From 3b8888c544f3186f12295bc436cbbec1a99cbf02 Mon Sep 17 00:00:00 2001 From: Nick Mathewson Date: Mon, 15 May 2017 13:49:29 -0400 Subject: [PATCH] Initialize the HS cache at startup Failure to do this caused an assertion failure with #22246 . This assertion failure can be triggered remotely, so we're tracking it as medium-severity TROVE-2017-002. --- changes/bug22246 | 6 ++++++ src/or/main.c | 1 + 2 files changed, 7 insertions(+) create mode 100644 changes/bug22246 diff --git a/changes/bug22246 b/changes/bug22246 new file mode 100644 index 0000000000..dbdf31a433 --- /dev/null +++ b/changes/bug22246 @@ -0,0 +1,6 @@ + o Major bugfixes (hidden service directory, security): + - Fix an assertion failure in the hidden service directory code, which + could be used by an attacker to remotely cause a Tor relay process to + exit. Relays running earlier versions of Tor 0.3.0.x should upgrade. + This security issue is tracked as tracked as + TROVE-2017-002. Fixes bug 22246; bugfix on 0.3.0.1-alpha. diff --git a/src/or/main.c b/src/or/main.c index 5549f97998..bc7b3db2b9 100644 --- a/src/or/main.c +++ b/src/or/main.c @@ -2926,6 +2926,7 @@ tor_init(int argc, char *argv[]) rep_hist_init(); /* Initialize the service cache. */ rend_cache_init(); + hs_cache_init(); addressmap_init(); /* Init the client dns cache. Do it always, since it's * cheap. */