[tor-bugs] #13182 [meek]: Meek's TLS client hello should use system time

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Sep 17 16:29:22 UTC 2014 

#13182: Meek's TLS client hello should use system time
-----------------------------+-------------------------------
     Reporter:  cypherpunks  |      Owner:  dcf
         Type:  enhancement  |     Status:  needs_information
     Priority:  normal       |  Milestone:
    Component:  meek         |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+-------------------------------
Changes (by dcf):

 * status:  new => needs_information


Comment:

 Do you mean the [https://tools.ietf.org/html/rfc5246#section-7.4.1.2
 gmt_unix_time field]? When you're using the [ticket:11183 Firefox helper];
 i.e., using meek in the Tor Browser Bundle, the gmt_unix_time field is
 randomized just like it is in Firefox:
  * https://bugzilla.mozilla.org/show_bug.cgi?id=937976
  * https://hg.mozilla.org/projects/nss/rev/99b8adde480e
 See [[doc/meek#Sampleclienthellos]] where the time is actually just random
 numbers:
 {{{
 -                gmt_unix_time: Jul 12, 2089 08:23:06.000000000 PDT
 +                gmt_unix_time: Oct 23, 2081 13:09:42.000000000 PDT
 }}}
 If you know of a case where Firefox 24 does not randomize the
 gmt_unix_time field by default, please let me know and add it to the
 [[doc/meek/SampleClientHellos]] page. You can use this command to see
 Client Hello messages:
 {{{
 tshark -V -2 -R ssl.handshake.ciphersuites
 }}}

 If you're talking about the basic meek-client program without the browser
 helper, it is true that it doesn't look like Firefox. The mismatches are
 deep and impossible to fix, for example the Go crypto/tls library doesn't
 even support all the ciphersuites that Firefox does. That's exactly why
 the browser helper exists, so we don't waste time trying to make one TLS
 implementation look like another.

 It's possible I misunderstood your request; please let me know if so.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13182#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list