This is an automated email from the git hooks/post-receive script.
dgoulet pushed a change to branch main in repository tor.
from 4d3f42a6f2 Merge branch 'maint-0.4.7' new 6fcae8e0d0 relay: Don't send DESTROY remote reason backward or forward new 10d755ead5 Merge branch 'tor-gitlab/mr/608' into maint-0.4.5 new 5cc6ab0c1e Merge branch 'maint-0.4.5' into maint-0.4.6 new eee35adf74 Merge branch 'maint-0.4.6' into maint-0.4.7 new bf30943cb7 Merge branch 'maint-0.4.7'
The 5 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference.
Summary of changes: changes/ticket40649 | 4 ++++ src/core/or/command.c | 11 +++++++---- 2 files changed, 11 insertions(+), 4 deletions(-) create mode 100644 changes/ticket40649
This is an automated email from the git hooks/post-receive script.
dgoulet pushed a commit to branch main in repository tor.
commit 6fcae8e0d080d7d0875eab4a0118e8fdaf5e832c Author: David Goulet dgoulet@torproject.org AuthorDate: Tue Aug 2 15:49:03 2022 -0400
relay: Don't send DESTROY remote reason backward or forward
Fixes #40649
Signed-off-by: David Goulet dgoulet@torproject.org --- changes/ticket40649 | 4 ++++ src/core/or/command.c | 11 +++++++---- 2 files changed, 11 insertions(+), 4 deletions(-)
diff --git a/changes/ticket40649 b/changes/ticket40649 new file mode 100644 index 0000000000..28df58f106 --- /dev/null +++ b/changes/ticket40649 @@ -0,0 +1,4 @@ + o Minor bugfixes (relay): + - Do not propagate either forward or backward a DESTROY remote reason when + closing a circuit so to avoid a possible side channel. Fixes bug 40649; + bugfix on 0.1.2.4-alpha. diff --git a/src/core/or/command.c b/src/core/or/command.c index 65853f7844..a8b93dc9a0 100644 --- a/src/core/or/command.c +++ b/src/core/or/command.c @@ -629,9 +629,11 @@ command_process_destroy_cell(cell_t *cell, channel_t *chan) if (!CIRCUIT_IS_ORIGIN(circ) && chan == TO_OR_CIRCUIT(circ)->p_chan && cell->circ_id == TO_OR_CIRCUIT(circ)->p_circ_id) { - /* the destroy came from behind */ + /* The destroy came from behind so nullify its p_chan. Close the circuit + * with a DESTROYED reason so we don't propagate along the path forward the + * reason which could be used as a side channel. */ circuit_set_p_circid_chan(TO_OR_CIRCUIT(circ), 0, NULL); - circuit_mark_for_close(circ, reason|END_CIRC_REASON_FLAG_REMOTE); + circuit_mark_for_close(circ, END_CIRC_REASON_DESTROYED); } else { /* the destroy came from ahead */ circuit_set_n_circid_chan(circ, 0, NULL); if (CIRCUIT_IS_ORIGIN(circ)) { @@ -639,9 +641,10 @@ command_process_destroy_cell(cell_t *cell, channel_t *chan) } else { /* Close the circuit so we stop queuing cells for it and propagate the * DESTROY cell down the circuit so relays can stop queuing in-flight - * cells for this circuit which helps with memory pressure. */ + * cells for this circuit which helps with memory pressure. We do NOT + * propagate the remote reason so not to create a side channel. */ log_debug(LD_OR, "Received DESTROY cell from n_chan, closing circuit."); - circuit_mark_for_close(circ, reason | END_CIRC_REASON_FLAG_REMOTE); + circuit_mark_for_close(circ, END_CIRC_REASON_DESTROYED); } } }
This is an automated email from the git hooks/post-receive script.
dgoulet pushed a commit to branch main in repository tor.
commit 10d755ead5d32b3affbc958b04cb298d6153f751 Merge: 0c984e0ec2 6fcae8e0d0 Author: David Goulet dgoulet@torproject.org AuthorDate: Tue Aug 2 16:13:58 2022 -0400
Merge branch 'tor-gitlab/mr/608' into maint-0.4.5
changes/ticket40649 | 4 ++++ src/core/or/command.c | 11 +++++++---- 2 files changed, 11 insertions(+), 4 deletions(-)
This is an automated email from the git hooks/post-receive script.
dgoulet pushed a commit to branch main in repository tor.
commit 5cc6ab0c1e21e6c410f28fcbe67876277dab633d Merge: e69cf2340b 10d755ead5 Author: David Goulet dgoulet@torproject.org AuthorDate: Tue Aug 2 16:14:02 2022 -0400
Merge branch 'maint-0.4.5' into maint-0.4.6
changes/ticket40649 | 4 ++++ src/core/or/command.c | 11 +++++++---- 2 files changed, 11 insertions(+), 4 deletions(-)
This is an automated email from the git hooks/post-receive script.
dgoulet pushed a commit to branch main in repository tor.
commit eee35adf74066581f19ea687f4b5c2f0974676be Merge: 645eff49ac 5cc6ab0c1e Author: David Goulet dgoulet@torproject.org AuthorDate: Tue Aug 2 16:14:02 2022 -0400
Merge branch 'maint-0.4.6' into maint-0.4.7
changes/ticket40649 | 4 ++++ src/core/or/command.c | 11 +++++++---- 2 files changed, 11 insertions(+), 4 deletions(-)
This is an automated email from the git hooks/post-receive script.
dgoulet pushed a commit to branch main in repository tor.
commit bf30943cb75911d70367106af644d4273baaa85d Merge: 4d3f42a6f2 eee35adf74 Author: David Goulet dgoulet@torproject.org AuthorDate: Tue Aug 2 16:14:02 2022 -0400
Merge branch 'maint-0.4.7'
changes/ticket40649 | 4 ++++ src/core/or/command.c | 11 +++++++---- 2 files changed, 11 insertions(+), 4 deletions(-)
tor-commits@lists.torproject.org
-
gitolite role