Sign up here and you can log into the forum!

Rtorrent problem

This is the place to ask for how to use software that is (or isn't) included in the various wdlxtv flavours. Questions about software such as rtorrent, NZBGet, sshfs, curlftpfs, ssh, telnet, etc.

Rtorrent problem   

Postby aeksakis21 » Fri Dec 19, 2014 3:06 am

Hello,
Thanks! for wonderful firmware.

FW Base: 1.02.21Device: WDLXTV_LIVE
Latest version: 0.5.1.1

i have problem with one tracker, all torrent downloaded from this tracker doesn't work. i have this error: "Peer certificate cannot be authenticated with known CA certificate"

What can i do?

Many thanks.
aeksakis21
WDTVer
 
Posts: 20
Joined: Wed Jun 20, 2012 11:29 am

Re: Rtorrent problem   

Postby mad_ady » Sat Dec 20, 2014 11:53 pm

I don't know if rtorrent has an option to ignore root ca (which are missing). Otherwise I'll try to add the list of certificates in the next firmware...
User avatar
mad_ady
Developer
 
Posts: 4532
Joined: Fri Nov 05, 2010 9:08 am
Location: Bucharest, Romania

Re: Rtorrent problem   

Postby kroetkroet » Sun Dec 21, 2014 12:17 am

mad_ady: if it may help: https://bbs.archlinux.org/viewtopic.php?id=41721

Not sure if easy on wdlxtv...
WDLXTV-fan! - In case you need further assistance: read our WIKI, search our Forum and most of all: donate 'something' to b-rad for his great efforts!!!
User avatar
kroetkroet
Beta Tester
 
Posts: 1005
Joined: Mon Apr 05, 2010 11:53 pm

Re: Rtorrent problem   

Postby mad_ady » Sun Dec 21, 2014 4:14 am

Thanks for the link. Currently the wdtv lacks most of the root CAs, and I broght this to b-rad's attention 4-5 years ago (my, how time flies!). I think he never included the full certificates because of firmware space limits, but now, with bi2 support, it shouldn't be an issue...

One thing I don't undestand: is this tracker signed by a root ca (e.g. is the certificate declared valid by a browser?), or does he use some bogus root ca that needs to be added? Adding a bogus root ca totally compromises ssl security (this is how man-in-the-middle attacks are done)

PS. The wdtv has only certificates for netflix (under /etc/certs/ca.pem). I'll try to repace them with something better for the next release
User avatar
mad_ady
Developer
 
Posts: 4532
Joined: Fri Nov 05, 2010 9:08 am
Location: Bucharest, Romania

Re: Rtorrent problem   

Postby kroetkroet » Sun Dec 21, 2014 7:42 am

I never saw the error from the topic starter in my rtorrent - who read log files anyway :lol: , but indeed, I kinda doubt if this is a "legit" complaint or a torrent-attack-spambot for the wdlxtv forum :mrgreen:
WDLXTV-fan! - In case you need further assistance: read our WIKI, search our Forum and most of all: donate 'something' to b-rad for his great efforts!!!
User avatar
kroetkroet
Beta Tester
 
Posts: 1005
Joined: Mon Apr 05, 2010 11:53 pm

Re: Rtorrent problem   

Postby mad_ady » Sun Dec 21, 2014 11:36 am

Either way, having the legitimate list of CAs is a good idea
User avatar
mad_ady
Developer
 
Posts: 4532
Joined: Fri Nov 05, 2010 9:08 am
Location: Bucharest, Romania

Re: Rtorrent problem   

Postby mad_ady » Fri Dec 26, 2014 1:06 am

Ok, I managed to add curl certificate support to the firmwares (currently only on svn). It should fix the problem if rtorrent uses curl to check certificates, but I'm not sure if it's the case.

There are other ways to add certificate support to the firmware, but they're more costly in terms of space used.
https://wiki.archlinux.org/index.php/Rtorrent#CA_certificates

So, if anybody is brave to try it out, you'd need an ext3 firmware from svn to see if it makes any difference. Instructions here:
http://wiki.wdlxtv.com/RootFS

Kindly let me know if it works or not.
User avatar
mad_ady
Developer
 
Posts: 4532
Joined: Fri Nov 05, 2010 9:08 am
Location: Bucharest, Romania

Re: Rtorrent problem   

Postby mad_ady » Thu Jan 08, 2015 6:26 am

I could use some testers to flash the 0.5.2.1 beta and see if the rtorrent-missing-ca problem went away or not...
More information here: http://forum.wdlxtv.com/viewtopic.php?f=38&t=9027
User avatar
mad_ady
Developer
 
Posts: 4532
Joined: Fri Nov 05, 2010 9:08 am
Location: Bucharest, Romania


Return to Application Questions

Who is online

Users browsing this forum: No registered users and 1 guest