[tor-bugs] #22029 [Core Tor/Tor]: Allow ed25519 keys to be banned in the approved-routers file
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Mar 24 23:19:40 UTC 2019
#22029: Allow ed25519 keys to be banned in the approved-routers file
-------------------------------------------------+-------------------------
Reporter: teor | Owner: neel
Type: enhancement | Status:
| needs_revision
Priority: Medium | Milestone: Tor:
| 0.4.1.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: 034-triage-20180328, | Actual Points:
034-removed-20180328 |
Parent ID: | Points: 1
Reviewer: asn | Sponsor:
-------------------------------------------------+-------------------------
Changes (by teor):
* status: needs_review => needs_revision
Comment:
Replying to [comment:28 teor]:
> Hi, this patch contains at least one memory safety issue, and at least
one crashing bug.
>
> I don't want to merge this patch unless there are unit tests for the new
and modified functions. I want some automated checks for the issues that
made it past review.
>
> I would also like someone to actually run the code on an authority. If
you want to use chutney, the networks/bwfile and torrc_templates
/authority-bwfile.tmpl could be copied and modified to use an
approved_routers file.
Replying to [comment:31 neel]:
> I did not include a test, but he reason why a test isn't added for
`add_ed25519_to_dir()` is because the similar RSA functions
(`add_fingerprint_to_dir()`) were inside a `#define 0` in `test_dir.c`:
> …
> and wouldn't have run in the tests.
We require unit tests for new code, so that we can find issues in new
code.
There were memory safety issues and crashing bugs in this code, and they
made it past the review.
So this code needs unit tests.
It also needs to be tested on an authority.
If you would like, you can also write working tests for the old RSA
functions.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22029#comment:33>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list