diff options
| author | Joey Hess <joeyh@joeyh.name> | 2016-09-12 22:35:47 -0400 |
|---|---|---|
| committer | Joey Hess <joeyh@joeyh.name> | 2016-09-12 22:39:21 -0400 |
| commit | 13c408d2295597540f0b2dfb6f7b86e739876c90 (patch) | |
| tree | cac72a6d5a75fb15d71d5e86395543829fe2f2df /HTTP/Client.hs | |
| parent | 483cc9e1fe40899c7f045d71d75aaa5ca99db3fb (diff) | |
| download | keysafe-13c408d2295597540f0b2dfb6f7b86e739876c90.tar.gz | |
implement client-server Proof Of Work
Mashed up a argon2-based PoW with token buckets and bloom filters.
This is intended to prevent a few abuses including:
* Using a keysafe server for general file storage, by storing a whole
lot of chunks.
* An attacker guessing names that people will use, and uploading junk
to keysafe servers under those names, to make it harder for others to use
keysafe later.
* An attacker trying to guess the names used for objects on keysafe
servers in order to download them and start password cracking.
(As a second level of defense, since the name generation hash
is expensive already.)
Completely untested, but it builds!
This commit was sponsored by Andreas on Patreon.
Diffstat (limited to 'HTTP/Client.hs')
| -rw-r--r-- | HTTP/Client.hs | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/HTTP/Client.hs b/HTTP/Client.hs index 0c28005..8f81db4 100644 --- a/HTTP/Client.hs +++ b/HTTP/Client.hs @@ -18,7 +18,7 @@ httpAPI :: Proxy HttpAPI httpAPI = Proxy motd :: Manager -> BaseUrl -> ClientM Motd -getObject :: StorableObjectIdent -> Maybe ProofOfWork -> Manager -> BaseUrl -> ClientM (ProofOfWorkRequirement StorableObject) -putObject :: StorableObjectIdent -> Maybe ProofOfWork -> StorableObject -> Manager -> BaseUrl -> ClientM (ProofOfWorkRequirement StoreResult) -countObjects :: Maybe ProofOfWork -> Manager -> BaseUrl -> ClientM (ProofOfWorkRequirement CountResult) +getObject :: StorableObjectIdent -> Maybe ProofOfWork -> Manager -> BaseUrl -> ClientM (POWGuarded StorableObject) +putObject :: StorableObjectIdent -> Maybe ProofOfWork -> StorableObject -> Manager -> BaseUrl -> ClientM (POWGuarded StoreResult) +countObjects :: Manager -> BaseUrl -> ClientM CountResult motd :<|> getObject :<|> putObject :<|> countObjects = client httpAPI |