[tor-bugs] #10849 [Tor]: tunneldirconns 0 makes hidden services publish descriptors over http -- and they're refused

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Feb 12 06:46:57 UTC 2014


#10849: tunneldirconns 0 makes hidden services publish descriptors over http -- and
they're refused
------------------------+---------------------------------
     Reporter:  arma    |      Owner:
         Type:  defect  |     Status:  needs_review
     Priority:  normal  |  Milestone:  Tor: 0.2.5.x-final
    Component:  Tor     |    Version:
   Resolution:          |   Keywords:  tor-hs 024-backport
Actual Points:          |  Parent ID:
       Points:          |
------------------------+---------------------------------

Comment (by rransom):

 Replying to [comment:19 isis]:
 > I tested my patch and it ''appears'' to be working, but we should
 probably temporarily add some more `LD_DIR` logs to
 `directory_initiate_command_rend()` and maybe a few other related
 functions to see what is getting passed in.
 [https://trac.torproject.org/projects/tor/attachment/ticket/10849/TICKET10849
 -isis-hsdesc-use-orport-patch_debug.REND.DIR.log Here's the relevant log
 output] from the the build with my patch.

 That didn't fix it:
 {{{
 Feb 12 04:57:57.000 [debug] {DIR} directory_initiate_command_rend():
 anonymized 1, use_begindir 0.
 Feb 12 04:57:57.000 [debug] {DIR} directory_initiate_command_rend():
 Initiating hidden-service v2 descriptor upload
 }}}

 The following line only means that Tor has successfully ''started the
 process of uploading'' its HS descriptors, not that it has in fact
 successfully uploaded them.  (This is horribly confusing.  Someone should
 fix it.)
 {{{
 Feb 12 04:57:57.000 [info] {REND} upload_service_descriptor():
 Successfully uploaded v2 rend descriptors!
 }}}

 And in the log that you posted, the upload operations never reported
 completion, either successful or unsuccessful.  (That's probably a bug
 somewhere too.)


 > Also the specs are still not at all clear to me if we're supposed to be
 using `BEGIN_DIR` with anonymous directory requests, or if `BEGIN_DIR` is
 only for tunneled directory connections.

 A directory connection is defined to be ‘tunneled’ iff it uses
 `BEGIN_DIR`.  Almost all anonymous directory connections should also be
 tunneled; the sole exception is a DirPort reachability-test connection.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10849#comment:21>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list