search

oasisprotocol / oasis-core

Performant and Confidentiality-Preserving Smart Contracts + Blockchains
https://oasisprotocol.org
Apache License 2.0
330 stars 107 forks source link

Make node P2P keys totally ephemeral #2099

Open kostko opened 4 years ago

kostko commented 4 years ago

Node P2P keys used for authenticating libp2p connections should be made totally ephemeral (e.g., regenerated periodically while the node is running).

Care needs to be taken to not make the node unreachable until the next epoch transition as currently the other nodes will only update their local cache on an epoch transition.

It is not immediately obvious if libp2p supports such a thing without shutting down the P2P host.

kostko commented 4 years ago

Care needs to be taken to not make the node unreachable until the next epoch transition as currently the other nodes will only update their local cache on an epoch transition.

Related to https://github.com/oasislabs/oasis-core/issues/1794#issuecomment-574586468.