[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 26 Feb 2019 15:39:56 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 26 Feb 2019 10:40:06 -0500
In-reply-to: <043.1a0c8d2569a7d39461d225f1928b20b4@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.1a0c8d2569a7d39461d225f1928b20b4@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#29583: HSv3: Faulty cross-certs in introduction point keys (allows naive
onionbalance for v3s)
-------------------------------------------------+-------------------------
 Reporter:  asn                                  |          Owner:  (none)
     Type:  defect                               |         Status:  new
 Priority:  High                                 |      Milestone:  Tor:
                                                 |  0.4.1.x-final
Component:  Core Tor/Tor                         |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tor-hs scaling onionbalance          |  Actual Points:
  040-backport 035-backport needs-proposal       |
Parent ID:  #26768                               |         Points:
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+-------------------------

Comment (by dgoulet):

 Replying to [comment:3 nickm]:
 > If we do decide to fix this (and I think we should), I think we'll need
 a multistep process.  Something like this:

 This means basically that we end up being right now doing OnionBalance v3
 easily but then by 2022 when we start removing the cert from the
 descriptor, we won't be able anymore...

 In other words, fixing this probably means not doing the OnionBalance
 naively..... hmmmm

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29583#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #7779 [Core Tor/Stem]: pydoc and comment fixes
Next by Author: Re: [tor-bugs] #25110 [Core Tor/Tor]: Warn operators who set MyFamily that they must also set ContactInfo
Previous by thread: Re: [tor-bugs] #29583 [Core Tor/Tor]: HSv3: Faulty cross-certs in introduction point keys (allows naive onionbalance for v3s)
Next by thread: Re: [tor-bugs] #29057 [Core Tor/sbws]: Adapt bandwidth file classes to be compatible with stem (descriptors, etc) documents
Index(es):
- Author
- Thread