diff options
author | David Goulet <dgoulet@torproject.org> | 2019-10-09 10:39:23 -0400 |
---|---|---|
committer | David Goulet <dgoulet@torproject.org> | 2019-10-09 10:39:23 -0400 |
commit | 03caff6632d74beca06147d1c8dd082900b334f1 (patch) | |
tree | 75851dfc71f10074c2b75bfbea0af7b15c620d31 /control-spec.txt | |
parent | bf318ccb042757cc47e47e19a63d1d825dcf222b (diff) | |
download | torspec-03caff6632d74beca06147d1c8dd082900b334f1.tar.gz torspec-03caff6632d74beca06147d1c8dd082900b334f1.zip |
control-spec: ADD_ONION ClientAuth is v2 only
Signed-off-by: David Goulet <dgoulet@torproject.org>
Diffstat (limited to 'control-spec.txt')
-rw-r--r-- | control-spec.txt | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/control-spec.txt b/control-spec.txt index e95bec1..c77c335 100644 --- a/control-spec.txt +++ b/control-spec.txt @@ -1624,7 +1624,7 @@ "Detach" / ; Do not associate the newly created Onion Service to the current control connection. "BasicAuth" / ; Client authorization is required using the "basic" - method. + method (v2 only). "NonAnonymous" /; Add a non-anonymous Single Onion Service. Tor checks this flag matches its configured hidden service anonymity mode. @@ -1668,11 +1668,11 @@ way to recreate the generated keypair and the corresponding Onion Service at a later date). - If client authorization is enabled using the "BasicAuth" flag, the - service will not be accessible to clients without valid authorization - data (configured with the "HidServAuth" option). The list of authorized - clients is specified with one or more "ClientAuth" parameters. If - "ClientBlob" is not specified for a client, a new credential will be + If client authorization is enabled using the "BasicAuth" flag (which is v2 + only), the service will not be accessible to clients without valid + authorization data (configured with the "HidServAuth" option). The list of + authorized clients is specified with one or more "ClientAuth" parameters. + If "ClientBlob" is not specified for a client, a new credential will be randomly generated and returned. Tor instances can either be in anonymous hidden service mode, or @@ -1724,7 +1724,7 @@ S: 250-PrivateKey=RSA1024:[Blob Redacted] S: 250 OK - C: ADD_ONION NEW:BEST Flags=DiscardPK,BasicAuth Port=22 + C: ADD_ONION NEW:RSA1024 Flags=DiscardPK,BasicAuth Port=22 ClientAuth=alice:[Blob Redacted] ClientAuth=bob S: 250-ServiceID=testonion1234567 S: 250-ClientAuth=bob:[Blob Redacted] |