bitcoin-wallet icon indicating copy to clipboard operation
bitcoin-wallet copied to clipboard

Published 20 hours ago verified publisher icon bitcoin-wallet

Support TLS connection to trusted peer

Open cdhowie opened this issue 6 years ago • 3 comments
trafficstars

Supporting a TLS connection to the trusted peer eliminates the need to trust either the network path or a VPN provider. It's likely much easier for users to run/find a full node with TLS support than it is to set up a VPN on an Android device.

cdhowie avatar Jan 24 '19 22:01 cdhowie

Afaik bitcoind still doesn't support TLS.

schildbach avatar Jan 24 '19 22:01 schildbach

It is trivial to set up stunnel to provide this functionality against any full node implementation. (In fact I'd argue that bitcoind shouldn't implement TLS listening support. That's what stunnel is for.)

cdhowie avatar Jan 25 '19 00:01 cdhowie

@cdhowie Ok, you're right in that one could use stunnel, and I probably would do that myself too. Still I think there should be something easy to use built into bitcoind. Recently, I learned there is something on the way: https://gist.github.com/jonasschnelli/c530ea8421b8d0e80c51486325587c52 (also see discussion on the bitcoin-devel list).

In any case this would need to be built into bitcoinj, rather than an app like Bitcoin Wallet. For apps, this should be almost transparent (except maybe some TLS info in the network monitor). Please feel free to submit a PR.

schildbach avatar Apr 08 '19 12:04 schildbach