lanzaboote

History

nikstur df6b1b07f7 tool: use random names for secure tempfiles Using random names for tempfiles makes handling them easier. It reduces the amount of noise in the code because no custom name needs to be provided for each tempfile. The names were not really useful in any case. It also does not burden the developer with ensuring uniqueness of names. This is relevant when files for multiple generations need to be stored in the same directory (e.g. because they need to be accessed after handling one generation). Out of an abundance of caution, 32 random alphanumeric characters are chosen for each filename. The tempfile crate, in comparison, only chooses 8. 32 characters should be enough to avoid collisions, even if the PRNG is not of cryptographic quality.	2023-02-21 00:13:40 +01:00
..
stub	stub: add fall back for hash mismatches when Secure Boot is off	2023-02-02 18:03:54 +01:00
tool	tool: use random names for secure tempfiles	2023-02-21 00:13:40 +01:00

nikstur df6b1b07f7 tool: use random names for secure tempfiles

Using random names for tempfiles makes handling them easier. It reduces
the amount of noise in the code because no custom name needs to be
provided for each tempfile. The names were not really useful in any
case.

It also does not burden the developer with ensuring uniqueness of names.
This is relevant when files for multiple generations need to be stored
in the same directory (e.g. because they need to be accessed after
handling one generation).

Out of an abundance of caution, 32 random alphanumeric characters are
chosen for each filename. The tempfile crate, in comparison, only
chooses 8. 32 characters should be enough to avoid collisions, even
if the PRNG is not of cryptographic quality.

2023-02-21 00:13:40 +01:00

stub

stub: add fall back for hash mismatches when Secure Boot is off

2023-02-02 18:03:54 +01:00

tool

tool: use random names for secure tempfiles

2023-02-21 00:13:40 +01:00