onion-tunnel: Permit loopback as destination (!331) · Merge requests · The Tor Project / Core / onionmasq

Merged Clara Engler requested to merge cve/onionmasq:dev/cve/udp-localhost into main 3 months ago

Nov 28, 2024

onion-tunnel: Permit loopback as destination · 48b68bc5

Clara Engler authored 3 months ago

This commit modifies the logic of onion-tunnel's parser module in a
fashion such that packets sent to the loopback interface are no longer
dropped.

This functionality is crucial for testing, but it also makes sense to
leave it in normal production, because the purpose of this filter
primarily lies within the avoidance of a DNS resolve loop (see #129).
Because the DNS resolver is in the link local domain, the loopback check
can probably be safely removed.

Fixes #128

48b68bc5

onion-tunnel: Permit loopback as destination

Merge request reports

Activity