On Tue, Jul 11, 2006 at 06:23:27PM -0400, Juiceman wrote: > On 7/11/06, Matthew Toseland <toad at amphibian.dyndns.org> wrote: > >That's called "update over mandatory". There are two complications: > >1. We must be able to verify the signature on the update. We don't trust > >our peers *THAT* much that we'd deploy unsigned code from them! > >2. We must determine whether the revocation key has been blown. This > >means we must get a majority or universal verdict from a number of our > >peers on this fact. > > > > Pardon my question if its not realistic, but instead of having > incompatible nodes completely disconnect from each other, could we > maybe have it go into a "limp mode" where only a white-listed set of > SSK keys could be requested, and no data-inserts at all?
They'd have to fetch the CHKs linked by the SSK. That would require special messages. Which we would need anyway, because the format of request messages may at some point be changed. So we are left with a dedicated set of commands for updating. Nextgens has already implemented "lame mode", this will be committed soon, it will allow for node-to-node text messages to nodes which are incompatible. (Provided the link protocol doesn't change, which it will soon). > This would > allow for old nodes to still pull down the update and verify it, but > keep them from affecting routing? > > I suppose you would have to allow all CHK's to be requested though, > since the update's CHK would be unknown to us, unless the newer node > puts the list of CHK's in its white-list when it receives an update, > then old node requests the SSK, gets the list of CHK's and requests > those which we be allowed by the newer node. Far too complex, and doesn't allow for changing request messages. Just provide some commands specifically for updating. > > This would stop malicious nodes from affecting bandwith of the network > and if we took it a bit further a well behaved node would stop > requesting or sending anything except the update once a certain > percentage of its routes report it to be out of date. -- Matthew J Toseland - toad at amphibian.dyndns.org Freenet Project Official Codemonkey - http://freenetproject.org/ ICTHUS - Nothing is impossible. Our Boss says so. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: Digital signature URL: <https://emu.freenetproject.org/pipermail/tech/attachments/20060711/ba900935/attachment.pgp>
