#2442 closed defect (fixed)
A bunch of hidden service warnings should be protocol warnings
| Reported by: | Sebastian | Owned by: | rransom |
|---|---|---|---|
| Priority: | Medium | Milestone: | Tor: 0.2.2.x-final |
| Component: | Core Tor/Tor | Version: | |
| Severity: | Keywords: | easy tor-hs | |
| Cc: | Actual Points: | ||
| Parent ID: | Points: | ||
| Reviewer: | Sponsor: |
Description
We've had quite a few reports about log messages such as:
Possible replay detected! We received an INTRODUCE2 cell with same first part of Diffie-Hellman handshake 5 seconds ago.
and
INTRODUCE2 cell is too old. Discarding
These are messages that an operator can't do anything about, and they should be in the protocol warnings category instead.
Child Tickets
Change History (8)
comment:1 Changed 9 years ago by
| Component: | Tor Relay → Tor hidden services |
|---|
comment:2 Changed 8 years ago by
| Keywords: | easy added |
|---|---|
| Milestone: | → Tor: 0.2.3.x-final |
| Priority: | normal → minor |
comment:3 Changed 8 years ago by
| Owner: | set to rransom |
|---|---|
| Status: | new → assigned |
comment:4 Changed 8 years ago by
In general I agree with you about moving warns to protocol-warns if there's nothing the operator can do about it. But in the case you raise this is a warning at a hidden service. It's quite possible that hidden service was legitimately under some sort of protocol-level attack. If you get a lot of these as a hidden service operator, you really should consider turning off your hidden service, investigating, etc.
Maybe that's what the log message should tell them to do?
comment:5 Changed 8 years ago by
| Milestone: | Tor: 0.2.3.x-final → Tor: 0.2.2.x-final |
|---|---|
| Priority: | minor → normal |
| Status: | assigned → needs_review |
See bug2442-v2 ( https://git.torproject.org/rransom/tor.git bug2442-v2 ) for a fix. This branch includes the fix for #3989.
comment:6 Changed 8 years ago by
| Resolution: | → fixed |
|---|---|
| Status: | needs_review → closed |
Merging this into 0.2.2: The impact isn't high, but the risk is negligible, and rransom says that otherwise he'll have a pile of conflicts with other HS fixes that 0.2.2 should have unless this gets in.
comment:7 Changed 7 years ago by
| Keywords: | tor-hs added |
|---|
comment:8 Changed 7 years ago by
| Component: | Tor Hidden Services → Tor |
|---|
It would be nice if somebody did this.