<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div></div><div><br></div><div>On 7 May 2018, at 06:54, juga <<a href="mailto:juga@riseup.net">juga@riseup.net</a>> wrote:<br><br></div><blockquote type="cite"><div><span>teor:</span><br><blockquote type="cite"><span>Hi Nick,</span><br></blockquote><blockquote type="cite"><span></span><br></blockquote><blockquote type="cite"><blockquote type="cite"><span>Suggestion: Add a field to hold the Ed25519 Identity of the relay being</span><br></blockquote></blockquote><blockquote type="cite"><blockquote type="cite"><span>measured.  Say that implementations SHOULD include both RSA fingerprint</span><br></blockquote></blockquote><blockquote type="cite"><blockquote type="cite"><span>and Ed25519 identity, and that implementations SHOULD accept lines that</span><br></blockquote></blockquote><blockquote type="cite"><blockquote type="cite"><span>contain at least one of them.</span><br></blockquote></blockquote><blockquote type="cite"><span></span><br></blockquote><blockquote type="cite"><span>Suggestion: the ed25519 IDs should be base64 encoded, without a trailing =, because a trailing = makes the format ambiguous.</span><br></blockquote><blockquote type="cite"><span></span><br></blockquote><span></span><br><span>You're talking about the certificate, right?.</span><br><span>This would change the concept of "line", since the certificate is more</span><br><span>than one "line".</span><br><span></span><br><span>This is how it is defined in dir-list-spec.txt</span><br><span></span><br><span>base64-encoded-ed25519-identity :== "-----BEGIN ED25519 CERT-----" NL</span><br><span>    certificate "-----END ED25519 CERT-----" NL</span><br></div></blockquote><div><br></div><div>The certificate is a proof of identity.</div><div>But we only need to refer to a relay by its ed25519 public key:</div><div><br></div><div><pre style="padding: 0px; margin-top: 0px; margin-bottom: 0px;"><font face="UICTFontTextStyleTallBody"><span style="white-space: normal; background-color: rgba(255, 255, 255, 0);">"master-key-ed25519" SP MasterKey NL</span></font></pre><pre style="padding: 0px; margin-top: 0px; margin-bottom: 0px;"><font face="UICTFontTextStyleTallBody"><span style="white-space: normal; background-color: rgba(255, 255, 255, 0);"><br></span></font></pre><pre style="padding: 0px; margin-top: 0px; margin-bottom: 0px;"><pre style="padding: 0px; margin-top: 0px; margin-bottom: 0px;"><font face="UICTFontTextStyleTallBody"><span style="white-space: normal; background-color: rgba(255, 255, 255, 0);">[At most once]</span></font></pre><pre style="padding: 0px; margin-top: 0px; margin-bottom: 0px;"><font face="UICTFontTextStyleTallBody"><span style="white-space: normal; background-color: rgba(255, 255, 255, 0);"><br></span></font></pre><pre style="padding: 0px; margin-top: 0px; margin-bottom: 0px;"><font face="UICTFontTextStyleTallBody"><span style="white-space: normal; background-color: rgba(255, 255, 255, 0);">Contains the base-64 encoded ed25519 master key as a single
        argument.  If it is present, it MUST match the identity key
        in the identity-ed25519 entry.</span></font></pre></pre></div><div><br></div><div><a href="https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt#n416">https://gitweb.torproject.org/torspec.git/tree/dir-spec.txt#n416</a></div><div><br></div><div>T</div></body></html>