mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-28 06:13:31 +01:00
Merge branch 'bug6833'
This commit is contained in:
commit
286e95f0a5
4
changes/bug6833
Normal file
4
changes/bug6833
Normal file
@ -0,0 +1,4 @@
|
||||
o Minor bugfixes (directory authority):
|
||||
- Reject consensus votes with more than 64 known-flags. We aren't even
|
||||
close to that limit yet, and our code doesn't handle it
|
||||
correctly. Fixes bug 6833; bugfix on 0.2.0.1-alpha.
|
@ -2101,6 +2101,9 @@ typedef struct vote_microdesc_hash_t {
|
||||
typedef struct vote_routerstatus_t {
|
||||
routerstatus_t status; /**< Underlying 'status' object for this router.
|
||||
* Flags are redundant. */
|
||||
/** How many known-flags are allowed in a vote? This is the width of
|
||||
* the flags field of vote_routerstatus_t */
|
||||
#define MAX_KNOWN_FLAGS_IN_VOTE 64
|
||||
uint64_t flags; /**< Bit-field for all recognized flags; index into
|
||||
* networkstatus_t.known_flags. */
|
||||
char *version; /**< The version that the authority says this router is
|
||||
|
@ -3004,6 +3004,16 @@ networkstatus_parse_vote_from_string(const char *s, const char **eos_out,
|
||||
log_warn(LD_DIR, "known-flags not in order");
|
||||
goto err;
|
||||
}
|
||||
if (ns->type != NS_TYPE_CONSENSUS &&
|
||||
smartlist_len(ns->known_flags) > MAX_KNOWN_FLAGS_IN_VOTE) {
|
||||
/* If we allowed more than 64 flags in votes, then parsing them would make
|
||||
* us invoke undefined behavior whenever we used 1<<flagnum to do a
|
||||
* bit-shift. This is only for votes and opinions: consensus users don't
|
||||
* care about flags they don't recognize, and so don't build a bitfield
|
||||
* for them. */
|
||||
log_warn(LD_DIR, "Too many known-flags in consensus vote or opinion");
|
||||
goto err;
|
||||
}
|
||||
|
||||
tok = find_opt_by_keyword(tokens, K_PARAMS);
|
||||
if (tok) {
|
||||
|
Loading…
Reference in New Issue
Block a user