Tony Arcieri
Tony Arcieri
This is a brainstorming issue for additional crates which could go in this repo. - [x] `ssh-cipher` - [x] `ssh-derive` - [x] `ssh-encoding` - [x] `ssh-key` - [x] `ssh-protocol` -...
EDIT: this issue has been moved to https://github.com/iqlusioninc/tmkms/issues/54
KMS was designed to support a one-keyring-per-chain model, where the same key can exist in multiple keyrings if so desired. However, at the level of an individual chain, the "keyring"...
I'd like to propose a "tmkms init" subcommand (ala "gaiad init") which creates a KMS directory structure at the given path. It seems there have been a few questions about...
The KMS logging story is really bad right now (see #236). As an MVP it uses the most minimal logging solution available in Rust right now, but there are a...
This issue is for brainstorming better solutions for double-signing defenses which also tolerate the failures of one or more `tmkms` instances. Feel free to post your ideas in addition to...
I did a rough mapping here, however it could use some improvement (as could the `KmsErrorKind` variants): https://github.com/tendermint/kms/blob/d3d60837d77c42c671d89f80f97d64bdb0da43a4/src/yubihsm.rs#L108
When the `chain_id` is configured incorrectly in `tmkms.toml`, this manifests in practice as the following error (on `gaiad` / `tendermint` side): ``` Error attempting to add vote module=consensus err="Failed to...
YubiHSM2s support advanced auditing features: they retain an audit log (which can be permanently set to on), and can enforce the log must be consumed before additional operations can be...
Hello! I saw this crate and wanted to note there are a few other overlapping efforts here: See the RustCrypto `elliptic-curve` crate and curve-specific crates implemented with it: - https://github.com/RustCrypto/elliptic-curves/...