[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #20396 [Internal Services/Tor Sysadmin Team]: Tor Project crypto signatures will deceive with 32-bit key ids

Subject: [tor-bugs] #20396 [Internal Services/Tor Sysadmin Team]: Tor Project crypto signatures will deceive with 32-bit key ids
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 18 Oct 2016 20:42:36 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 18 Oct 2016 16:42:46 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#20396: Tor Project crypto signatures will deceive with 32-bit key ids
-----------------------------------------------------+-----------------
     Reporter:  chadmiller                           |      Owner:  tpa
         Type:  defect                               |     Status:  new
     Priority:  Medium                               |  Milestone:
    Component:  Internal Services/Tor Sysadmin Team  |    Version:
     Severity:  Critical                             |   Keywords:
Actual Points:                                       |  Parent ID:
       Points:                                       |   Reviewer:
      Sponsor:                                       |
-----------------------------------------------------+-----------------
 This page has key ids that are too short.

 https://www.torproject.org/docs/signing-keys.html.en

 There are people impersonating GPG releasers in keyservers, and relying on
 ability to create keys that collide in lower 32 bits.. For instance, if
 someone takes the Nick key id 0x165733EA, that will fetch these keys from
 keyservers:

 gpg: key 21194EBB165733EA: public key "Nick Mathewson
 <nickm@xxxxxxxxxxxx>" imported
 gpg: key D50624EC165733EA: public key "Nick Mathewson
 <nickm@xxxxxxxxxxxx>" imported

 And someone fake a source download.

 Or Roger's 0x28988BF5 will get

 gpg: key EB5A896A28988BF5: public key "Roger Dingledine <arma@xxxxxxx>"
 imported
 gpg: key 9C01813428988BF5: public key "Roger Dingledine <arma@xxxxxxx>"
 imported

 or 0x19F78451 will get

 gpg: key 468FAE2919F78451: public key "Roger Dingledine <arma@xxxxxxx>"
 imported
 gpg: key C218525819F78451: public key "Roger Dingledine <arma@xxxxxxx>"
 imported


 The signatures page should never list any 32 bit values. Only have full
 fingerprints, or use the 64-bit long ids or longer.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20396>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #20396 [Internal Services/Tor Sysadmin Team]: Tor Project crypto signatures will deceive with 32-bit key ids
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #20176 [Core Tor/Tor]: current_consensus is an unmarked hazard
Next by Author: Re: [tor-bugs] #20151 [Core Tor/Tor]: Fix parse_virtual_addr_network minimum network size
Previous by thread: Re: [tor-bugs] #20395 [Metrics/metrics-lib]: metrics-lib should be able to handle large descriptor files
Next by thread: Re: [tor-bugs] #20396 [Internal Services/Tor Sysadmin Team]: Tor Project crypto signatures will deceive with 32-bit key ids
Index(es):
- Author
- Thread