[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] v3 hidden services: inconsistencies between spec and implementation

To: George Kadianakis <desnacked@xxxxxxxxxx>
Subject: Re: [tor-dev] v3 hidden services: inconsistencies between spec and implementation
From: inkylatenoth <inkylatenoth@xxxxxxxxxxxxxx>
Date: Fri, 03 Nov 2017 06:00:44 -0400
Cc: "tor-dev\\@lists.torproject.org" <tor-dev@xxxxxxxxxxxxxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 03 Nov 2017 06:01:27 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1509703248; bh=+jibjZ58r3xOIl9fYdWO48RZVoF/P6fftYaDRtVa5Cc=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=h1YmySBa73VPwCw5azhxexbeQqDkKX3ct+p/bhpoEP5UKUskMkOd3BtxIjw2IMNHm tqg9boGT5IhxIry2e3ZdMiY+E8pxxl+bnEV6BiOe43BOs/Em3o/efy28LFgO12P6Lg 4Mx2hFjacjh15GHhyY9cMF9mtDzwMuQyuV8FR3L8=
Feedback-id: -6kdc2TdUMiiOErDLUnLUzhQBRZWzyCjrTZfFlDdwHFFeum4CCjHVnxjZcZxFHG6sGdyWIYYRuZ7_Tl0siIv2w==:Ext:ProtonMail
In-reply-to: <87y3nvfip0.fsf@riseup.net>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <FdV5VotJ-0Pxm1FGkaSoaBnCfJ3rBARv_tVN5F72Bi6E3cOYasOC7WGJcZ__Ab7uwACmLd78WCgxjime37hHbXd9vyKiWykVQwIsDWtMfnw=@protonmail.com> <87y3nvfip0.fsf@riseup.net>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Sat, Oct 28, 2017 at 05:30:51PM +0300, George Kadianakis wrote:
> That's a great post and thanks for catching all these issues and
> innacuracies! We are definitely interested in consistency and fixing the
> spec (and implementation if needed).

No problem! I'm glad you found my post helpful.

> > # rend-spec-v3.txt
> >
> > ## 2.4
> >
> > * after decrypting the `superencrypted' object from a descriptor, the
> >   resulting document does not end with the NL character. This means that
> >   it does not strictly conform to the document meta-format described in
> >   section 1.2 of dir-spec.txt.
> >
> 
> Hmm... This might be worth fixing on the implementation if possible (and
> if it won't break things). Otherwise, let's patch the spec.

I think it should be possible to fix this in the implementation without
breaking anything.

> > # 220-ecc-ids-keys.txt
> >
> > # 2.1
> >
> > * 'The signature is formed by signing the first N-64 bytes of the
> >   certificate prefixed with the string "Tor node signing key certificate
> >   v1".' I found this to be false; the signatures only validate without
> >   the string prefix.
> >
> 
> Ouch... I think we should edit the spec and consider if there are any
> security risks here.

I agree with all of your proposed solutions (spec vs implementation)
except for here, where I would be much more comfortable with an
implementation change. I realize it would be a breaking change, however,
and will understand if you decide to update the spec instead.

> Inkylatenoth, let me know if you are interested in drafting a spec/code
> patch for the issues you found!!! If you are not interested, I can try
> to do them myself at some point in the next weeks (been pretty busy with
> stuff lately).

At the moment I don't have the time to submit patches, sorry. If you
find the time yourself then I'd be pleased to review/test your patches
to confirm that they solve the inconsistencies I found.

> Also, let us know if your independent implementation is a public thing
> we should know about. Seems interesting :)

I'm not implementing the full protocol, but I certainly will do when
it's finished and open-sourced :)
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Prev by Author: Re: [tor-dev] Privacy Pass
Next by Author: [tor-dev] [release] [protocol] Onionoo 4.4-1.8.0
Previous by thread: Re: [tor-dev] Proposal: Move IPv6 ORPorts to the Microdesc Consensus
Next by thread: [tor-dev] anonbib
Index(es):
- Author
- Thread