r16411@catbus: nickm | 2007-11-05 11:27:37 -0500

Remember X509 certificates in the context. Store peer/self certificate digests in handshake state. svn:r12382
author: Nick Mathewson <nickm@torproject.org> 2007-11-05 18:15:50 +0000
committer: Nick Mathewson <nickm@torproject.org> 2007-11-05 18:15:50 +0000
commit: ea1bea5830ad90d9ea14a84ffa4b465827ff8af4 (patch)
tree: 1b09992d04b57640ec53b0b8b963990a706519b4 /doc/TODO
parent: 22c31d91ab5766db23f65a28d01009f594095901 (diff)
download: tor-ea1bea5830ad90d9ea14a84ffa4b465827ff8af4.tar.gz
tor-ea1bea5830ad90d9ea14a84ffa4b465827ff8af4.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/doc/TODO b/doc/TODO
index b32be7a262..9c4fbca972 100644
--- a/doc/TODO
+++ b/doc/TODO
@@ -43,6 +43,7 @@ Things we'd like to do in 0.2.0.x:
           connection.
       - LINK_AUTH cells
         - Code to generate
+          o Remember certificate digests from TLS
         - Code to parse and check
         - Unit tests
       - Revised handshake: TLS
@@ -57,6 +58,7 @@ Things we'd like to do in 0.2.0.x:
         - After we send NETINFO, send CERT and LINK_AUTH if needed.
         - Once we get a good LINK_AUTH, the connection is OPEN.
         - Ban most cell types on a non-OPEN connection.
+      - Make code work right wrt TLS context rotation.
       - NETINFO fallout
         - Don't extend a circuit over a noncanonical connection with
           mismatched address.
author	Nick Mathewson <nickm@torproject.org>	2007-11-05 18:15:50 +0000
committer	Nick Mathewson <nickm@torproject.org>	2007-11-05 18:15:50 +0000
commit	ea1bea5830ad90d9ea14a84ffa4b465827ff8af4 (patch)
tree	1b09992d04b57640ec53b0b8b963990a706519b4 /doc/TODO
parent	22c31d91ab5766db23f65a28d01009f594095901 (diff)
download	tor-ea1bea5830ad90d9ea14a84ffa4b465827ff8af4.tar.gz tor-ea1bea5830ad90d9ea14a84ffa4b465827ff8af4.zip