[tor-bugs] #32529 [Core Tor/Tor]: Tor transparent IPv6 destination_from_socket(): Bug

Tor Bug Tracker & Wiki blackhole at torproject.org
Mon Nov 18 11:33:57 UTC 2019 

#32529: Tor transparent IPv6 destination_from_socket(): Bug
-----------------------------------+------------------------------
 Reporter:  avengermsoft           |          Owner:  (none)
     Type:  defect                 |         Status:  new
 Priority:  Medium                 |      Component:  Core Tor/Tor
  Version:  Tor: 0.4.1.6           |       Severity:  Critical
 Keywords:  Tor Transparent Proxy  |  Actual Points:
Parent ID:                         |         Points:
 Reviewer:                         |        Sponsor:
-----------------------------------+------------------------------
 Configuration file torrc
 {{{
 User root
 PidFile /opt/var/run/tor.pid
 #Log info file /opt/var/log/tor.log
 Log notice file /opt/var/log/tor.log
 ExcludeExitNodes {RU},{UA},{AM},{KG},{BY}
 StrictNodes 1
 TransPort 192.168.97.97:9151
 TransPort [::]:9151
 ExitRelay 0
 GeoIPFile /opt/share/tor/geoip
 GeoIPv6File /opt/share/tor/geoip6
 DataDirectory /opt/var/lib/tor
 VirtualAddrNetwork 10.192.0.0/10
 VirtualAddrNetworkIPv6 [fc00::]/7
 DNSPort 127.0.0.1:9153
 DNSPort [::1]:9153
 AutomapHostsOnResolve 1
 ClientUseIPv4 0
 ClientUseIPv6 1
 }}}

 Redirecting traffic to the port 9151 goes through ip6tables.
 {{{
 ip6tables -t filter -A INPUT -p tcp --dport 9040 -j ACCEPT
 ip6tables -t nat -A PREROUTING -p tcp -d fc00::/7 -j REDIRECT --to-port
 9151
 ip6tables -t nat -A OUTPUT -p tcp -d fc00::/7 -j REDIRECT --to-port 9151
 }}}

 I start {{{curl -6 -v http://www.flibustahezeous3.onion/}}} and get an
 error
 {{{
 Nov 18 01:04:06.000 [notice] Tor 0.4.1.6 opening new log file.
 Nov 18 01:04:06.589 [notice] Tor 0.4.1.6 running on Linux with Libevent
 2.1.8-stable, OpenSSL 1.1.1d, Zlib 1.2.11, Liblzma N/A, and Libzstd N/A.

 Nov 18 01:08:27.257 [notice] Opening Socks listener on 127.0.0.1:9050
 Nov 18 01:08:27.257 [notice] Opened Socks listener on 127.0.0.1:9050
 Nov 18 01:08:27.257 [notice] Opening DNS listener on 127.0.0.1:9153
 Nov 18 01:08:27.257 [notice] Opened DNS listener on 127.0.0.1:9153
 Nov 18 01:08:27.257 [notice] Opening DNS listener on [::1]:9153
 Nov 18 01:08:27.257 [notice] Opened DNS listener on [::1]:9153
 Nov 18 01:08:27.257 [notice] Opening Transparent pf/netfilter listener on
 192.168.97.97:9151
 Nov 18 01:08:27.257 [notice] Opened Transparent pf/netfilter listener on
 192.168.97.97:9151
 Nov 18 01:08:27.257 [notice] Opening Transparent pf/netfilter listener on
 [::]:9151
 Nov 18 01:08:27.257 [notice] Opened Transparent pf/netfilter listener on
 [::]:9151
 Nov 18 01:08:38.000 [notice] Bootstrapped 100% (done): Done

 Nov 18 10:23:58.000 [warn] destination_from_socket(): Bug: Received
 transparent data from an unsuported socket family 10 (on Tor 0.4.1.6 )
 Nov 18 10:23:58.000 [warn] Fetching original destination failed. Closing.
 }}}

 I start {{{curl -4 -v http://www.flibustahezeous3.onion/}}} and everything
 is fine. IPv4 IS OK.

 How to fix?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32529>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list