Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
dir/server/serverlog: stabilize root backup reference
The recently introduced root backup from local disk to storage server intended to create a consistent per-user reference, but used ECDSA signing which includes some randomness. The reference is desired to be unguessable so that outsiders can't watch time and sequence. There is no encryption or sign/verify involved. A better cryptographic tool is HKDF (RFC 5869) already used as part of key wrapping in pack/ee. Add HKDF to the Factotum interface, and use it in place of the old reference construction. Add test that catches the old problem. Add errors.Str in storagetest to avoid "unqualified type" complaint. Fix #555. Change-Id: Ibb083d9a630fd82beac835166d17144b5d97ac2a Reviewed-on: https://upspin-review.googlesource.com/17560 Reviewed-by: Andrew Gerrand <adg@golang.org> Reviewed-by: David Presotto <presotto@gmail.com>
- Loading branch information
Showing
5 changed files
with
44 additions
and
10 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters