[tor-bugs] #17945 [Core Tor/Tor]: Stop Tor2Web connecting to (Rendezvous) Single Onion Services
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Feb 23 14:46:19 UTC 2018
#17945: Stop Tor2Web connecting to (Rendezvous) Single Onion Services
-------------------------------------------------+-------------------------
Reporter: teor | Owner: dgoulet
Type: enhancement | Status:
| needs_revision
Priority: Medium | Milestone: Tor:
| 0.3.3.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: tor2web, tor-hs, 029-proposed, 029 | Actual Points:
-teor-no, needs-design, needs-proposal-maybe, |
single-onion, review-group-33 |
Parent ID: #24962 | Points: 5
Reviewer: asn, teor | Sponsor:
-------------------------------------------------+-------------------------
Comment (by teor):
Replying to [comment:48 teor]:
> Also, can we do the whole HS protocol at once:
> * intro point v2 and v3: close the HS INTRODUCE side if both sides are
directly connected (#22689)
> * HS v2: refuse descriptor uploads if the service is directly connected
(#22688)
> * we can't refuse direct descriptor downloads, because Tor2web uses
them
> * HSv3: refuse descriptor uploads and downloads if the client or service
are directly connected (#22688)
My branch bug-22688-22689-033-v2 on https://github.com/teor2345/tor.git
has HSDir and intro single-hop rejects. And it makes the unit tests work.
It doesn't have dgoulet's rendezvous fixes. dgoulet might want to copy my
p_chan checks, and unit test fixes :-)
We should merge the branches together when we're done, and add a changes
file.
> I'll see if I can do these in 15 minutes
Nope, 180 minutes. I should multiply all my estimates by 12.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17945#comment:49>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list