[tor-bugs] #4570 [Tor Bridge]: Implement certificate serial number covert channel (part of proposal 179)
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sat Nov 26 01:06:37 UTC 2011
#4570: Implement certificate serial number covert channel (part of proposal 179)
---------------------------+------------------------------------------------
Reporter: asn | Owner:
Type: defect | Status: closed
Priority: normal | Milestone:
Component: Tor Bridge | Version:
Resolution: wontfix | Keywords:
Parent: #3972 | Points:
Actualpoints: |
---------------------------+------------------------------------------------
Changes (by nickm):
* status: new => closed
* resolution: => wontfix
Comment:
Replying to [comment:5 ioerror]:
> Why does it kill the ability for people to use their own certs? We
should just assume that if someone has supplied a cert, it's the new
handshake. Why not?
The point of the special-SN thing was to handle the case where we needed
to introduce a new v4 TLS handshake later on. If somebody has supplied a
cert, we can indeed conclude that it's a v3 handshake. The idea was to
distinguish v3 (the new thing) from the as-yet-undesigned v4 TLS thing.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4570#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list