[tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Feb 26 15:39:56 UTC 2019
#29583: HSv3: Faulty cross-certs in introduction point keys (allows naive
onionbalance for v3s)
-------------------------------------------------+-------------------------
Reporter: asn | Owner: (none)
Type: defect | Status: new
Priority: High | Milestone: Tor:
| 0.4.1.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: tor-hs scaling onionbalance | Actual Points:
040-backport 035-backport needs-proposal |
Parent ID: #26768 | Points:
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by dgoulet):
Replying to [comment:3 nickm]:
> If we do decide to fix this (and I think we should), I think we'll need
a multistep process. Something like this:
This means basically that we end up being right now doing OnionBalance v3
easily but then by 2022 when we start removing the cert from the
descriptor, we won't be able anymore...
In other words, fixing this probably means not doing the OnionBalance
naively..... hmmmm
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29583#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list