[tor-bugs] #27984 [Obfuscation/BridgeDB]: bridgedb verifyHostname doesn't check subjectAltName extension
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Oct 9 21:14:57 UTC 2018
#27984: bridgedb verifyHostname doesn't check subjectAltName extension
----------------------------------+------------------------
Reporter: kaie | Owner: sysrqb
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Obfuscation/BridgeDB | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
----------------------------------+------------------------
Comment (by kaie):
Python 3.7 will support hostname verification using its own openssl
wrapper, see https://bugs.python.org/issue31399
However, it might be good to add support to pyopenssl, to allow code on
older branches to benefit from it, too.
https://github.com/pyca/pyopenssl/issues/795 is an attempt to add such
support.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/27984#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list