[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #2683 [Tor Directory Authority]: authority received unparseable routerstatus entry

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #2683 [Tor Directory Authority]: authority received unparseable routerstatus entry
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Tue, 15 Mar 2011 15:59:06 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 15 Mar 2011 11:59:16 -0400
In-reply-to: <044.a79275509c6088ed3f487e41a88712eb@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bugs reporting list for trac <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.a79275509c6088ed3f487e41a88712eb@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#2683: authority received unparseable routerstatus entry
-------------------------------------+--------------------------------------
 Reporter:  arma                     |          Owner:     
     Type:  defect                   |         Status:  new
 Priority:  critical                 |      Milestone:     
Component:  Tor Directory Authority  |        Version:     
 Keywords:                           |         Parent:     
   Points:                           |   Actualpoints:     
-------------------------------------+--------------------------------------
Changes (by rransom):

  * priority:  normal => critical


Comment:

 Replying to [comment:4 arma]:
 > Are we really calling strlen on an arbitrary vote blob we got from the
 network?

 Yes, even though that's the wrong way to determine the length of that
 particular blob.  And worse, we're calling `strlen` on a blob some fuzzer
 handed us ''after we parse it''.

 Unfortunately, I don't see a nice way to check the signature before we
 feed a potential fuzz-bomb through our parser.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2683#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #2683 [Tor Relay]: authority generates unparseable routerstatus entry
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #2762 [Metrics]: Create a Thematic Mapping API prototype for metrics data
Next by Author: Re: [tor-bugs] #2683 [Tor Directory Authority]: authority received unparseable routerstatus entry
Previous by thread: Re: [tor-bugs] #2683 [Tor Directory Authority]: authority received unparseable routerstatus entry
Next by thread: Re: [tor-bugs] #2683 [Tor Directory Authority]: authority received unparseable routerstatus entry
Index(es):
- Author
- Thread