[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor as a sort of "library/dependancy" for third party software

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor as a sort of "library/dependancy" for third party software
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Wed, 28 Sep 2011 17:53:44 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 28 Sep 2011 17:54:00 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; bh=Qpm5WAaBCoWG8HZdigMcv8fKqzyoAg3cnIzzC3/ceP0=; b=WiIkiKWa/7xGBSEm6ldlLjgb8y1eoBtmNjfZN9gvIcuvB54N7upySe7r7oozskbFmq ta2MzQgOM6OhuD6ey40caHYfvW3er+PRlbnfOpaQDNXJxu75YuvZU975NPD0rAQoKQug S/BKZOxHHQy9jt/GKQ9KcKjrZu9QsUzSJyj8I=
In-reply-to: <4E837859.2090106@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <4E832288.3030707@xxxxxxxxxxxxxxx> <4E837859.2090106@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Wed, Sep 28, 2011 at 3:41 PM, Jacob Appelbaum <jacob@xxxxxxxxxxxxx> wrote:
>> p.s. The alternative to provide the same degree of security/usability is
>> to use a Java Applet with file upload+file encryption+silvertunnel as a
>> Tor Client layer.
>
> I don't think silvertunnel is a good idea - the code is based on
> OnionCoffee which has major problems. I would suggest JTor but only
> after a careful audit and some serious work ensuring that it's safe.

Actually, fwiw, when I looked at the silvertunnel code it seemed that
they'd fixed a bunch of the onioncoffee issues.  Your comments still
apply though: both codebases need a lot more auditing before I'd be
comfortable recommending them for the kind of use that Fabio has in
mind.

On the original question: we do not currently support having the Tor
client run in the same address space as another application, nor do we
plan to.  If you've absolutely got to have it be a single executable,
your best option is to link everything except tor_main.c, then have
your program fork and call tor_main().  Don't call any other function:
there is no guaranteed-stable in-process API.

It's an ugly hack, but less ugly than running other stuff in the same
process with Tor.

cheers,
-- 
Nick
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor as a sort of "library/dependancy" for third party software
  - From: Fabio Pietrosanti (naif)
- Re: [tor-talk] Tor as a sort of "library/dependancy" for third party software
  - From: Jacob Appelbaum

Prev by Author: Re: [tor-talk] GNU make required?
Next by Author: Re: [tor-talk] Tor 0.2.3.5-alpha is out
Previous by thread: Re: [tor-talk] Tor as a sort of "library/dependancy" for third party software
Next by thread: Re: [tor-talk] Tor as a sort of "library/dependancy" for third party software
Index(es):
- Author
- Thread