[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #32588 [Core Tor/Tor]: Setting ORPort [ipv6]:auto mistakenly advertises port 94

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #32588 [Core Tor/Tor]: Setting ORPort [ipv6]:auto mistakenly advertises port 94
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 09 Dec 2019 14:32:18 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 09 Dec 2019 09:32:28 -0500
In-reply-to: <044.e393061784d2f07d08995290911336d5@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.e393061784d2f07d08995290911336d5@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#32588: Setting ORPort [ipv6]:auto mistakenly advertises port 94
-----------------------------------------------+---------------------------
 Reporter:  arma                               |          Owner:  neel
     Type:  defect                             |         Status:
                                               |  needs_information
 Priority:  Medium                             |      Milestone:  Tor:
                                               |  0.4.3.x-final
Component:  Core Tor/Tor                       |        Version:  Tor:
                                               |  0.4.1.6
 Severity:  Normal                             |     Resolution:
 Keywords:  ipv6, memory-safety, security-low  |  Actual Points:
Parent ID:                                     |         Points:
 Reviewer:                                     |        Sponsor:
-----------------------------------------------+---------------------------

Comment (by teor):

 It's also worth noting that we're getting 0x5e = 94 in the output, and not
 0xcc5e or 0x5ecc. So it's just a one byte overflow. And it's happening
 some time after the port is opened, but before the relay descriptor is
 built.

 And it only seems to affect auto IPv6 ORPorts.

 Does the issue still happen if the IPv6 address is much shorter than the
 maximum length?
 For example, does "ORPort [::1]:auto" give you a port of 1?
 You might need to set some custom directory authorities to be allowed to
 listen on an internal address.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/32588#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #32657 [Circumvention/Snowflake]: Investigate Snowflake blocking in China
Next by Author: Re: [tor-bugs] #32664 [Core Tor/Tor]: hs-v3: Segfault in hs_circ_service_get_established_intro_circ()
Previous by thread: Re: [tor-bugs] #32588 [Core Tor/Tor]: Setting ORPort [ipv6]:auto mistakenly advertises port 94
Next by thread: Re: [tor-bugs] #32588 [Core Tor/Tor]: Setting ORPort [ipv6]:auto mistakenly advertises port 94
Index(es):
- Author
- Thread