[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [stem/master] Fix key validation crypto

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [stem/master] Fix key validation crypto
From: atagar@xxxxxxxxxxxxxx
Date: Thu, 30 Mar 2017 04:18:03 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 30 Mar 2017 01:14:12 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Damian Johnson <atagar@xxxxxxxxxxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

commit 3ff6435527b296ca0bafde2ea3989cc043507e07
Author: Damian Johnson <atagar@xxxxxxxxxxxxxx>
Date:   Wed Mar 29 18:28:39 2017 +0200

    Fix key validation crypto
    
    Took some head scratching but figured out what I was buggering up. We should be
    validating the certificate bytes here, not the descriptor.
---
 stem/descriptor/certificate.py | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/stem/descriptor/certificate.py b/stem/descriptor/certificate.py
index 8888554..e29a079 100644
--- a/stem/descriptor/certificate.py
+++ b/stem/descriptor/certificate.py
@@ -208,20 +208,21 @@ class Ed25519CertificateV1(Ed25519Certificate):
     from nacl.exceptions import BadSignatureError
 
     descriptor_content = server_descriptor.get_bytes()
-    signing_key = server_descriptor.ed25519_master_key
+    signing_key = None
 
-    if not signing_key:
+    if server_descriptor.ed25519_master_key:
+      signing_key = nacl.signing.VerifyKey(server_descriptor.ed25519_master_key + '=', encoder = nacl.encoding.Base64Encoder)
+    else:
       for extension in self.extensions:
         if extension.type == ExtensionType.HAS_SIGNING_KEY:
-          signing_key = extension.data
+          signing_key = nacl.signing.VerifyKey(extension.data)
           break
 
     if not signing_key:
       raise ValueError('Server descriptor missing an ed25519 signing key')
 
     try:
-      verify_key = nacl.signing.VerifyKey(signing_key + '=', encoder = nacl.encoding.Base64Encoder)
-      verify_key.verify(descriptor_content[:-ED25519_SIGNATURE_LENGTH], self.signature)
+      signing_key.verify(base64.b64decode(self.encoded)[:-ED25519_SIGNATURE_LENGTH], self.signature)
     except BadSignatureError as exc:
       raise ValueError('Ed25519KeyCertificate signing key is invalid (%s)' % exc)
 



_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [stem/master] Update copyright header for certificate.py
Next by Author: [tor-commits] [stem/master] Standardize on calling it pynacl
Previous by thread: [tor-commits] [stem/master] Drop debugging print
Next by thread: [tor-commits] [stem/master] Standardize on hexlify() and unhexlify()
Index(es):
- Author
- Thread