Uploaded image for project: 'Kudu'
  1. Kudu
  2. KUDU-430 Consistent Operations
  3. KUDU-611

Cryptographically sign the operation timestamps returned on server responses.

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Open
    • Major
    • Resolution: Unresolved
    • M4.5
    • None
    • security, tserver
    • None

    Description

      We return operation timestamps along with the responses for operations which are serialized by the tablet server. In certain cases those timestamps are forwarded to other servers and will possibly update their clocks.

      A malicious client could choose a bad timestamp and move all the server's clocks to the future.

      Crypto signing the timestamp will allow t make sure that the timestamp originated from another server.

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. KUDU-1661 Mark kudu::client::KuduClient::GetLatestObservedTimestamp() as experimental

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              dralves David Alves
              Votes:
              1 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated: