[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[tor-bugs] #12254 [Tor]: Tonga should sign its bridge networkstatus doc? Or maybe change format to v3-style vote?
#12254: Tonga should sign its bridge networkstatus doc? Or maybe change format to
v3-style vote?
-------------------------+----------------------------------
Reporter: arma | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Tor: unspecified
Component: Tor | Version:
Keywords: | Actual Points:
Parent ID: | Points:
-------------------------+----------------------------------
Isis points out that Tonga doesn't sign its networkstatus-bridge
documents.
See networkstatus_dump_bridge_status_to_file() in src/or/networkstatus.c
for background.
In fact, it looks like it's writing out a sort of hybrid smear of various
formats. And metrics has learned to read this hybrid smear.
Adding a signature here wouldn't make a huge difference, since Karsten
sanitizes the documents before publishing them, so the signature wouldn't
be in the public version (and would be wrong anyway). So it is really only
a slight improvement over the current "ssh from one trusted machine to the
other before processing" chain of custody.
Seems to me that if we're going to add a signature and make the various
metrics tools adapt, maybe we should move to having Tonga write out a v3
style vote? Then we'd get various other updates for free (if there are
any, I haven't investigated), and also the format would keep up-to-date
(which makes it sound like a good thing -- "would keep changing" is the
less fun way to say it).
Putting in Tor: unspecified since I don't even know if it's a good idea.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12254>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs