Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add end to end encryption #223

Merged
merged 7 commits into from
Jan 25, 2022
Merged

Add end to end encryption #223

merged 7 commits into from
Jan 25, 2022

Conversation

yunkon-kim
Copy link
Member

  • Create sectuil package
  • Add secret exchange and update mechanism
  • Encrypt and decrypt messages between hosts (i.e., the cb-network agents)
  • Test and debug the end-to-end encryption
  • Do lint
  • Add comments

@yunkon-kim
Create secutil package
f623dee
@yunkon-kim
Minor update to enable encryption on the agent
ec1fc24
@yunkon-kim
Add comment to exported functions for linting
2843f0b
@yunkon-kim
Add secret exchange and update mechanism
35b4d24 
- Add etcd key for secret exchange
- Add keyring and keyring mutex to mange the other hosts' secret
- Add UpdateKeyring() and GetKey() for an agent to use this
- Add watchSecret() to dynamically update changes on other hosts' secret
- Add compareAndSwapSecret() to chceck and upate the host's secret
@yunkon-kim
Encrypt and decrypt messages between hosts (agents)
456ea2b 
- Encrypt a message by the corresponding host's public key before sending
- Decrypt a message by the private key after receiving
@yunkon-kim
Test and debug the end-to-end encryption
296f581 
- Funtionize decapsulate() and encapsulate() to reduce complexity
- Create directory or folder if not exist
- Add logging to secutil
- Fix invalid MarshalPKCS8PrivateKey() to MarshalPKIXPublicKey()
- Fix wrong path parameter of LoadPublicKeyFromFile()
- Fix etcd key to watch the other hosts' secret
- Ignore secret files
- Do lint
@yunkon-kim yunkon-kim self-assigned this Jan 24, 2022
@yunkon-kim yunkon-kim linked an issue Jan 24, 2022 that may be closed by this pull request
Add end-to-end encryption in message #222
Closed
@yunkon-kim
Copy link
Member Author

yunkon-kim commented Jan 24, 2022
edited
Loading

[Reference/example]

@yunkon-kim
Encrypt and decrypt packets by condition
fe2da03 
- Add condition to encrypt and decrypt packets
- Display bytes length before and after encryption
@yunkon-kim yunkon-kim merged commit dec7e58 into cloud-barista:develop Jan 25, 2022
@yunkon-kim yunkon-kim linked an issue Jan 25, 2022 that may be closed by this pull request
Integrate cb-network agent to CB-Tumblebug #103
Closed
@yunkon-kim yunkon-kim deleted the Add-end-to-end-encryption branch January 25, 2022 04:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@yunkon-kim yunkon-kim

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add end-to-end encryption in message Integrate cb-network agent to CB-Tumblebug
1 participant
@yunkon-kim