[tor-bugs] #21451 [Applications/Tor Browser]: Signatures on TPO are signed with incorrect key
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Feb 14 21:43:36 UTC 2017
#21451: Signatures on TPO are signed with incorrect key
--------------------------------------+--------------------------
Reporter: cypherpunks | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Comment (by cypherpunks):
Replying to [comment:1 cypherpunks]:
> 0xD1483FA6C3C07136 is used instead of 0x2E1AC68ED40814E0
Both keys are valid according to [https://www.torproject.org/docs/signing-
keys.html].
{{{
pub 4096R/0x4E2C6E8793298290 2014-12-15 [expires: 2020-08-24]
Key fingerprint = EF6E 286D DA85 EA2A 4BA7 DE68 4E2C 6E87 9329 8290
uid Tor Browser Developers (signing key) <torbrowser at torproject.org>
sub 4096R/0x2E1AC68ED40814E0 2014-12-15 [expires: 2017-08-25]
sub 4096R/0x7017ADCEF65C2036 2014-12-15 [expires: 2017-08-25]
sub 4096R/0xD1483FA6C3C07136 2016-08-24 [expires: 2018-08-24]
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21451#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list