[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #22926 [Core Tor/Tor]: The Tor compression code can call functions that are NULL

Subject: [tor-bugs] #22926 [Core Tor/Tor]: The Tor compression code can call functions that are NULL
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 14 Jul 2017 18:33:30 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 14 Jul 2017 14:33:42 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#22926: The Tor compression code can call functions that are NULL
------------------------------+--------------------------------
     Reporter:  teor          |      Owner:
         Type:  defect        |     Status:  new
     Priority:  Medium        |  Milestone:  Tor: 0.3.1.x-final
    Component:  Core Tor/Tor  |    Version:  Tor: 0.3.1.1-alpha
     Severity:  Normal        |   Keywords:
Actual Points:                |  Parent ID:
       Points:  1             |   Reviewer:
      Sponsor:                |
------------------------------+--------------------------------
 The new Tor compression code in 0.3.1 assumes that all the compression
 functions are bound at runtime.

 For example, tor_lzma_method_supported() returns 1 when HAVE_LZMA is
 defined, but that doesn't mean that lzma_version_string() has actually
 been bound to a non-NULL address in the binary.

 This is more likely to happens when tor is used as a shared library rather
 than linked as an executable (shadow, iOS), and when using weak, lazy
 symbol binding.

 This might not be an issue we can solve unless we check for all the
 symbols being NULL at runtime. Maybe the responsibility for proper linking
 is on people who are compiling tor with weak, lazy symbol binding.

 This bug was discovered by Rob Jansen when running shadow.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22926>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #22926 [Core Tor/Tor]: The Tor compression code can call functions that are NULL
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #22926 [Core Tor/Tor]: The Tor compression code can call functions that are NULL
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #22542 [Applications/Tor Browser]: Tor Browser 7.0 Security Settings Window too small on macOS 10.12
Next by Author: Re: [tor-bugs] #12890 [Core Tor/Tor]: Design and implement optimizations for socket write limits
Previous by thread: Re: [tor-bugs] #22402 [Webpages/Website]: Usablity and accessiblity improvement on the Tor assistant page
Next by thread: Re: [tor-bugs] #22926 [Core Tor/Tor]: The Tor compression code can call functions that are NULL
Index(es):
- Author
- Thread