🐃 Seller could steal money with bad IPFS data

[DanielVF]

One attack we need to avoid:

• Seller lists listing
• Buyer makes offer
• Seller accepts offer, but with invalid IPFS data
• Buyer can't see offer anymore since origin.js won't load it, and can't dispute
• Seller waits until the timer runs out and takes money

Fortunately, this can't be don't today because we don't actually read the IPFS json from the accept event. If it were to work, it would go like this:

originTest.contractService.call("V00_Marketplace", "acceptOffer", [
  30, // listing index
  0,  // offer index
  originTest.contractService.getBytes32FromIpfsHash("QmW3FgNGeD46kHEryFUw1ftEUqRw254WkKxYeKaouz7DJA")])