[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #9599 [EFF-HTTPS Everywhere]: HTTPS Everywhere builds should be deterministic

Subject: Re: [tor-bugs] #9599 [EFF-HTTPS Everywhere]: HTTPS Everywhere builds should be deterministic
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 27 Aug 2013 01:15:25 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 26 Aug 2013 21:15:32 -0400
In-reply-to: <048.481cab65fd8dc5b31f82af9e06effa5f@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <048.481cab65fd8dc5b31f82af9e06effa5f@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#9599: HTTPS Everywhere builds should be deterministic
--------------------------------------+-----------------
     Reporter:  micahlee              |      Owner:  pde
         Type:  task                  |     Status:  new
     Priority:  normal                |  Milestone:
    Component:  EFF-HTTPS Everywhere  |    Version:
   Resolution:                        |   Keywords:
Actual Points:                        |  Parent ID:
       Points:                        |
--------------------------------------+-----------------

Comment (by micahlee):

 We figured out why it's not deterministic. Running makexpi.sh runs utils
 /merge-rulesets.py, which regenerates
 src/chrome/content/rules/default.rulesets. And it turns out that zip files
 contain the last modified date of each file. So each time you run
 makexpi.sh, you're changing the modified date of default.rulesets, and
 therefore the xpi file ends up with a different checksum.

 It looks like this code is here specifically to touch default.rulesets to
 change it's modified timestamp: https://gitweb.torproject.org/https-
 everywhere.git/blob/HEAD:/utils/merge-rulesets.py#l85

 But it's not working. When you run makexpi.sh, default.rulesets ends up
 with the current time anyway.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9599#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #6845 [Tor bundles/installation]: Forensic Analysis of current TBB on Windows 7
Next by Author: Re: [tor-bugs] #9599 [EFF-HTTPS Everywhere]: HTTPS Everywhere builds should be deterministic
Previous by thread: Re: [tor-bugs] #6845 [Tor bundles/installation]: Forensic Analysis of current TBB on Windows 7
Next by thread: Re: [tor-bugs] #9599 [EFF-HTTPS Everywhere]: HTTPS Everywhere builds should be deterministic
Index(es):
- Author
- Thread