[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #31669 [Core Tor/Tor]: Invalid signature for service descriptor signing key: expired



#31669: Invalid signature for service descriptor signing key: expired
--------------------------+------------------------------
 Reporter:  a_p           |          Owner:  (none)
     Type:  defect        |         Status:  new
 Priority:  Medium        |      Milestone:
Component:  Core Tor/Tor  |        Version:  Tor: 0.4.1.5
 Severity:  Normal        |     Resolution:
 Keywords:                |  Actual Points:
Parent ID:                |         Points:
 Reviewer:                |        Sponsor:
--------------------------+------------------------------

Comment (by arma):

 This message sounds like there is an onion service involved, but the onion
 service is broken (its signing key is old, perhaps because its clock is
 super wrong).

 Was this a warning-level log? Your quote doesn't say what log severity it
 was.

 Were there any onion services involved in these exit relays? E.g. they
 hosted some or they were visiting some as a client?

 The other possibility is that they were simply being normal HSDirs, and
 relays that receive encrypted onion descriptors still validate them enough
 to find this error. In that case we should consider turning the log into
 an info-level log, since there is nothing your relay can do about it.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/31669#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs