Opened at 2021-10-22T13:40:45Z
Closed at 2021-11-16T15:45:52Z
#3820 closed task (fixed)
Add a session key for immutable uploads
| Reported by: | itamarst | Owned by: | GitHub <noreply@…> |
|---|---|---|---|
| Priority: | normal | Milestone: | HTTP Storage Protocol |
| Component: | unknown | Version: | n/a |
| Keywords: | Cc: | ||
| Launchpad Bug: |
Description
The current design of the GBS HTTP protocol for uploading buckets establishes continuity for the series of writes and/or abort by relying on the storage index. Insofar as an untrusted third party knows the storage index (perhaps another storage server?), that third party can mess with the upload, e.g. abort it half-way.
This suggests that there is some need for a shared secret tied to each individual client->server upload.
There are two possible high-level approaches:
- The server chooses a session key and shares it with client.
- The client chooses the session key.
The second pattern matches existing Tahoe-LAFS interaction patterns, so that is what we'll go with as first pass.
Change History (1)
comment:1 Changed at 2021-11-16T15:45:52Z by GitHub <noreply@…>
- Owner set to GitHub <noreply@…>
- Resolution set to fixed
- Status changed from new to closed
Note: See
TracTickets for help on using
tickets.
In fe6a2f6f/trunk: