs consisting of all zero bytes #303
Conversation
Container and object IDs are SHA-256 checksums of their contents. It is almost impossible to find data that corresponds to a zero identifier. Setting 32 zeros rather indicates a client error. Reserving a zero value will also make application development easier: corresponding type will have a reserved invalid value within itself. Even if the unimaginable and some structure will actually have a zero hash - so be it, the problem is negligible for the final benefit. Note that zero `OwnerID` is already invalid at least due to the non-zero prefix. Therefore does not need clarification. Signed-off-by: Leonard Lyubich <[email protected]>
we see zeros - we dont hash the container at all. That's the difference
for hash - mb not. But i prefer to explicitly state such cases. For example, although zeros are not a particularly valid hash, the protocol may dictate a special interpretation of them. And so we emphasize that it does not exist |
|
@roman-khimov, I have checked UUID generators we used and it is impossible to get zero ID. At the same time, I do not understand what prevents getting zero sha256. |
|
The probability of getting it is rather low. Hash collision between two containers (or objects) is more probable than that and if it happens -- we're toast. |
This follows nspcc-dev/neofs-api#303. `IsZero` methods and `ErrZero` errors are provided for callers to handle zeros. Signed-off-by: Leonard Lyubich <[email protected]>
This follows nspcc-dev/neofs-api#303. `IsZero` methods and `ErrZero` errors are provided for callers to handle zeros. Signed-off-by: Leonard Lyubich <[email protected]>
This follows nspcc-dev/neofs-api#303. `IsZero` methods and `ErrZero` errors are provided for callers to handle zeros. Signed-off-by: Leonard Lyubich <[email protected]>
i propose to reserve zero IDs and prohibit them from being message fields. While this is a breaking change in theory, in practice nothing will break. At the same time, application development will benefit