[tor-packagers] Tor 0.4.6.1-alpha is released

Markus Reichelt ml at mareichelt.com
Thu Mar 18 19:43:05 UTC 2021


* Nick Mathewson <nickm at torproject.org> wrote:

>   o Major bugfixes (signing key):
>     - In the tor-gencert utility, give an informative error message if
>       the passphrase given in `--create-identity-key` is too short.
>       Fixes bug 40189; bugfix on 0.2.0.1-alpha. Patch by Neel Chauhan.

hmm...

# tor --version
Tor version 0.4.6.1-alpha.
Tor is running on Linux with Libevent 2.1.12-stable, OpenSSL 1.1.1j, Zlib 1.2.11, Liblzma 5.2.5, Libzstd 1.4.9 and Glibc 2.33 as libc.
Tor compiled with GCC version 10.2.0

# tor --version                    
Tor version 0.4.6.1-alpha.
Tor is running on Linux with Libevent 2.0.22-stable, OpenSSL 1.0.2u, Zlib 1.2.11, Liblzma 5.2.2, Libzstd 1.4.3 and Glibc 2.23 as libc.
Tor compiled with GCC version 5.5.0

both times I do not get any warning when I invoke

	# tor-gencert --create-identity-key
	Enter PEM pass phrase:
	Verifying - Enter PEM pass phrase:

with passphrase being 1234

I guess that's too short for sure and should have triggered a warning.
Am I missing something?

-- 
left blank, right bald


More information about the tor-packagers mailing list