[tor-bugs] #20007 [- Select a component]: Sandbox causing crash when setting HidServAuth when there is a hidden service running

Tor Bug Tracker & Wiki blackhole at torproject.org
Sat Aug 27 19:19:12 UTC 2016


#20007: Sandbox causing crash when setting HidServAuth when there is a hidden
service running
--------------------------------------+--------------------------------
     Reporter:  segfault              |      Owner:
         Type:  defect                |     Status:  new
     Priority:  Medium                |  Milestone:
    Component:  - Select a component  |    Version:  Tor: 0.2.9.2-alpha
     Severity:  Normal                |   Keywords:
Actual Points:                        |  Parent ID:
       Points:                        |   Reviewer:
      Sponsor:                        |
--------------------------------------+--------------------------------
 When the sandbox is enabled and there is a hidden service configured,
 setting HidServAuth via SETCONF results in a permission error.

 Steps to reproduce:

 Start Tor with a hidden service:

 {{{
 /usr/bin/tor --defaults-torrc /usr/share/tor/tor-service-defaults-torrc
 --RunAsDaemon 0 --Log debug --CookieAuthentication 0  --Sandbox 1
 --HiddenServiceDir /var/lib/tor/hidden_service/ --HiddenServicePort 80 >
 tor.log
 }}}

 Try setting HidServAuth via the control port:

 {{{
 echo "AUTHENTICATE
 SETCONF HidServAuth=\"prkszpeygn2a3kxo.onion iGwsXkMwZEHuq/0YCD6IGQ\"" |
 nc -U /var/run/tor/control
 }}}

 Output:

 {{{
 250 OK
 513 Unacceptable option value: Failed to configure rendezvous options. See
 logs for details.
 }}}

 Log:

 {{{
 Aug 27 15:31:55.000 [warn] Directory /var/lib/tor/hidden_service/ cannot
 be read: Permission denied
 Aug 27 15:31:55.000 [warn] Controller gave us config lines that didn't
 validate: Failed to configure rendezvous options. See logs for details.
 }}}

 If we start Tor without a hidden service, it works without errors:

 {{{
 /usr/bin/tor --defaults-torrc /usr/share/tor/tor-service-defaults-torrc
 --RunAsDaemon 0 --Log debug --CookieAuthentication 0  --Sandbox 1 >
 tor.log
 }}}

 Set HidServAuth via the control port:

 {{{
 echo "AUTHENTICATE
 SETCONF HidServAuth=\"prkszpeygn2a3kxo.onion iGwsXkMwZEHuq/0YCD6IGQ\"" |
 nc -U /var/run/tor/control
 }}}

 Output:

 {{{
 250 OK
 250 OK
 }}}

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20007>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list