Read-set is missing versioning #446
Milestone
Comments
g2flyer
modified the milestones:
MVP FPC 1.0 (aka FPC Lite),
FPC 1.1,
Rollback protection extension
|
versioning if single keys done in #501, For composite keys, it is not yet implemented but fails fail-safely (note composite key is not supported in FPC Lite/1.0) |
|
close this as #506 covers more details of the remaining issue to be done |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
As unearthed during discussion on "FPC externalized endorsement validation" (see comments in proposal), the current implementation lacks versioning info in the read-set signed by the enclave. This can potentially leave to state corruption.
With a TLCC, simply adding the version number from the peer should be sufficient. However, to also enable "FPC without Trusted Ledger", it seems be better to use the hash of the value as the version, either as replacement or in addition to version number, depending on how easy/in-expensive it is in TLCC to get the value and hash it.
The text was updated successfully, but these errors were encountered: