Skip to content

Sauteed Onions implementation for Tor Browser

Introduction

Sauteed onions "associate registered domain names with onion addresses. These associations are established in TLS certificates, making them publicly enumerable in append-only CT logs". Sauteed Onions can be an interesting alternative to Onion-Location, offering enhanced service discovery properties.

The Onion Plan has an overview and an (outdated1) roadmap draft proposal to bring Sauteed Onions to Tor.

Recently, this proposal got some momentum during the Onion-Location: problems and fixes session, and a new roadmap proposal is being planned, with the discussion happening in this merge request, as part of Tor's Strategic Plan for 2023: Goal 2 (product) - Objective 2 (any person on the planet be able to use Tor to access any online service) - KR 1 - [...] onion names plan draft is concluded.

Proposal

This ticket is a proposal to implement Sauteed Onions in the Tor Browser. There are many ways/levels where this can be done, and which are discussed at this merge request for the documentation/roadmap. The simplest case would be to just port and improve the existing WebExtension.

/cc @pierov @syverson @linus @rgdd

Notes

  1. The roadmap update will probably recommend to implement Sauteed Onions before implementing a DNS-based service discovery.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information