View Issue Details

IDProjectCategoryView StatusLast Update
0005530GNUnettransport servicepublic2024-05-03 13:59
ReporterChristian Grothoff Assigned Toschanzen  
Status closedResolutionfixed 
Platformi7OSDebian GNU/LinuxOS Versionsqueeze
Target Version0.14.0Fixed in Version0.13.3 
Summary0005530: add replay protection to TCP communicator
DescriptionAs TCP is always bi-redirectional, we can easily add some weak form of replay protection by simply adding a nonce to the KX and requiring that the nonce is sent back. To avoid increasing latency on the initial handshake (and knowing that the first bytes sent will be CORE/CADET KX in all likelihood anyway) we would then simply require that after N bytes the nonce is played back to us.


related to 0006433 assigned Writing a test to simulate an attack on the tcp communicator KX to test the replay protection. 
child of 0005710 confirmed TNG meta issue 


There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2019-01-28 19:24 Christian Grothoff New Issue
2019-01-28 19:24 Christian Grothoff Status new => assigned
2019-01-28 19:24 Christian Grothoff Assigned To => Matthias Wachs
2019-01-28 19:24 Christian Grothoff Assigned To Matthias Wachs =>
2019-01-28 19:24 Christian Grothoff Status assigned => acknowledged
2019-02-12 09:22 Christian Grothoff Target Version => 0.12.0
2019-05-02 14:40 Christian Grothoff Relationship added child of 0005710
2019-11-16 18:41 Christian Grothoff Target Version 0.12.0 => 0.13.0
2020-04-22 17:20 schanzen Target Version 0.13.0 => 0.14.0
2020-06-01 22:21 schanzen Assigned To => t3sserakt
2020-06-01 22:21 schanzen Status acknowledged => assigned
2020-07-17 12:06 t3sserakt Relationship added related to 0006433
2020-08-11 14:39 schanzen Target Version 0.14.0 => 0.13.2
2020-08-14 09:13 schanzen Target Version 0.13.2 => 0.13.3
2020-08-14 12:01 schanzen Tag Attached: tng
2020-09-05 18:11 schanzen Target Version 0.13.3 => 0.13.4
2020-09-11 16:50 t3sserakt Assigned To t3sserakt => schanzen
2020-09-11 16:50 t3sserakt Status assigned => resolved
2020-09-11 16:50 t3sserakt Resolution open => fixed
2020-09-11 16:50 t3sserakt Fixed in Version => 0.13.3
2020-10-28 13:06 schanzen Target Version 0.13.4 => 0.14.0
2020-10-29 11:13 schanzen Status resolved => closed
2024-05-03 13:59 Christian Grothoff Category TCP transport => transport service