registry: Node descriptors should be signed by all public keys in the node #2599
Labels
c:breaking/consensus
Category: breaking consensus changes
c:bug
Category: bug
c:registry
Category: entity/node/runtime registry service
c:security
Category: security issues
p:0
Priority: High! bugs, address immediately
The node descriptor isn't actually signed by the consensus, p2p (and in some cases the node descriptor's own) signing keys. This means that there is no proof of possession of the keys, and with duplicated keys being rejected by the consensus layer, it is possible to craft descriptors that cause valid registrations to be rejected.
The text was updated successfully, but these errors were encountered: