Página inicial Explorar Ajuda
Entrar
piros
/
tor
3
0
Fork 0
Arquivos Issues 0 Pull Requests 0 Wiki
Ver código fonte

Merge branch 'maint-0.3.1'

Nick Mathewson 7 anos atrás
pai
dd8eeabfd1 23c4592ee9
commit
c7d0096f9d
2 arquivos alterados com 7 adições e 2 exclusões
Visão dividida Mostrar estatísticas do Diff
  1. 5 0
      changes/trove-2017-008
  2. 2 2
      src/or/rendservice.c

+ 5 - 0
changes/trove-2017-008
Ver arquivo 

@@ -0,0 +1,5 @@
 
+  o Major bugfixes (security, hidden services, loggging):
 
+    - Fix a bug where we could log uninitialized stack when a certain
 
+      hidden service error occurred while SafeLogging was disabled.
 
+      Fixes bug #23490; bugfix on 0.2.7.2-alpha.
 
+      This is also tracked as TROVE-2017-008 and CVE-2017-0380.

+ 2 - 2
src/or/rendservice.c
Ver arquivo 

@@ -3278,6 +3278,8 @@ rend_service_intro_established(origin_circuit_t *circuit,
 
              (unsigned)circuit->base_.n_circ_id);
 
     goto err;
 
   }
 
+  base32_encode(serviceid, REND_SERVICE_ID_LEN_BASE32 + 1,
 
+                rend_pk_digest, REND_SERVICE_ID_LEN);
 
   /* We've just successfully established a intro circuit to one of our
 
    * introduction point, account for it. */
 
   intro = find_intro_point(circuit);
 
@@ -3294,8 +3296,6 @@ rend_service_intro_established(origin_circuit_t *circuit,
 
   service->desc_is_dirty = time(NULL);
 
   circuit_change_purpose(TO_CIRCUIT(circuit), CIRCUIT_PURPOSE_S_INTRO);
 
 
-  base32_encode(serviceid, REND_SERVICE_ID_LEN_BASE32 + 1,
 
-                rend_pk_digest, REND_SERVICE_ID_LEN);
 
   log_info(LD_REND,
 
            "Received INTRO_ESTABLISHED cell on circuit %u for service %s",
 
            (unsigned)circuit->base_.n_circ_id, serviceid);