Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge branch 'bug11464_023_squashed' into maint-0.2.3

Nick Mathewson 11 years ago
parent
2658e70d16 09ed8a5dbb
commit
75b4975d77
5 changed files with 58 additions and 0 deletions
Unified View Show Diff Stats
  1. 5 0
      changes/bug11464_023
  2. 11 0
      src/or/networkstatus.c
  3. 33 0
      src/or/routerlist.c
  4. 1 0
      src/or/routerlist.h
  5. 8 0
      src/or/routerparse.c

+ 5 - 0
changes/bug11464_023
View File 

@@ -0,0 +1,5 @@
 
+  o Major features (security):
 
+    - Block authority signing keys that were used on an authorities
 
+      vulnerable to the "heartbleed" bug in openssl (CVE-2014-0160).
 
+      (We don't have any evidence that these keys _were_ compromised;
 
+      we're doing this to be prudent.) Resolves ticket 11464.

+ 11 - 0
src/or/networkstatus.c
View File 

@@ -453,6 +453,17 @@ networkstatus_check_document_signature(const networkstatus_t *consensus,
 
                  DIGEST_LEN))
 
                  DIGEST_LEN))
 
     return -1;
 
     return -1;
 
 
 
+  if (authority_cert_is_blacklisted(cert)) {
 
+    /* We implement blacklisting for authority signing keys by treating
 
+     * all their signatures as always bad. That way we don't get into
 
+     * crazy loops of dropping and re-fetching signatures. */
 
+    log_warn(LD_DIR, "Ignoring a consensus signature made with deprecated"
 
+             " signing key %s",
 
+             hex_str(cert->signing_key_digest, DIGEST_LEN));
 
+    sig->bad_signature = 1;
 
+    return 0;
 
+  }
 
+
 
   signed_digest_len = crypto_pk_keysize(cert->signing_key);
 
   signed_digest_len = crypto_pk_keysize(cert->signing_key);
 
   signed_digest = tor_malloc(signed_digest_len);
 
   signed_digest = tor_malloc(signed_digest_len);
 
   if (crypto_pk_public_checksig(cert->signing_key,
 
   if (crypto_pk_public_checksig(cert->signing_key,

+ 33 - 0
src/or/routerlist.c
View File 

@@ -458,6 +458,39 @@ authority_cert_dl_failed(const char *id_digest, int status)
 
   download_status_failed(&cl->dl_status, status);
 
   download_status_failed(&cl->dl_status, status);
 
 }
 
 }
 
 
 
+static const char *BAD_SIGNING_KEYS[] = {
 
+  "09CD84F751FD6E955E0F8ADB497D5401470D697E", // Expires 2015-01-11 16:26:31
 
+// dizum still needs to rotate as of 2014-04-14
 
+//"0E7E9C07F0969D0468AD741E172A6109DC289F3C", // Expires 2014-08-12 10:18:26
 
+// dannenberg still needs to rotate as of 2014-04-14
 
+//"57B85409891D3FB32137F642FDEDF8B7F8CDFDCD", // Expires 2015-02-11 17:19:09
 
+  "87326329007AF781F587AF5B594E540B2B6C7630", // Expires 2014-07-17 11:10:09
 
+  "98CC82342DE8D298CF99D3F1A396475901E0D38E", // Expires 2014-11-10 13:18:56
 
+  "9904B52336713A5ADCB13E4FB14DC919E0D45571", // Expires 2014-04-20 20:01:01
 
+  "9DCD8E3F1DD1597E2AD476BBA28A1A89F3095227", // Expires 2015-01-16 03:52:30
 
+  "A61682F34B9BB9694AC98491FE1ABBFE61923941", // Expires 2014-06-11 09:25:09
 
+  "B59F6E99C575113650C99F1C425BA7B20A8C071D", // Expires 2014-07-31 13:22:10
 
+  "D27178388FA75B96D37FA36E0B015227DDDBDA51", // Expires 2014-08-04 04:01:57
 
+  NULL,
 
+};
 
+
 
+/** DOCDOC */
 
+int
 
+authority_cert_is_blacklisted(const authority_cert_t *cert)
 
+{
 
+  char hex_digest[HEX_DIGEST_LEN+1];
 
+  int i;
 
+  base16_encode(hex_digest, sizeof(hex_digest),
 
+                cert->signing_key_digest, sizeof(cert->signing_key_digest));
 
+
 
+  for (i = 0; BAD_SIGNING_KEYS[i]; ++i) {
 
+    if (!strcasecmp(hex_digest, BAD_SIGNING_KEYS[i])) {
 
+      return 1;
 
+    }
 
+  }
 
+  return 0;
 
+}
 
+
 
 /** Return true iff when we've been getting enough failures when trying to
 
 /** Return true iff when we've been getting enough failures when trying to
 
  * download the certificate with ID digest <b>id_digest</b> that we're willing
 
  * download the certificate with ID digest <b>id_digest</b> that we're willing
 
  * to start bugging the user about it. */
 
  * to start bugging the user about it. */

+ 1 - 0
src/or/routerlist.h
View File 

@@ -25,6 +25,7 @@ void authority_cert_dl_failed(const char *id_digest, int status);
 
 void authority_certs_fetch_missing(networkstatus_t *status, time_t now);
 
 void authority_certs_fetch_missing(networkstatus_t *status, time_t now);
 
 int router_reload_router_list(void);
 
 int router_reload_router_list(void);
 
 int authority_cert_dl_looks_uncertain(const char *id_digest);
 
 int authority_cert_dl_looks_uncertain(const char *id_digest);
 
+int authority_cert_is_blacklisted(const authority_cert_t *cert);
 
 smartlist_t *router_get_trusted_dir_servers(void);
 
 smartlist_t *router_get_trusted_dir_servers(void);
 
 
 
 const routerstatus_t *router_pick_directory_server(dirinfo_type_t type,
 
 const routerstatus_t *router_pick_directory_server(dirinfo_type_t type,

+ 8 - 0
src/or/routerparse.c
View File 

@@ -3053,6 +3053,14 @@ networkstatus_parse_vote_from_string(const char *s, const char **eos_out,
 
         log_warn(LD_DIR,"Mismatch between identities in certificate and vote");
 
         log_warn(LD_DIR,"Mismatch between identities in certificate and vote");
 
         goto err;
 
         goto err;
 
       }
 
       }
 
+      if (ns->type != NS_TYPE_CONSENSUS) {
 
+        if (authority_cert_is_blacklisted(ns->cert)) {
 
+          log_warn(LD_DIR, "Rejecting vote signature made with blacklisted "
 
+                   "signing key %s",
 
+                   hex_str(ns->cert->signing_key_digest, DIGEST_LEN));
 
+          goto err;
 
+        }
 
+      }
 
       voter->address = tor_strdup(tok->args[2]);
 
       voter->address = tor_strdup(tok->args[2]);
 
       if (!tor_inet_aton(tok->args[3], &in)) {
 
       if (!tor_inet_aton(tok->args[3], &in)) {
 
         log_warn(LD_DIR, "Error decoding IP address %s in network-status.",
 
         log_warn(LD_DIR, "Error decoding IP address %s in network-status.",