tor never checks TLS certificate lifetimes
We have tor_tls_check_lifetime(), why don't we use it?
This could be an issue if a relay never rotates its certificate, or its certificate is out of date because its clock is wrong.
We have tor_tls_check_lifetime(), why don't we use it?
This could be an issue if a relay never rotates its certificate, or its certificate is out of date because its clock is wrong.