[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #7216 [Tor]: networkstatus_check_consensus_signature() shouldn't warn because of missing certs

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #7216 [Tor]: networkstatus_check_consensus_signature() shouldn't warn because of missing certs
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 24 Jun 2013 16:41:44 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 24 Jun 2013 12:41:56 -0400
In-reply-to: <045.38dce020a7313da48070d6069d159337@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.38dce020a7313da48070d6069d159337@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#7216: networkstatus_check_consensus_signature() shouldn't warn because of missing
certs
-----------------------------+----------------------------------------------
 Reporter:  nickm            |          Owner:                  
     Type:  defect           |         Status:  needs_revision  
 Priority:  normal           |      Milestone:  Tor: unspecified
Component:  Tor              |        Version:                  
 Keywords:  tor-client easy  |         Parent:                  
   Points:                   |   Actualpoints:                  
-----------------------------+----------------------------------------------
Changes (by nickm):

  * status:  needs_review => needs_revision


Comment:

 Hm.  So the issue is that we don't want to _always_ suppress this message.
 We only want to suppress it in the case where we might succeed in
 verifying the networkstatus if we succeed in downloading one or more of
 the missing certificates that we're downloading right now.

 But we already try to do that with the "(n_good + n_missing_key -
 n_dl_failed_key < n_required)" check above.  Perhaps the problem is how
 our call to authority_cert_dl_looks_uncertain() only looks at the
 authority identity, and not at the desired signing key that we're trying
 to get a certificate for?

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7216#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #9122 [Tor]: Recent regression causing confparse error
Next by Author: Re: [tor-bugs] #9122 [Tor]: Recent regression causing confparse error
Previous by thread: Re: [tor-bugs] #7216 [Tor]: networkstatus_check_consensus_signature() shouldn't warn because of missing certs
Next by thread: [tor-bugs] #9067 [Tor]: Choice of address and match of fascist_firewall_allows_address* need to consider ipv6
Index(es):
- Author
- Thread