diff options
| author | teor <teor2345@gmail.com> | 2016-11-18 11:46:01 +1100 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2016-12-01 09:44:53 -0500 |
| commit | f80a43d16f5f7a5e63d0949df74077c875ee5d94 (patch) | |
| tree | a2a00189d5a2f94dc9ca641abc159b4fed220aee /changes | |
| parent | 91abd60cad2fa3ca9f85fe20956f5f6a336c9c67 (diff) | |
| download | tor-f80a43d16f5f7a5e63d0949df74077c875ee5d94.tar.gz tor-f80a43d16f5f7a5e63d0949df74077c875ee5d94.zip | |
Stop ignoring hidden service key anonymity when first starting tor
Instead, refuse to start tor if any hidden service key has been used in
a different hidden service anonymity mode.
Fixes bug 20638; bugfix on 17178 in 0.2.9.3-alpha; reported by ahf.
The original single onion service poisoning code checked poisoning state
in options_validate, and poisoned in options_act. This was problematic,
because the global array of hidden services had not been populated in
options_validate (and there were ordrering issues with hidden service
directory creation).
This patch fixes this issue in rend_service_check_dir_and_add, which:
* creates the directory, or checks permissions on an existing directory, then
* checks the poisoning state of the directory, then
* poisons the directory.
When validating, only the permissions checks and the poisoning state checks
are perfomed (the directory is not modified).
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/bug20638 | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/changes/bug20638 b/changes/bug20638 new file mode 100644 index 0000000000..260d7d0a75 --- /dev/null +++ b/changes/bug20638 @@ -0,0 +1,5 @@ + o Minor bugfixes (hidden services): + - Stop ignoring hidden service key anonymity when first starting tor. + Instead, refuse to start tor if any hidden service key has been used in + a different hidden service anonymity mode. + Fixes bug 20638; bugfix on 17178 in 0.2.9.3-alpha; reported by ahf. |