Clarify a couple of issues in HsDesc parsing.
Fixed in this branch:
-
auth-key
andenc-key
entries are actually allowed to appear multiple times, but only once with "ntor" - The
auth-key
cert andenc-key-cert
entries are not actually constructed the way that the document specified; we need to document that for interop purposes.
Not fixed:
- We need to specify what implementations actually need to do with these certificates. Must they check that they are well-signed and valid? Or can they safely ignore them if they don't care about C tor indistinguishability? Or...?