mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-27 22:03:31 +01:00
r11745@Kushana: nickm | 2006-12-29 00:00:28 -0500
Close any directory connection on which we have received 10MB or more of data. This prevents a malicious directory cache from running us out of memory by spooling an infinite amount of data. (Not a terribly good attack, but hey, every one helps.) svn:r9210
This commit is contained in:
parent
8728e2826f
commit
0e172d9f6e
@ -75,6 +75,7 @@ Changes in version 0.1.2.5-xxxx - 200?-??-??
|
||||
it's happening. (Bug #364)
|
||||
- When we change nameservers or IP addresses, reset and re-launch
|
||||
our tests for DNS hijacking.
|
||||
- Block an obscure DoS attack from directory caches.
|
||||
|
||||
o Security bugfixes:
|
||||
- Stop sending the HttpProxyAuthenticator string to directory
|
||||
|
@ -1283,6 +1283,12 @@ connection_dir_reached_eof(dir_connection_t *conn)
|
||||
return retval;
|
||||
}
|
||||
|
||||
/** If any directory object is arriving, and it's over 10MB large, we're
|
||||
* getting DoS'd. (As of 0.1.2.x, raw directories are about 1MB, and we never
|
||||
* ask for more than 96 router descriptors at a time.)
|
||||
*/
|
||||
#define MAX_DIRECTORY_OBJECT_SIZE (10*(1<<20))
|
||||
|
||||
/** Read handler for directory connections. (That's connections <em>to</em>
|
||||
* directory servers and connections <em>at</em> directory servers.)
|
||||
*/
|
||||
@ -1307,7 +1313,12 @@ connection_dir_process_inbuf(dir_connection_t *conn)
|
||||
return 0;
|
||||
}
|
||||
|
||||
/* XXXX012 for READ states, might want to make sure inbuf isn't too big */
|
||||
if (buf_datalen(conn->_base.inbuf) > MAX_DIRECTORY_OBJECT_SIZE) {
|
||||
log_warn(LD_HTTP, "Too much data received from directory connection; "
|
||||
"DOS attempt or protocol shift.");
|
||||
connection_mark_for_close(TO_CONN(conn));
|
||||
return -1;
|
||||
}
|
||||
|
||||
if (!conn->_base.inbuf_reached_eof)
|
||||
log_debug(LD_HTTP,"Got data, not eof. Leaving on inbuf.");
|
||||
|
Loading…
Reference in New Issue
Block a user