diff options
| author | Roger Dingledine <arma@torproject.org> | 2008-08-20 05:21:43 +0000 |
|---|---|---|
| committer | Roger Dingledine <arma@torproject.org> | 2008-08-20 05:21:43 +0000 |
| commit | 8f5642edbc9549e260b923186bc98e0fb4e8cf6e (patch) | |
| tree | d1f6bb74744e742c5f65edd66a92afa125246f75 /src/or/circuitbuild.c | |
| parent | cc8b2247bfcecae2fe96d4133c8f403db06c93f7 (diff) | |
| download | tor-8f5642edbc9549e260b923186bc98e0fb4e8cf6e.tar.gz tor-8f5642edbc9549e260b923186bc98e0fb4e8cf6e.zip | |
Relays now reject risky extend cells: if the extend cell includes
a digest of all zeroes, or asks to extend back to the relay that
sent the extend cell, tear down the circuit. Ideas suggested
by rovv.
svn:r16605
Diffstat (limited to 'src/or/circuitbuild.c')
| -rw-r--r-- | src/or/circuitbuild.c | 33 |
1 files changed, 29 insertions, 4 deletions
diff --git a/src/or/circuitbuild.c b/src/or/circuitbuild.c index 842ecbd1d9..66f2a95c0b 100644 --- a/src/or/circuitbuild.c +++ b/src/or/circuitbuild.c @@ -712,10 +712,13 @@ circuit_note_clock_jumped(int seconds_elapsed) circuit_expire_all_dirty_circs(); } -/** Take the 'extend' cell, pull out addr/port plus the onion skin. Make - * sure we're connected to the next hop, and pass it the onion skin using - * a create cell. Return -1 if we want to warn and tear down the circuit, - * else return 0. +/** Take the 'extend' <b>cell</b>, pull out addr/port plus the onion + * skin and identity digest for the next hop. If we're already connected, + * pass the onion skin to the next hop using a create cell; otherwise + * launch a new OR connection, and <b>circ</b> will notice when the + * connection succeeds or fails. + * + * Return -1 if we want to warn and tear down the circuit, else return 0. */ int circuit_extend(cell_t *cell, circuit_t *circ) @@ -753,6 +756,28 @@ circuit_extend(cell_t *cell, circuit_t *circ) onionskin = cell->payload+RELAY_HEADER_SIZE+4+2; id_digest = cell->payload+RELAY_HEADER_SIZE+4+2+ONIONSKIN_CHALLENGE_LEN; + /* First, check if they asked us for 0000..0000. We support using + * an empty fingerprint for the first hop (e.g. for a bridge relay), + * but we don't want to let people send us extend cells for empty + * fingerprints -- a) because it opens the user up to a mitm attack, + * and b) because it lets an attacker force the relay to hold open a + * new TLS connection for each extend request. */ + if (tor_digest_is_zero(id_digest)) { + log_fn(LOG_PROTOCOL_WARN, LD_PROTOCOL, + "Client asked me to extend without specifying an id_digest."); + return -1; + } + + /* Next, check if we're being asked to connect to the hop that the + * extend cell came from. There isn't any reason for that, and it can + * assist circular-path attacks. */ + if (!memcmp(id_digest, TO_OR_CIRCUIT(circ)->p_conn->identity_digest, + DIGEST_LEN)) { + log_fn(LOG_PROTOCOL_WARN, LD_PROTOCOL, + "Client asked me to extend back to the previous hop."); + return -1; + } + n_conn = connection_or_get_by_identity_digest(id_digest); /* If we don't have an open conn, or the conn we have is obsolete |