diff options
Diffstat (limited to 'spec/cert-spec.md')
-rw-r--r-- | spec/cert-spec.md | 35 |
1 files changed, 7 insertions, 28 deletions
diff --git a/spec/cert-spec.md b/spec/cert-spec.md index 0b98f75..f78af10 100644 --- a/spec/cert-spec.md +++ b/spec/cert-spec.md @@ -1,25 +1,4 @@ -Ed25519 certificates in Tor - -Table of Contents - -```text - 1. Scope and Preliminaries - 1.1. Signing - 1.2. Integer encoding - 2. Document formats - 2.1. Ed25519 Certificates - 2.2. Basic extensions - 2.2.1. Signed-with-ed25519-key extension [type 04] - 2.3. RSA->Ed25519 cross-certificate - A.1. List of certificate types (CERT_TYPE field) - A.2. List of extension types - A.3. List of signature prefixes - A.4. List of certified key types (CERT_KEY_TYPE field) -``` - -<a id="cert-spec.txt-1"></a> - -# Scope and Preliminaries +# Ed25519 certificates in Tor This document describes a certificate format that Tor uses for its Ed25519 internal certificates. It is not the only @@ -117,7 +96,7 @@ sizeof(ed25519_cert) - 64 bytes). <a id="cert-spec.txt-2.2.1"></a> -### Signed-with-ed25519-key extension \[type 04\] +### Signed-with-ed25519-key extension \[type 04\] { #signed-with-ed25519 } In several places, it's desirable to bundle the key signing a certificate along with the certificate. We do so with this @@ -134,7 +113,7 @@ sign the certificate. <a id="cert-spec.txt-2.3"></a> -## RSA->Ed25519 cross-certificate +## RSA->Ed25519 cross-certificate { #rsa-cross-cert } Certificate type \[07\] (Cross-certification of Ed25519 identity with RSA key) contains the following data: @@ -162,7 +141,7 @@ certificate." <a id="cert-spec.txt-A.1"></a> -## List of certificate types (CERT_TYPE field) +## List of certificate types (CERT_TYPE field) { #list-cert-types } The values marked with asterisks are not types corresponding to the certificate format of section 2.1. Instead, they are @@ -204,13 +183,13 @@ certificate type enumeration of in our Ed25519 certificates. <a id="cert-spec.txt-A.2"></a> -## List of extension types +## List of extension types { #list-ext-types } \[04\] - signed-with-ed25519-key (section 2.2.1) <a id="cert-spec.txt-A.3"></a> -## List of signature prefixes +## List of signature prefixes { #list-sig-prefixes } We describe various documents as being signed with a prefix. Here are those prefixes: @@ -219,7 +198,7 @@ are those prefixes: <a id="cert-spec.txt-A.4"></a> -## List of certified key types (CERT_KEY_TYPE field) +## List of certified key types (CERT_KEY_TYPE field) { #list-key-types } ```text [01] ed25519 key |