29 lines
1.2 KiB
Markdown
29 lines
1.2 KiB
Markdown
git-annex sync over tor
|
|
|
|
Mostly working!
|
|
|
|
Current todo list:
|
|
|
|
* Current use of hGetLine to read protocol messages allows memory DOS by
|
|
sending a very long line. May also have line ending problems across OS's.
|
|
Switch to instead reading a packed data structure that starts with its
|
|
length, and refuse to read messages > 32k.
|
|
* When a transfer can't be done because another transfer of the same
|
|
object is already in progress, the message about this is output by the
|
|
remotedaemon --debug, but not forwarded to the peer, which shows
|
|
"Connection reset by peer"
|
|
* git annex drop --from peer1, when the peer does not have a file,
|
|
shows "<socket: 18>: hGetLine: end of file"; the peer has closed the
|
|
connection.
|
|
* Think about locking some more. What happens if the connection to the peer
|
|
is dropped while we think we're locking content there from being dropped?
|
|
|
|
Eventually:
|
|
|
|
* Limiting authtokens to read-only access.
|
|
* Revoking authtokens. (This and read-only need a name associated with an
|
|
authtoken, so the user can adjust its configuration after creating it.)
|
|
* address exchange via electrum-mnemonic or magic wormhole (see PAKE)
|
|
* webapp UI for easy pairing
|
|
* friend-of-a-friend peer discovery to build more interconnected networks
|
|
of nodes
|