Implement the /tor/keys/fp-sk/ URL format. That mostly finishes the server side of 157.

svn:r17611

2 files changed, 12 insertions, 2 deletions

diff --git a/dir-spec.txt b/dir-spec.txt
index d7e393b..b48f251 100644
--- a/dir-spec.txt
+++ b/dir-spec.txt
@@ -1556,6 +1556,15 @@ $Id$
    available at:
       http://<hostname>/tor/keys/sk/<F>.z
 
+   The key certificate whose identity key fingerprint is <F> and whose signing
+   key fingerprint is <S> should be available at:
+
+      http://<hostname>/tor/keys/fp-sk/<F>-<S>.z
+
+   (As usual, clients may request multiple certificates using:
+       http://<hostname>/tor/keys/fp-sk/<F1>-<S1>+<F2>-<S2>.z  )
+   [The above fp-sk format was not supported before Tor 0.2.1.9-alpha.]
+
    The most recent descriptor for a server whose identity key has a
    fingerprint of <F> should be available at:
       http://<hostname>/tor/server/fp/<F>.z
diff --git a/proposals/157-specific-cert-download.txt b/proposals/157-specific-cert-download.txt
index 2cae13b..e54a987 100644
--- a/proposals/157-specific-cert-download.txt
+++ b/proposals/157-specific-cert-download.txt
@@ -15,8 +15,9 @@ History:
 
 Status:
 
-  Cross-certification is implemented for new certificates, but not yet
-  required.
+  As of 0.2.1.9-alpha:
+    Cross-certification is implemented for new certificates, but not yet
+    required.  Directories support the tor/keys/fp-sk urls.
 
 Overview: