[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17663 [Tor]: Add SHA512 support in crypto.c

Subject: Re: [tor-bugs] #17663 [Tor]: Add SHA512 support in crypto.c
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 23 Nov 2015 21:27:00 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 23 Nov 2015 16:27:20 -0500
In-reply-to: <044.9205280b9185f09987e8a138c1061c61@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.9205280b9185f09987e8a138c1061c61@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17663: Add SHA512 support in crypto.c
-------------------------+------------------------------------
 Reporter:  teor         |          Owner:
     Type:  enhancement  |         Status:  needs_revision
 Priority:  Medium       |      Milestone:  Tor: 0.2.8.x-final
Component:  Tor          |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
  Sponsor:               |
-------------------------+------------------------------------
Changes (by teor):

 * status:  new => needs_revision


Comment:

 Thanks for this feature, and thanks for the unit tests!

 Code review:

 The code looks great overall. Just a few minor suggestions.

 In crypto_digest_smartlist_prefix:
 * if an unknown digest is passed to the function, let's warn,
 tor_fragile_assert(), and wipe memory like crypto_digest_get_digest;
 rather than providing SHA256 as a default.

 In crypto_digest512:
 * the function returns 1 on failure, not -1. (This is likely a copy-paste
 of a similar error on crypto_digest256 that's fixed in #17655.)

 In crypto_digest_local:
 * Using this function will give 32-bit platforms less protection.
 (Typically, we just let them take the performance hit.)
 * I don't like the idea of truncation to 160 bits, although it might be a
 while before attacks on 160 bits become feasible. We could let the user
 specify a length, perhaps by adding SHA_LOCAL_* equivalents of the
 SHANNN_* constants.
 * the function never returns -1. If you can check for failures and return
 -1, please do, otherwise, just document it as always returning 0. (This is
 likely a copy-paste of a similar error on crypto_digest256 that's fixed in
 #17655.)

 Are you happy if we delete crypto_digest_local? Or is there a specific
 circumstance where we might use it?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17663#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #17663 [Tor]: Add SHA512 support in crypto.c
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #8961 [Tor]: src/or/replaycache.c hashes entries with SHA-1
Next by Author: Re: [tor-bugs] #8961 [Tor]: src/or/replaycache.c hashes entries with SHA-1
Previous by thread: [tor-bugs] #17663 [Tor]: Add SHA512 support in crypto.c
Next by thread: Re: [tor-bugs] #17663 [Tor]: Add SHA512 support in crypto.c
Index(es):
- Author
- Thread