From: Nick Mathewson <nickm@torproject.org>
Date: Wed, 9 Aug 2006 06:54:02 +0000 (+0000)
Subject:  r7058@Kushana:  nickm | 2006-08-08 23:53:46 -0700
X-Git-Tag: tor-0.1.2.1-alpha~92
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6c22840ad14e14e4e819efb153e313b4cbf09f42;p=thirdparty%2Ftor.git

 r7058@Kushana:  nickm | 2006-08-08 23:53:46 -0700
 Clarify point about certs. We have been over this before, but it seems simpler than what we are considering now.


svn:r6997
---

diff --git a/doc/tor-spec.txt b/doc/tor-spec.txt
index 1179f131f6..c1f0cd9eee 100644
--- a/doc/tor-spec.txt
+++ b/doc/tor-spec.txt
@@ -322,6 +322,12 @@ when do we rotate which keys (tls, link, etc)?
    hello cells, but only if those clients are nonconformant.  Am I right?
    In any case, this seems way more reliable.  -NM]
 
+   [IOW, the proposal would be: if the other side has a cert without OU=Tor,
+   send a HELLO cell. Otherwise, assume v0 unless they send a HELLO
+   cell.  Way simpler, right?  If we're dealing with something proxylike or
+   old, we might send an unexpected HELLO cell.  If they die, they were badly
+   written. -NM]
+
 5. Circuit management
 
 5.1. CREATE and CREATED cells