[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #32439 [Circumvention/Obfs4]: tor can't bootstrap with obfs4 bridge and skewed clock

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #32439 [Circumvention/Obfs4]: tor can't bootstrap with obfs4 bridge and skewed clock
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 12 Nov 2019 12:38:28 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 12 Nov 2019 07:38:38 -0500
In-reply-to: <049.779bb5a594518c73f2c8ef6e7771b0e0@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.779bb5a594518c73f2c8ef6e7771b0e0@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#32439: tor can't bootstrap with obfs4 bridge and skewed clock
-------------------------------------------------+------------------------
 Reporter:  intrigeri                            |          Owner:  (none)
     Type:  defect                               |         Status:  new
 Priority:  Medium                               |      Milestone:
Component:  Circumvention/Obfs4                  |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  bootstrap, clock-skew, AffectsTails  |  Actual Points:
Parent ID:                                       |         Points:
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+------------------------

Comment (by yawning):

 This is not a defect, this is how the protocol is specified.

 Servers should not respond to replayed handshakes.  In order to limit the
 amount of history that each server needs to keep, the number of hours
 since the UNIX epoch is included as part of the handshake authentication
 digest.

 As a concession to reality, per the specification, each server will
 tolerate a skew of up to +/- 1 hour.  While it is not overly difficult to
 increase the amount of skew tolerated, this will result in increased
 resource consumption on the server side, and more expensive handshakes.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32439#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #32439 [Circumvention/Obfs4]: tor can't bootstrap with obfs4 bridge and skewed clock
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #30916 [Core Tor/Tor]: assert in dimap_add_entry()
Next by Author: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #32378, #32385
Previous by thread: Re: [tor-bugs] #32439 [Circumvention/Obfs4]: tor can't bootstrap with obfs4 bridge and skewed clock
Next by thread: [tor-bugs] #32440 [Core Tor/Tor]: Update to November GeoIP2 database
Index(es):
- Author
- Thread