blob: 11d441dabac7c8fa994d8095fa0513a9c250558d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
git-annex sync over tor
Mostly working!
Current todo list:
* Current use of hGetLine to read protocol messages allows memory DOS by
sending a very long line. May also have line ending problems across OS's.
Switch to instead reading a packed data structure that starts with its
length, and refuse to read messages > 32k.
* When a transfer can't be done because another transfer of the same
object is already in progress, the message about this is output by the
remotedaemon --debug, but not forwarded to the peer, which shows
"Connection reset by peer"
* Think about locking some more. What happens if the connection to the peer
is dropped while we think we're locking content there from being dropped?
Eventually:
* Limiting authtokens to read-only access.
* Revoking authtokens. (This and read-only need a name associated with an
authtoken, so the user can adjust its configuration after creating it.)
* address exchange via electrum-mnemonic or magic wormhole (see PAKE)
* webapp UI for easy pairing
* friend-of-a-friend peer discovery to build more interconnected networks
of nodes
|