SecretStore: versioned keys #6910

svyatonik · 2017-10-27T09:15:49Z

Changes:

instead of rewriting share (this could lead to share loss as described in TODO3 from SecretStore: administrative sessions prototypes #6605 ), ShareAdd session would append new version to existing key
before decryption/signing session can start, we must choose version we want to use in this session => new KeyVersionNegotiationSession
ShareRemove && ShareMove are obsoleted && removed, since we do not want to lose and change any key share versions
I have no plans to make an API for starting ShareAdd session right now, because this change have removed its main use case. So it will be used only as nested session in ServersSetChange session
changed ShareAdd implementation so now it works even if some owners of key shares are offline/removed. Thought it would be an easy task, but spent several days working on it && had to switch the paper, this session is based on.
ServersSetChange session now uses KeyVersionNegotiationSession + ShareAdd session to add shares to all new nodes && after completion just clears databases of nodes, that are removed from cluster

This PR fixes most of #6605 TODOs (except for 1 && 5.1).

Behind the scenes: initial idea (#6605 (comment)) was built on assumption that node is static, when is isolated from cluster. But this isn't true in general - we can make cluster1, then split it to cluster2 + cluster3 && then merge back to cluster4. So failed ShareAdd session is not the only reason of different key versions. And there's no easy way to protect key shares from tree-like versioning (had some exotic ideas of how to achieve this, though) . So let's just live with it (I felt depressed before accepting this fact).

…key_share

…_share

svyatonik · 2017-10-30T07:12:26Z

Latest commit have fixed the test for me, but looks like now there are some ci problems.

svyatonik added 30 commits October 10, 2017 15:31

SecretStore: first key versions flush

81b97c1

SecretStore: key versions in encryption session

cb3af63

SecretStore: flush key versions negotiation session

dedf03b

SecretStore: connected key version negotiation session to cluster

a748a0b

SecretStore: cluster sessions container refactoring

402a8e0

SecretStore: flush

b03a43a

SecretStore: flush key versions

3f443f0

SecretStore: flush

187e1fd

SecretStore: delegation proto

782080a

Merge branch 'master' into secretstore_key_version

5c448b2

SecretStore: decryption_session_is_delegated_when_node_does_not_have_…

45c7637

…key_share

SecretStore: fixed version in decryption session

d7a4b03

SecretStore: signing_session_is_delegated_when_node_does_not_have_key…

0f61db3

…_share

SecretStore: started restoring admin sessions

7a98951

SecretStore: restoring admin sessions

9036b17

SecretStore: removed obsolete ShareRemove && ShareMove sessions

18cbea8

SecretStore: ShareAdd math tests only require old_t+1 nodes

4f535f4

SecretStore: ShareAdd revamp using new math backend

117cbb6

SecretStore: do not include isolated nodes into consensus_group

6a5144a

SecretStore: ServersSetChange + ShareAdd revamp

873b185

removed debug printlns

f1f6fa4

SecretStore: key version negotiation tests

cb403b9

SecretStore: removed debug/merge artifacts

9ad693c

SecretStore: fixed master node selection

4d2b29a

SecretStore: cleanup + tests + fixes

c35b9bd

SecretStore: uncommented tests

1093393

SecretStore: cleaning up

232b3d0

SecretStore: cleaning up + tests

9972832

SecretStore: cleaning up

e74774c

SecretStore: cleaning up && tests

07f1bf3

svyatonik added 13 commits October 25, 2017 16:16

SecretStore: fixing TODOs

1a6a6f5

SecretStore: fixing TODOs + cleanup

0c52239

SecretStore: fixing TODOs

5328d5e

SecretStore: nodes_add_to_the_node_with_obsolete_version

646bb7b

SecretStore: nodes_add_fails_when_not_enough_share_owners_are_connected

811e01c

SecretStore: tests

cd3cdf5

SecretStore: signing && delegation tests

705e4a1

SecretStore: signing && decryption tests when some nodes are isolated

f5a13f1

SecretStore: sessions_are_removed_when_initialization_fails

580ab02

SecretStore: ceaning up

aed908a

Merge branch 'master' into secretstore_key_version

56de751

SecretStore: removed obsolete comments

e76ea31

SecretStore: signing_session_completes_if_node_does_not_have_a_share

eb55573

svyatonik added A3-inprogress ⏳ Pull request is in progress. No review needed at this stage. M4-core ⛓ Core client code / Rust. labels Oct 27, 2017

5chdn added this to the 1.9 milestone Oct 29, 2017

svyatonik added A0-pleasereview 🤓 Pull request needs code review. and removed A3-inprogress ⏳ Pull request is in progress. No review needed at this stage. labels Oct 30, 2017

svyatonik mentioned this pull request Oct 30, 2017

SecretStore: servers set change session api #6925

Merged

arkpar added A8-looksgood 🦄 Pull request is reviewed well. and removed A0-pleasereview 🤓 Pull request needs code review. labels Nov 1, 2017

arkpar merged commit 7703cd2 into master Nov 2, 2017

arkpar deleted the secretstore_key_version branch November 2, 2017 14:33

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SecretStore: versioned keys #6910

SecretStore: versioned keys #6910

svyatonik commented Oct 27, 2017 •

edited

svyatonik commented Oct 30, 2017

SecretStore: versioned keys #6910

SecretStore: versioned keys #6910

Conversation

svyatonik commented Oct 27, 2017 • edited

svyatonik commented Oct 30, 2017

svyatonik commented Oct 27, 2017 •

edited