[tor-bugs] #22688 [Core Tor/Tor]: HSDir3s should refuse direct client descriptor uploads and downloads, even if encrypted

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Jun 21 22:31:57 UTC 2017


#22688: HSDir3s should refuse direct client descriptor uploads and downloads, even
if encrypted
-------------------------+-------------------------------------------------
     Reporter:  teor     |      Owner:
         Type:  defect   |     Status:  new
     Priority:  Medium   |  Milestone:  Tor: 0.3.1.x-final
    Component:  Core     |    Version:  Tor: unspecified
  Tor/Tor                |   Keywords:  prop224, relay-safety,
     Severity:  Normal   |  031-backport, no-030-backport
Actual Points:  0.2      |  Parent ID:
       Points:  0.2      |   Reviewer:
      Sponsor:           |
-------------------------+-------------------------------------------------
 handle_post_hs_descriptor and handle_get_hs_descriptor_v3 should check
 that the connection is:
 * encrypted, and
 * not from a client (channel_is_client in 0.3.1.1-alpha and later
 correctly identifies unauthenticated peers, which are clients and
 bridges).

 For extra safety, we can check if the circuit is from a relay.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22688>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list