[tor-bugs] #5810 [Stem]: Implement verification of server descriptor
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Mon May 21 03:04:00 UTC 2012
#5810: Implement verification of server descriptor
-------------------------+--------------------------------------------------
Reporter: reganeet | Owner: reganeet
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Stem | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Comment(by reganeet):
> The constructor has a validate flag in case they want to accept
malformed data so also calling this function 'validate' would be
confusing.
Right, I didn't think of that.
> However, maybe we should come up with a more descriptive name than
is_valid()? Would is_signature_valid() be better?
Well, I prefer is_valid() for its conciseness. :)
> Yup, please add all of the details you think would be helpful for future
people trying to figure this out to this ticket.
Nick's conversation with me contains some useful details:
https://lists.torproject.org/pipermail/tor-dev/2012-May/003544.html
The key is to find a crypto library that implements the pkcs1 signature
verification process (part 3). IMHO, pyCrypto and M2Crypto don't have it,
and python-rsa verify() function only works with the signature created by
its sign() function.
> Also, lets add that task to the dev wiki...
Done.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5810#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list