Discussion:
[libtorrent] why transfering can not start if torrent file embedded certificate
linxs
2017-05-27 03:18:01 UTC
Permalink
I make a torrent file with a root certificate embedded.
Use client_test to transfer data peer to peer. client_test shows tracker server works OK but can not get peer info and transfer data.
the root certificate is self-signature. And the tracker server is setup with bntn with no https service.
can libtorrent deal with this case?
Arvid Norberg
2017-05-27 10:42:45 UTC
Permalink
Post by linxs
I make a torrent file with a root certificate embedded.
Use client_test to transfer data peer to peer. client_test shows tracker
server works OK but can not get peer info and transfer data.
In what sense does the tracker work if you don't get any peers? What alerts
do you get to indicate that it works?
Post by linxs
the root certificate is self-signature. And the tracker server is setup
with bntn with no https service.
can libtorrent deal with this case?
libtorrent definitely supports swarms with self-signed root certificates.
However, the tracker must be running over SSL and present a valid
certificate signed (directly or indirectly) by that root certificate.

Also, every client need to present a valid certificate signed (directly or
indirectly) by the root certificate.

See the unit test for example use:
https://github.com/arvidn/libtorrent/blob/master/test/test_ssl.cpp#L125

Since you didn't mention calling set_ssl_certificate() on your clients, you
may want to take another look at the SSL torrent documentation:
http://libtorrent.org/manual-ref.html#ssl-torrents
--
Arvid Norberg
Loading...