When examining descriptors as a dirserver, reject ones with bad versions

This is an extra fix for bug 21278: it ensures that these descriptors and platforms will never be listed in a legit consensus.
author: Nick Mathewson <nickm@torproject.org> 2017-02-13 11:18:04 -0500
committer: Nick Mathewson <nickm@torproject.org> 2017-02-15 07:46:34 -0500
commit: 02e05bd74dbec614397b696cfcda6525562a4675 (patch)
tree: 0374a950812ef2c731a01c16a5f51fa030cf15cc /changes
parent: f63e06d3dc6757d08ecf26d418ba59bfe060de39 (diff)
download: tor-02e05bd74dbec614397b696cfcda6525562a4675.tar.gz
tor-02e05bd74dbec614397b696cfcda6525562a4675.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/changes/bug21278_prevention b/changes/bug21278_prevention
new file mode 100644
index 0000000000..e07f0a670c
--- /dev/null
+++ b/changes/bug21278_prevention
@@ -0,0 +1,4 @@
+  o Minor features (directory authority):
+    - Directory authorities now reject descriptors that claim to be
+      malformed versions of Tor. Helps prevent exploitation of bug 21278.
+
author	Nick Mathewson <nickm@torproject.org>	2017-02-13 11:18:04 -0500
committer	Nick Mathewson <nickm@torproject.org>	2017-02-15 07:46:34 -0500
commit	02e05bd74dbec614397b696cfcda6525562a4675 (patch)
tree	0374a950812ef2c731a01c16a5f51fa030cf15cc /changes
parent	f63e06d3dc6757d08ecf26d418ba59bfe060de39 (diff)
download	tor-02e05bd74dbec614397b696cfcda6525562a4675.tar.gz tor-02e05bd74dbec614397b696cfcda6525562a4675.zip