]> git.ipfire.org Git - thirdparty/tor.git/commit
projects / thirdparty / tor.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b701b79) | patch
Don't allow a rendezvous point to have a private address
authorDavid Goulet <dgoulet@ev0ke.net>
Tue, 8 Dec 2015 18:42:27 +0000 (13:42 -0500)
committerDavid Goulet <dgoulet@ev0ke.net>
Tue, 8 Dec 2015 20:57:12 +0000 (15:57 -0500)
commit4a7964b3bcfa5439ba10e227c2ca8a4564123538
treeab278a1bb2a399c97c76cef979c675c53c0b4f5btree | snapshot
parentb701b7962b256ad7c4c43ad191a8ee094613af11commit | diff
Don't allow a rendezvous point to have a private address

When an HS process an INTRODUCE2 cell, we didn't validate if the IP address
of the rendezvous point was a local address. If it's the case, we end up
wasting resources by trying to extend to a local address which fails since
we do not allow that in circuit_extend().

This commit now rejects a rendezvous point that has a local address once
seen at the hidden service side unless ExtendAllowPrivateAddresses is set.

Fixes #8976

Signed-off-by: David Goulet <dgoulet@ev0ke.net>
src/or/circuitbuild.c diff | blob | blame | history
src/or/circuitbuild.h diff | blob | blame | history
src/or/rendservice.c diff | blob | blame | history
Mirror of https://git.torproject.org/tor.git