[tor-commits] [torspec/master] Remove a needless nonce from secret_input in prop224.
nickm at torproject.org
nickm at torproject.org
Tue May 26 13:59:13 UTC 2015
commit fc441790ab61435430b482438b7cba4102d6442e
Author: Nick Mathewson <nickm at torproject.org>
Date: Tue May 26 09:57:53 2015 -0400
Remove a needless nonce from secret_input in prop224.
The salt serves the same purpose as 'nonce' did in secret_input, by
ensuring that the KDF does not produce the same output twice even in
event of accidental revision counter replay.
Pointed out by DonnchaC.
---
proposals/224-rend-spec-ng.txt | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/proposals/224-rend-spec-ng.txt b/proposals/224-rend-spec-ng.txt
index 9ee628c..0b6fde2 100644
--- a/proposals/224-rend-spec-ng.txt
+++ b/proposals/224-rend-spec-ng.txt
@@ -852,7 +852,7 @@ Status: Draft
salt = 16 random bytes
- secret_input = nonce | blinded_public_key | subcredential |
+ secret_input = blinded_public_key | subcredential |
INT_4(revision_counter)
keys = KDF(secret_input, salt, "hsdir-encrypted-data",
S_KEY_LEN + S_IV_LEN + MAC_KEY_LEN)
More information about the tor-commits
mailing list