[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] r14411: Backport: apply patch from lodger: reject requests for rever (in tor/branches/tor-0_2_0-patches: . src/or)

To: or-cvs@xxxxxxxxxxxxx
Subject: [or-cvs] r14411: Backport: apply patch from lodger: reject requests for rever (in tor/branches/tor-0_2_0-patches: . src/or)
From: nickm@xxxxxxxx
Date: Tue, 22 Apr 2008 12:33:07 -0400 (EDT)
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-cvs-outgoing@xxxxxxxx
Delivered-to: or-cvs@xxxxxxxx
Delivery-date: Tue, 22 Apr 2008 12:33:10 -0400
Reply-to: or-dev@xxxxxxxxxxxxx
Sender: owner-or-cvs@xxxxxxxxxxxxx

Author: nickm
Date: 2008-04-22 12:33:06 -0400 (Tue, 22 Apr 2008)
New Revision: 14411

Modified:
   tor/branches/tor-0_2_0-patches/
   tor/branches/tor-0_2_0-patches/ChangeLog
   tor/branches/tor-0_2_0-patches/src/or/dns.c
Log:
 r15274@tombo:  nickm | 2008-04-22 12:32:48 -0400
 Backport: apply patch from lodger: reject requests for reverse-dns lookup of names in private address space.  make non-exits reject all dns requests.  Fixes bug 619.



Property changes on: tor/branches/tor-0_2_0-patches
___________________________________________________________________
 svk:merge ticket from /tor/020 [r15274] on 49666b30-7950-49c5-bedf-9dc8f3168102

Modified: tor/branches/tor-0_2_0-patches/ChangeLog
===================================================================
--- tor/branches/tor-0_2_0-patches/ChangeLog	2008-04-22 16:32:55 UTC (rev 14410)
+++ tor/branches/tor-0_2_0-patches/ChangeLog	2008-04-22 16:33:06 UTC (rev 14411)
@@ -28,8 +28,14 @@
       nwf, bugfix on 0.2.0.16-alpha.
     - Warn less verbosely about clock skew from netinfo cells from
       untrusted sources.  Fixes bug 663.
+    - Non-exit relays no longer allow DNS requests.  Fixes bug 619.
+      Patch from Lodger.
 
+  o Minor features (security):
+    - Reject requests for reverse-dns lookup of names in a private
+      address space.  Patch from Lodger.
 
+
 Changes in version 0.2.0.23-rc - 2008-03-24
   Tor 0.2.0.23-rc is the fourth release candidate for the 0.2.0 series. It
   makes bootstrapping faster if the first directory mirror you contact

Modified: tor/branches/tor-0_2_0-patches/src/or/dns.c
===================================================================
--- tor/branches/tor-0_2_0-patches/src/or/dns.c	2008-04-22 16:32:55 UTC (rev 14410)
+++ tor/branches/tor-0_2_0-patches/src/or/dns.c	2008-04-22 16:33:06 UTC (rev 14411)
@@ -549,9 +549,14 @@
   or_circuit_t *oncirc = TO_OR_CIRCUIT(exitconn->on_circuit);
   int is_resolve, r;
   char *hostname = NULL;
+  routerinfo_t *me = router_get_my_routerinfo();
   is_resolve = exitconn->_base.purpose == EXIT_PURPOSE_RESOLVE;
 
-  r = dns_resolve_impl(exitconn, is_resolve, oncirc, &hostname);
+  if (is_resolve && me &&
+      policy_is_reject_star(me->exit_policy)) /* non-exit */
+    r = -1;
+  else
+    r = dns_resolve_impl(exitconn, is_resolve, oncirc, &hostname);
   switch (r) {
     case 1:
       /* We got an answer without a lookup -- either the answer was
@@ -660,9 +665,12 @@
    * .in-addr.arpa address but this isn't a resolve request, kill the
    * connection.
    */
-  if ((r = parse_inaddr_arpa_address(exitconn->_base.address, NULL)) != 0) {
-    if (r == 1)
+  if ((r = parse_inaddr_arpa_address(exitconn->_base.address, &in)) != 0) {
+    if (r == 1) {
       is_reverse = 1;
+         if (is_internal_IP(ntohl(in.s_addr), 0)) /* internal address */
+           return -1;
+    }
 
     if (!is_reverse || !is_resolve) {
       if (!is_reverse)

Prev by Author: [or-cvs] r14410: apply patch from lodger: reject requests for reverse-dns loo (in tor/trunk: . src/or)
Next by Author: [or-cvs] r14412: Note a place to refactor. (in tor/trunk: . src/or)
Previous by thread: [or-cvs] r14410: apply patch from lodger: reject requests for reverse-dns loo (in tor/trunk: . src/or)
Next by thread: [or-cvs] r14412: Note a place to refactor. (in tor/trunk: . src/or)
Index(es):
- Author
- Thread