[tor-dev] New Proposal - CAA Extensions for the Tor Rendezvous Specification

David Goulet dgoulet at torproject.org
Mon May 8 19:16:02 UTC 2023


On 25 Apr (13:02:28), Q Misell via tor-dev wrote:
> Hi all,
> 
> I've spent some time working on ACME for Tor hidden services (you may have
> seen discussion of this work on the onion-advisors mailing list). Full
> details of the project are available at https://e.as207960.net/w4bdyj/AX8Ffqsd
> 
> Attached is my proposal for a change to the Tor Rendezvous Specification to
> support the inclusion of CAA records in hidden service descriptors.
> 
> My fork of Tor implementing publishing these records is available at
> https://e.as207960.net/w4bdyj/XMN03dmD

Thanks for this!

I've merged this as proposal 343! I like it, this seems very simple approach
especially for the ACME support that would allow us to roll in within the
existing CA infrastructure. As you noted previously not perfect but this is
what the world has right now.

I took a look at your C-tor patch and I would strongly encourage you to submit
a MR to our Gitlab.

https://gitlab.torproject.org/tpo/core/tor

Thanks!
David

-- 
F2eZmnZGZgRyoAIt8TzU0Fx4AWEAnpLssqomMgfaPes=
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://lists.torproject.org/pipermail/tor-dev/attachments/20230508/a3e01a09/attachment.sig>


More information about the tor-dev mailing list