[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [tor/master] changes file for bug11743

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [tor/master] changes file for bug11743
From: nickm@xxxxxxxxxxxxxx
Date: Wed, 7 May 2014 00:42:38 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 06 May 2014 20:43:03 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

commit ea570fa13c3305406790125d01de301b3f894ab1
Author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Date:   Tue May 6 16:28:34 2014 -0400

    changes file for bug11743
---
 changes/bug11743 |   15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/changes/bug11743 b/changes/bug11743
new file mode 100644
index 0000000..89e4bbc
--- /dev/null
+++ b/changes/bug11743
@@ -0,0 +1,15 @@
+  o Major security fixes (directory authorities):
+
+    - Directory authorities now include a digest of each relay's
+      identity key as a part of its microdescriptor.
+
+      This is a workaround for bug #11743, where Tor clients do not
+      support receiving multiple microdescriptors with the same SHA256
+      digest in the same consensus. When clients receive a consensus
+      like this, they only use one of the relays. Without this fix, a
+      hostile relay could selectively disable client use of target
+      relays by constucting a router descriptor with a different
+      identity and the same microdescriptor parameters and getting the
+      authorities to list it in a microdescriptor consensus. This fix
+      prevents an attacker from causing a microdescriptor collision,
+      because the router's identity is not forgeable.



_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [tor/master] Consensus method 18: Add a base64 ID digest to the microdesc
Next by Author: [tor-commits] [tor/master] Merge branch 'bug11743_option_b'
Previous by thread: [tor-commits] [tor/master] Consensus method 18: Add a base64 ID digest to the microdesc
Next by thread: [tor-commits] [tor/master] Merge branch 'bug11743_option_b'
Index(es):
- Author
- Thread