[tor-bugs] #13379 [Tor Browser]: Sign our MAR files
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Dec 11 21:09:02 UTC 2014
#13379: Sign our MAR files
--------------------------+------------------------------------------------
Reporter: | Owner: mcs
mikeperry | Status: needs_review
Type: defect | Milestone:
Priority: major | Version:
Component: Tor | Keywords: tbb-security, TorBrowserTeam201412
Browser | Parent ID:
Resolution: |
Actual Points: |
Points: |
--------------------------+------------------------------------------------
Changes (by mcs):
* status: needs_revision => needs_review
Comment:
Kathy and I made changes to use a SHA512-based signature. Please review.
https://gitweb.torproject.org/user/brade/tor-
browser.git/commit/?h=bug13379-02&id=14447aca2f31c56ccadc289cef5f756e97d1f3a9
I created a test certificate and exported it to a .der file by using these
commands:
{{{
./certutil -d .nss -N
./certutil -d .nss -S -x -g 4096 -Z SHA512 -n marsigner -s "CN=Tor Browser
MAR signing key" -t,,
./certutil -d .nss -L -r -n marsigner -o marsigner.der
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13379#comment:36>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list