[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point

To: undisclosed-recipients: ;
Subject: [tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 21 Mar 2018 15:00:47 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 21 Mar 2018 11:00:59 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#25568: hs: Lookup failure cache when introducing to an intro point
------------------------------+--------------------------------
     Reporter:  dgoulet       |      Owner:  dgoulet
         Type:  defect        |     Status:  assigned
     Priority:  Medium        |  Milestone:  Tor: 0.3.4.x-final
    Component:  Core Tor/Tor  |    Version:
     Severity:  Normal        |   Keywords:  security, tor-hs
Actual Points:                |  Parent ID:
       Points:                |   Reviewer:
      Sponsor:                |
------------------------------+--------------------------------
 It turns out that if a descriptor contains 10 times the same intro point,
 and that the first introduction attempt fails, we'll try to connect to the
 same failing intro point again for all subsequent remaining intro points.

 The intro point failure cache was introduced to avoid such a situation but
 it is only used between two descriptors that is if an intro point failed
 from the first descriptor and that intro point is still present in the
 second descriptor fetched, we ignore it.

 However, this situation is about the same intro point in the same
 descriptor. In normal circumstances, this can't happen but it is still
 allowed by the protocol.

 One issue with this is that a malicious service would induce many circuits
 out of the client than necessary. This can be used, theoretically, for a
 client guard discovery attack.

 This affects both v2 and v3.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25568>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #25591 [Obfuscation/Snowflake]: Pass ICE server information from Broker to WebRTC Client
Next by Author: Re: [tor-bugs] #24902 [Core Tor/Tor]: Denial of Service mitigation subsystem
Previous by thread: Re: [tor-bugs] #25239 [Metrics/Relay Search]: Link to server descriptor and extra info descriptor when relays have a DirPort
Next by thread: Re: [tor-bugs] #25568 [Core Tor/Tor]: hs: Lookup failure cache when introducing to an intro point
Index(es):
- Author
- Thread