[tor-bugs] #21420 [Core Tor/Tor]: Link certificate start date in the future
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Feb 16 18:34:06 UTC 2017
#21420: Link certificate start date in the future
-------------------------------------------+-------------------------------
Reporter: mmcloughlin | Owner: nickm
Type: defect | Status:
| needs_revision
Priority: Medium | Milestone: Tor:
| 0.3.0.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: 029-backport, review-group-16 | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
-------------------------------------------+-------------------------------
Comment (by mmcloughlin):
Looks like the certificate verification allows wiggle room at either end:
2 days on the expiry and 30 days on the start date.
https://github.com/torproject/tor/blob/67eb6470d711b36d1b855e6423ce7bbb302af834/src/common/tortls.c#L897-L900
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21420#comment:11>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list