[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Prop224 oppurtunity: keygen, crypt, sign, encoding tools

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Prop224 oppurtunity: keygen, crypt, sign, encoding tools
From: Taylor R Campbell <campbell+tor-dev@xxxxxxxxxx>
Date: Fri, 17 Feb 2017 07:54:43 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 17 Feb 2017 02:55:02 -0500
In-reply-to: <20170216132842.pe5u7p66gdpghnma@raoul> (dgoulet@ev0ke.net)
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> Date: Thu, 16 Feb 2017 08:28:42 -0500
> From: David Goulet <dgoulet@xxxxxxxxx>
> 
> On 15 Feb (19:02:22), grarpamp wrote:
> > Tor could ship with a tool to offline generate all the
> > various keys, encrypt and sign with them, for debug, test, and
> > use with other apps that tie to tor.
> 
> https://trac.torproject.org/projects/tor/ticket/18098
> 
> If anyone is looking for a side project ^ :).

For ucspi-onion, I wrote a little essentially standalone (requires
basically only OpenSSL libcrypto beyond POSIX) oniongen1(1) utility to
generate an onion service private key and .onion address:

https://mumble.net/~campbell/hg/ucspi-onion/oniongen1.c
https://mumble.net/~campbell/hg/ucspi-onion/oniongen1.1

This supports only RSA1024 keys at the moment, because (a) it's not
clear to me that the file formats and ADD_ONION syntax for prop224
keys and .onion addresses are nailed down yet, and (b) it seems that
there will necessarily be more work involved with blinded ephemeral
keys for prop224 onion services, but I haven't read prop224 closely
enough to know what the operational details are.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- Re: [tor-dev] Prop224 oppurtunity: keygen, crypt, sign, encoding tools
  - From: David Goulet

Prev by Author: Re: [tor-dev] [RFC] Proposal for the encoding of prop224 onion addresses
Next by Author: Re: [tor-dev] [RFC] Proposal for the encoding of prop224 onion addresses
Previous by thread: Re: [tor-dev] Prop224 oppurtunity: keygen, crypt, sign, encoding tools
Next by thread: [tor-dev] [release] metrics-lib/DescripTor 1.6.0
Index(es):
- Author
- Thread