[tor-bugs] #27984 [Circumvention/BridgeDB]: bridgedb verifyHostname doesn't check subjectAltName extension
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Jun 2 23:31:23 UTC 2020
#27984: bridgedb verifyHostname doesn't check subjectAltName extension
-----------------------------------------+--------------------------
Reporter: kaie | Owner: agix
Type: defect | Status: assigned
Priority: Medium | Milestone:
Component: Circumvention/BridgeDB | Version:
Severity: Normal | Resolution:
Keywords: ex-sponsor-19, ex-sponsor19 | Actual Points:
Parent ID: | Points: 3
Reviewer: | Sponsor:
-----------------------------------------+--------------------------
Comment (by agix):
I basically worked on two different solutions.
[https://github.com/agiix/bridgedb/commit/1c3cdb7ff937d5aff1f424d19398c81a437cace7
Here] the first one.
[https://github.com/agiix/bridgedb/commit/574dd30552c1b2911fb0f4097babad09ec6e10c0
Here] the second one, that uses the service_identity package as previously
mentioned by kaie.
\\
I tend to prefer the latter, since BridgeDB already relies on the package.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/27984#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list