[tor-bugs] #8961 [Tor]: src/or/replaycache.c hashes entries with SHA-1
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri May 24 23:56:01 UTC 2013
#8961: src/or/replaycache.c hashes entries with SHA-1
---------------------+------------------------------------------------------
Reporter: rransom | Owner:
Type: defect | Status: new
Priority: minor | Milestone:
Component: Tor | Version:
Keywords: | Parent:
Points: | Actualpoints:
---------------------+------------------------------------------------------
Tor is supposed to be moving away from SHA-1, and the replay-detection
cache can be migrated ''and'' protected against hash flooding at the same
time (see also #4900) without a protocol change. Just add and use a
`crypto_digest_local` function which prepends a random bytestring (either
16 bytes or a full hash block), then applies either SHA-256 (if Tor was
compiled for a 32-bit architecture) or SHA-512 (if Tor was compiled for a
64-bit architecture), then returns the first 160 bits.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8961>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list