[tor-bugs] #22006 [Core Tor/Tor]: prop224: Validate ed25519 pubkeys to remove torsion component

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri Jun 23 17:13:49 UTC 2017


#22006: prop224: Validate ed25519 pubkeys to remove torsion component
-------------------------------------------------+-------------------------
 Reporter:  asn                                  |          Owner:  asn
     Type:  defect                               |         Status:
                                                 |  needs_revision
 Priority:  Medium                               |      Milestone:  Tor:
                                                 |  0.3.2.x-final
Component:  Core Tor/Tor                         |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tor-hs, prop224, ed25519, review-    |  Actual Points:
  group-18                                       |
Parent ID:  #21888                               |         Points:
 Reviewer:  nickm                                |        Sponsor:
                                                 |  SponsorR-can
-------------------------------------------------+-------------------------

Comment (by arma):

 Replying to [comment:14 nickm]:
 > I don't think we can do decaf encoding on ed25519 identities: they are
 already published in descriptors and interpreted widely. For hidden
 services and decaf, I don't know how hard the transition would be. The
 only place to change the encoding would be in .onion addresses, and I
 don't know whether there's time/energy to do that in the current state of
 prop224.

 Happy to be overruled here, but, does this imply that we should stick to
 the current encoding for onion addresses, since if we have to maintain two
 different encodings forever, and other people building Tors will forever
 need to build both kinds, that will make everybody sad?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22006#comment:15>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list