On 25 Apr (13:02:28), Q Misell via tor-dev wrote:
Hi all,
I've spent some time working on ACME for Tor hidden services (you may have seen discussion of this work on the onion-advisors mailing list). Full details of the project are available at https://e.as207960.net/w4bdyj/AX8Ffqsd
Attached is my proposal for a change to the Tor Rendezvous Specification to support the inclusion of CAA records in hidden service descriptors.
My fork of Tor implementing publishing these records is available at https://e.as207960.net/w4bdyj/XMN03dmD
Thanks for this!
I've merged this as proposal 343! I like it, this seems very simple approach especially for the ACME support that would allow us to roll in within the existing CA infrastructure. As you noted previously not perfect but this is what the world has right now.
I took a look at your C-tor patch and I would strongly encourage you to submit a MR to our Gitlab.
https://gitlab.torproject.org/tpo/core/tor
Thanks! David