nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-11 13:43:47 +01:00
Code Issues Packages Projects Releases Wiki Activity
34a6755b94
tor/src
History
Nick Mathewson 34a6755b94 Fix ed25519 link certificate race on tls context rotation 
Whenever we rotate our TLS context, we change our Ed25519
Signing->Link certificate.  But if we've already started a TLS
connection, then we've already sent the old X509 link certificate,
so the new Ed25519 Signing->Link certificate won't match it.

To fix this, we now store a copy of the Signing->Link certificate
when we initialize the handshake state, and send that certificate
as part of our CERTS cell.

Fixes one case of bug22460; bugfix on 0.3.0.1-alpha.
2017-06-01 09:26:24 -04:00
..
common Merge branch 'maint-0.2.9' into maint-0.3.0 2017-05-08 13:40:26 -04:00
config Merge branch 'maint-0.2.9' into maint-0.3.0 2017-05-08 08:07:38 -04:00
ext Use the standard OpenBSD preprocessor definition 2017-02-03 09:37:39 -05:00
or Fix ed25519 link certificate race on tls context rotation 2017-06-01 09:26:24 -04:00
test Fix ed25519 link certificate race on tls context rotation 2017-06-01 09:26:24 -04:00
tools Do not truncate too long hostnames 2017-02-07 09:27:00 -05:00
trunnel trunnel: Move ESTABLISH_INTRO cell sig_len after the end_sig_fields 2016-12-16 12:21:07 -05:00
win32 bump to 0.3.0.7-dev 2017-05-18 12:28:28 -04:00
include.am Fuzzing: Add an initial fuzzing tool, for descriptors. 2016-12-19 15:34:55 -05:00