git.ipfire.org Git - thirdparty/tor.git/commit

author	Nick Mathewson <nickm@torproject.org>
	Wed, 22 Oct 2003 16:41:35 +0000 (16:41 +0000)
committer	Nick Mathewson <nickm@torproject.org>
	Wed, 22 Oct 2003 16:41:35 +0000 (16:41 +0000)
commit	7604cfe61b7ae997c850bdc175b9e4e9684d020c
tree	ef955719e52cfc4357f0a7bed792d251f694d7ea	tree \| snapshot
parent	cf2fe9d1da0b91302355542d60050ae720ceaf5d	commit \| diff

Clock skew fixes.

Allow some slop (currently 3 minutes) when checking certificate validity.

Change certificate lifetime from 1 year to 2 days.  Since we
regenerate regularly (we regenerate regularly, right??), this
shouldn't be a problem.

Have directories reject descriptors published too far in the future
(currently 30 minutes).  If dirservs don't do this:
    0) Today is January 1, 2000.
    1) A very skewed server publishes descriptor X with a declared
       publication time of August 1, 2000.
    2) The directory includes X.
    3) Because of certificate lifetime issues, nobody can use the
       skewed server.
    4) The server fixes its skew, and goes to republish a new descriptor Y
       with publication time of January 1, 2000.
    5) But because the directory already has a "more recent" descriptor X,
       it rejects descriptor "Y" as superseded!

This patch should make step 2 go away.

svn:r658

src/common/tortls.c		diff \| blob \| blame \| history
src/or/dirserv.c		diff \| blob \| blame \| history