]> git.ipfire.org Git - thirdparty/tor.git/commit
projects / thirdparty / tor.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f6bd8fb) | patch
Prohibit the use of one entry node with an HS
authorDavid Goulet <dgoulet@ev0ke.net>
Wed, 2 Sep 2015 12:53:39 +0000 (14:53 +0200)
committerNick Mathewson <nickm@torproject.org>
Wed, 2 Sep 2015 14:47:20 +0000 (10:47 -0400)
commit07b3028db74af246ca98c2d3a86d5efde9aa33c2
tree36afeb232f96610861c14f5216355e9c7e0ab632tree | snapshot
parentf6bd8fbb806abaf4015d8b8e08a737bc09ec63f6commit | diff
Prohibit the use of one entry node with an HS

In a nutshell, since a circuit can not exit at its entry point, it's very
easy for an attacker to find the hidden service guard if only one EntryNodes
is specified since for that guard, the HS will refuse to build a rendezvous
circuit to it.

For now, the best solution is to stop tor to allow a single EntryNodes for
an hidden service.

Fixes #14917

Signed-off-by: David Goulet <dgoulet@ev0ke.net>
changes/bug14917 [new file with mode: 0644] blob
src/or/config.c diff | blob | blame | history
src/or/routerset.c diff | blob | blame | history
src/or/routerset.h diff | blob | blame | history
Mirror of https://git.torproject.org/tor.git