[tor-bugs] #16581 [Tor]: Always load public master ed25519 key from disk, check for match with signing cert
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Jul 14 14:42:13 UTC 2015
#16581: Always load public master ed25519 key from disk, check for match with
signing cert
------------------------+--------------------------------
Reporter: nickm | Owner:
Type: defect | Status: new
Priority: major | Milestone: Tor: 0.2.7.x-final
Component: Tor | Version:
Resolution: | Keywords:
Actual Points: | Parent ID: #16530
Points: |
------------------------+--------------------------------
Comment (by dgoulet):
The goal is really to avoid generating a key, not writing it on disk and
using it after assuming somehow it has been saved. Sounds like generating
and writing a key to disk is a "critical path" that must be confirmed
either right away and/or regularly after?
So yes, makes total sense to me to be very thorough about validating key
in memory with one on disk.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16581#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list