erigon-pulse/signer/storage
Martin Holst Swende d3441ebb56
cmd/clef, signer: security fixes (#17554)
* signer: remove local path disclosure from extapi

* signer: show more data in cli ui

* rpc: make http server forward UA and Origin via Context

* signer, clef/core: ui changes + display UA and Origin

* signer: cliui - indicate less trust in remote headers, see https://github.com/ethereum/go-ethereum/issues/17637

* signer: prevent possibility swap KV-entries in aes_gcm storage, fixes #17635

* signer: remove ecrecover from external API

* signer,clef: default reject instead of warn + valideate new passwords. fixes #17632 and #17631

* signer: check calldata length even if no ABI signature is present

* signer: fix failing testcase

* clef: remove account import from external api

* signer: allow space in passwords, improve error messsage

* signer/storage: fix typos
2018-09-25 15:54:58 +02:00
..
aes_gcm_storage_test.go cmd/clef, signer: security fixes (#17554) 2018-09-25 15:54:58 +02:00
aes_gcm_storage.go cmd/clef, signer: security fixes (#17554) 2018-09-25 15:54:58 +02:00
storage.go cmd/clef, signer: initial poc of the standalone signer (#16154) 2018-04-16 15:04:32 +03:00