[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18875 [Metrics/metrics-lib]: Consider replacing RelayNetworkStatusVote's getDirectorySignatures() with getDirectorySignature()

Subject: Re: [tor-bugs] #18875 [Metrics/metrics-lib]: Consider replacing RelayNetworkStatusVote's getDirectorySignatures() with getDirectorySignature()
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 07 Jun 2016 23:40:47 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 07 Jun 2016 19:40:57 -0400
In-reply-to: <047.81ce8ec2197de9e826a6a2ab2e7a4f02@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.81ce8ec2197de9e826a6a2ab2e7a4f02@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18875: Consider replacing RelayNetworkStatusVote's getDirectorySignatures() with
getDirectorySignature()
---------------------------------+-------------------------
 Reporter:  karsten              |          Owner:  karsten
     Type:  enhancement          |         Status:  new
 Priority:  Medium               |      Milestone:
Component:  Metrics/metrics-lib  |        Version:
 Severity:  Normal               |     Resolution:
 Keywords:                       |  Actual Points:
Parent ID:                       |         Points:
 Reviewer:                       |        Sponsor:
---------------------------------+-------------------------

Comment (by teor):

 I think the underlying question here is:
 "What will happen when we stop using SHA1/RSA_PKCS1_PADDING for our
 consensus digests?"

 I would imagine we'll have to sign both SHA1/RSA_PKCS1_PADDING and
 SHA256/ED25519(?) for a while.

 I also have a related question:
 What is the "String" key in the current metrics-lib
 getDirectorySignatures() map?
 How does it handle signatures from legacy keys?

 I'd suggest passing the algorithm / identity / signing key digest to the
 function (if they're not already implicit as part of the
 RelayNetworkStatusVote object).
 That way, you can return the appropriate signature.
 Perhaps it's worth having a form of the function with sensible defaults,
 like `getDirectorySignatureSHA1RSA()`, which would get the SHA1/RSA
 signature from the most recent signing key for that authority.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18875#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #2668, #18642, #18645, #17806, #18636, #18643, #18646, #19304, #19305, #19306
Next by Author: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #2668, #18642, #18645, #17806, #18636, #18643, #18646, #19304, #19305, #19306
Previous by thread: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #2668, #18642, #18645, #17806, #18636, #18643, #18646, #19304, #19305, #19306
Next by thread: Re: [tor-bugs] #18875 [Metrics/metrics-lib]: Consider replacing RelayNetworkStatusVote's getDirectorySignatures() with getDirectorySignature()
Index(es):
- Author
- Thread