[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
#29583: HSv3: Faulty cross-certs in introduction point keys (allows naive
onionbalance for v3s)
-------------------------------------------------+-------------------------
Reporter: asn | Owner: (none)
Type: defect | Status: new
Priority: High | Milestone: Tor:
| 0.4.1.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: tor-hs scaling onionbalance | Actual Points:
040-backport 035-backport needs-proposal |
Parent ID: #26768 | Points: 4
Reviewer: | Sponsor:
| Sponsor27-must
-------------------------------------------------+-------------------------
Comment (by haxxpop):
I want to add some opinion here. I think the main reason that we made this
mistake is because we didn't document the reason why we need to cross-
certify the desc signing key with the intro auth key in the spec.
And honestly, it's quite counterintuitive. It sounds like we want to sign
the "signing" key with "something" key?? (intro auth key) and the reader
will think that it's a typo in the spec because the "signing" key should
be the signing key not the signed key :P
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29583#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs