nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-09-23 14:34:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
20,877 Commits 53 Branches 629 Tags 108 MiB
232ccc18c4
Commit Graph

8 Commits

Author SHA1 Message Date
Nick Mathewson
3fcb74e98b Add more consistency checks in load_ed_keys 
Make sure that signing certs are signed by the right identity key,
to prevent a recurrence of #16530.  Also make sure that the master
identity key we find on disk matches the one we have in RAM, if we
have one.

This is for #16581.
 2015-07-14 11:27:49 -04:00
Andrea Shepard
0e0b65db4f Appease make check-spaces 2015-06-01 12:59:14 +00:00
Nick Mathewson
49c31877b6 Fix a bug in earlier torcert fix, fix another. 2015-05-28 13:14:30 -04:00
Nick Mathewson
3df6f8591d Memory leak in tor_cert_parse. CID gi1301381 2015-05-28 13:09:00 -04:00
Nick Mathewson
3bee74c6d1 Generate weird certificates correctly 
(Our link protocol assumes that the link cert certifies the TLS key,
and there is an RSA->Ed25519 crosscert)
 2015-05-28 10:47:47 -04:00
Nick Mathewson
0b819a2a7c Enforce more correspondence between ri and ei 
In particular, they have to list the same ed25519 certificate, and
the SHA256 digest of the ei needs to match.
 2015-05-28 10:42:29 -04:00
Nick Mathewson
fe5d2477aa Implement ed25519-signed descriptors 
Now that we have ed25519 keys, we can sign descriptors with them
and check those signatures as documented in proposal 220.
 2015-05-28 10:40:56 -04:00
Nick Mathewson
818e6f939d prop220: Implement certificates and key storage/creation 
For prop220, we have a new ed25519 certificate type. This patch
implements the code to create, parse, and validate those, along with
code for routers to maintain their own sets of certificates and
keys.  (Some parts of master identity key encryption are done, but
the implementation of that isn't finished)
 2015-05-28 10:40:56 -04:00