[tor-bugs] #27999 [Core Tor/Tor]: Allow for long-running signing operations
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Oct 11 08:01:50 UTC 2018
#27999: Allow for long-running signing operations
-------------------------+------------------------------
Reporter: ln5 | Owner: ln5
Type: enhancement | Status: assigned
Priority: Medium | Component: Core Tor/Tor
Version: | Severity: Normal
Keywords: TorHSM | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
-------------------------+------------------------------
In order to be able to put secret keys used for signing status documents
on an HSM device, which may require a long time(*) to finish, we need to
allow for router_get_dirobj_signature() to return something akin to EAGAIN
and make its callers able to cope with that.
router_get_dirobj_signature() has only two callers, both with only one
same caller (dirvote_act()) so that seems pretty contained. Question is if
we should push this down a level to crypto_pk_private_sign() for other
potential use cases than votes and consensuses only?
(*) Let's define "a long time" as anything taking more than 1/10 of a
second.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/27999>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list