[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #28415 [Core Tor/Tor]: extra-info-digest's sha256-digest isn't actually over the same data as the sha1-digest

To: undisclosed-recipients: ;
Subject: [tor-bugs] #28415 [Core Tor/Tor]: extra-info-digest's sha256-digest isn't actually over the same data as the sha1-digest
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 12 Nov 2018 21:38:50 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 12 Nov 2018 16:38:59 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#28415: extra-info-digest's sha256-digest isn't actually over the same data as the
sha1-digest
------------------------------+----------------------
     Reporter:  irl           |      Owner:  (none)
         Type:  defect        |     Status:  new
     Priority:  Medium        |  Milestone:
    Component:  Core Tor/Tor  |    Version:
     Severity:  Normal        |   Keywords:  dir-spec
Actual Points:                |  Parent ID:
       Points:                |   Reviewer:
      Sponsor:                |
------------------------------+----------------------
 Please review my pull request at:

 https://github.com/torproject/torspec/pull/44

 The extra-info-digest field of server descriptors was defined to contain
 either a SHA1, or a SHA1 and a SHA256 digest. These were both meant to
 be computed over the same data but due to an implementation error, the
 Tor network has been computing the digests over different data for a
 while. This is a lot easier to fix in the spec than in the code, and
 the error does not seem to cause any harm beyond being a little
 confusing (which this patch should help with).

 A minor fix is also made to the SHA1 digest portion of the text. This is
 a typo fix and a clarification, and does not change the semantic meaning
 for that portion.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28415>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #28415 [Core Tor/Tor]: extra-info-digest's sha256-digest isn't actually over the same data as the sha1-digest
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #28415 [Core Tor/Tor]: extra-info-digest's sha256-digest isn't actually over the same data as the sha1-digest
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #25245
Next by Author: [tor-bugs] #28421 [Core Tor/Tor]: Move control_per_second_events() into a separate callback.
Previous by thread: Re: [tor-bugs] #28414 [Community/Tor Support]: Tor doesn't load
Next by thread: Re: [tor-bugs] #28415 [Core Tor/Tor]: extra-info-digest's sha256-digest isn't actually over the same data as the sha1-digest
Index(es):
- Author
- Thread