[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 03 May 2019 20:50:15 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 03 May 2019 16:50:25 -0400
In-reply-to: <043.1a0c8d2569a7d39461d225f1928b20b4@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.1a0c8d2569a7d39461d225f1928b20b4@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#29583: HSv3: Faulty cross-certs in introduction point keys (allows naive
onionbalance for v3s)
-------------------------------------------------+-------------------------
 Reporter:  asn                                  |          Owner:  (none)
     Type:  defect                               |         Status:  new
 Priority:  High                                 |      Milestone:  Tor:
                                                 |  0.4.1.x-final
Component:  Core Tor/Tor                         |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tor-hs scaling onionbalance          |  Actual Points:
  040-backport 035-backport needs-proposal       |
Parent ID:  #26768                               |         Points:  4
 Reviewer:                                       |        Sponsor:
                                                 |  Sponsor27-must
-------------------------------------------------+-------------------------

Comment (by haxxpop):

 I want to add some opinion here. I think the main reason that we made this
 mistake is because we didn't document the reason why we need to cross-
 certify the desc signing key with the intro auth key in the spec.

 And honestly, it's quite counterintuitive. It sounds like we want to sign
 the "signing" key with "something" key?? (intro auth key) and the reader
 will think that it's a typo in the spec because the "signing" key should
 be the signing key not the signed key :P

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29583#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] #30468 [Applications/Tor Browser]: Ship makedonian Tor Browser in alpha series
Next by Author: Re: [tor-bugs] #30614 [Core Tor/Tor]: Use MAP_INHERIT_NONE/ZERO if available instead of crashing on assertion failure
Previous by thread: Re: [tor-bugs] #30385 [Applications/Tor Browser]: CANT GET INTO AOL
Next by thread: Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
Index(es):
- Author
- Thread