[tor-bugs] #23764 [Core Tor/Tor]: hs-v3: No live consensus on client with a bridge
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Oct 4 14:10:59 UTC 2017
#23764: hs-v3: No live consensus on client with a bridge
------------------------------+--------------------------------
Reporter: dgoulet | Owner: (none)
Type: defect | Status: new
Priority: High | Milestone: Tor: 0.3.2.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Keywords: tor-hs, prop224
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
------------------------------+--------------------------------
Today we got someone coming in the v3 testing hub IRC channel that
couldn't use v3 onion at all.
Turns out that this log kept happening for any v3 address:
{{{
[info] hs_client_refetch_hsdesc(): Can't fetch descriptor for service
[scrubbed] because we are missing a live consensus. Stalling connection.
}}}
But its tor never got a live consensus. We could see it was trying to get
it from its bridge:
{{{
[info] Received http status code 304 ("Not modified") from server
'BRIDGE_IP' while fetching consensus directory.
}}}
Sooooo, somehow the bridge has a consensus that thinks is live enough to
use but when the client gets it, it doesn't think it is live. I can
imagine clock skew between the client and bridge could be causing this?
Thus, this makes me question the use of "live consensus" in the HS v3
subsystem. v2 doesn't look for that at all, it only cares if tor has
completed a circuit then it uses the consensus even if not live.
Maybe client side could only use the consensus tor thinks it can use and
we hope that it is enough to reach the service?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23764>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list