-
- Downloads
Sanity-check consensus param values
We need to make sure that the worst thing that a weird consensus param can do to us is to break our Tor (and only if the other Tors are reliably broken in the same way) so that the majority of directory authorities can't pull any attacks that are worse than the DoS that they can trigger by simply shutting down. One of these worse things was the cbtnummodes parameter, which could lead to heap corruption on some systems if the value was sufficiently large. This commit fixes this particular issue and also introduces sanity checking for all consensus parameters.
Showing
- changes/bug2317 9 additions, 0 deletionschanges/bug2317
- doc/spec/dir-spec.txt 6 additions, 2 deletionsdoc/spec/dir-spec.txt
- doc/spec/path-spec.txt 24 additions, 2 deletionsdoc/spec/path-spec.txt
- src/or/circuitbuild.c 46 additions, 21 deletionssrc/or/circuitbuild.c
- src/or/circuitbuild.h 2 additions, 0 deletionssrc/or/circuitbuild.h
- src/or/circuitlist.c 3 additions, 1 deletionsrc/or/circuitlist.c
- src/or/connection_or.c 4 additions, 4 deletionssrc/or/connection_or.c
- src/or/dirvote.h 0 additions, 3 deletionssrc/or/dirvote.h
- src/or/networkstatus.c 33 additions, 10 deletionssrc/or/networkstatus.c
- src/or/networkstatus.h 2 additions, 1 deletionsrc/or/networkstatus.h
- src/or/or.h 27 additions, 1 deletionsrc/or/or.h
- src/or/relay.c 3 additions, 3 deletionssrc/or/relay.c
- src/or/router.c 1 addition, 1 deletionsrc/or/router.c
- src/or/routerlist.c 1 addition, 2 deletionssrc/or/routerlist.c
- src/or/routerparse.c 2 additions, 1 deletionsrc/or/routerparse.c
- src/test/test_dir.c 5 additions, 2 deletionssrc/test/test_dir.c
Loading
Please register or sign in to comment