[tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri May 3 20:50:15 UTC 2019
#29583: HSv3: Faulty cross-certs in introduction point keys (allows naive
onionbalance for v3s)
-------------------------------------------------+-------------------------
Reporter: asn | Owner: (none)
Type: defect | Status: new
Priority: High | Milestone: Tor:
| 0.4.1.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: tor-hs scaling onionbalance | Actual Points:
040-backport 035-backport needs-proposal |
Parent ID: #26768 | Points: 4
Reviewer: | Sponsor:
| Sponsor27-must
-------------------------------------------------+-------------------------
Comment (by haxxpop):
I want to add some opinion here. I think the main reason that we made this
mistake is because we didn't document the reason why we need to cross-
certify the desc signing key with the intro auth key in the spec.
And honestly, it's quite counterintuitive. It sounds like we want to sign
the "signing" key with "something" key?? (intro auth key) and the reader
will think that it's a typo in the spec because the "signing" key should
be the signing key not the signed key :P
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29583#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list