[tor-commits] [torspec/master] Add clarifications to the authenticaiton mechanisms

nickm at torproject.org nickm at torproject.org
Tue Oct 24 12:32:19 UTC 2017


commit 9e9d61ba48c5ec6a854eef730a6cca8323c7a5f9
Author: Tom Ritter <tom at ritter.vg>
Date:   Fri Oct 20 13:41:38 2017 -0500

    Add clarifications to the authenticaiton mechanisms
---
 control-spec.txt | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/control-spec.txt b/control-spec.txt
index 555e625..6b2c2eb 100644
--- a/control-spec.txt
+++ b/control-spec.txt
@@ -360,6 +360,12 @@
   Sent from the client to the server.  The syntax is:
      "AUTHENTICATE" [ SP 1*HEXDIG / QuotedString ] CRLF
 
+  This command is used to authenticate to the server. The provided string is
+  either the original password represented as a QuotedString if HASHEDPASSWORD
+  is to be used, the contents of the cookie file formatted as hexidecimal if
+  COOKIE is to be used, or the resulting HMAC if AUTHCHALLENGE has been
+  previously sent (and therefore SAFECOOKIE is to be used).
+
   The server responds with "250 OK" on success or "515 Bad authentication" if
   the authentication cookie is incorrect.  Tor closes the connection on an
   authentication failure.
@@ -1377,6 +1383,9 @@
 
     ClientNonce = 2*HEXDIG / QuotedString
 
+  This command is used to begin the authentication routine for the
+  SAFECOOKIE method of authentication.
+
   If the server accepts the command, the server reply format is:
     "250 AUTHCHALLENGE"
             SP "SERVERHASH=" ServerHash





More information about the tor-commits mailing list