Explain better why we are about to load the master key.

author Nick Mathewson <nickm@torproject.org>

Mon, 10 Aug 2015 14:35:47 +0000 (10:35 -0400)

committer Nick Mathewson <nickm@torproject.org>

Wed, 19 Aug 2015 17:36:51 +0000 (13:36 -0400)
author Nick Mathewson <nickm@torproject.org>
Mon, 10 Aug 2015 14:35:47 +0000 (10:35 -0400)
committer Nick Mathewson <nickm@torproject.org>
Wed, 19 Aug 2015 17:36:51 +0000 (13:36 -0400)
diff --git a/src/or/routerkeys.c b/src/or/routerkeys.c

index 2b967dd893d012099246b5e5942d67d19e26de7e..025fa6f5143729bac025a4cdf3066b286766e409 100644 (file)
--- a/src/or/routerkeys.c
+++ b/src/or/routerkeys.c
@@ -660,6 +660,20 @@ load_ed_keys(const or_options_t *options, time_t now)
      need_new_signing_key ||
      EXPIRES_SOON(check_signing_cert, options->TestingSigningKeySlop);
  
+  if (need_new_signing_key) {
+    log_notice(LD_OR, "It looks like I need to generate and sign a new "
+               "medium-term signing key, because %s. To do that, I need to "
+               "load (or create) the permanent master identity key.",
+            (NULL == use_signing) ? "I don't have one" :
+            EXPIRES_SOON(check_signing_cert, 0) ? "the one I have is expired" :
+            "you asked me to make one with --keygen");
+  } else if (want_new_signing_key) {
+    log_notice(LD_OR, "It looks like I should try to generate and sign a "
+               "new medium-term signing key, because the one I have is "
+               "going to expire soon. To do that, I'm going to have to try to "
+               "load the permanent master identity key.");
+  }
+
    {
      uint32_t flags =
        (INIT_ED_KEY_SPLIT|
author	Nick Mathewson <nickm@torproject.org>
	Mon, 10 Aug 2015 14:35:47 +0000 (10:35 -0400)
committer	Nick Mathewson <nickm@torproject.org>
	Wed, 19 Aug 2015 17:36:51 +0000 (13:36 -0400)