[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #12930 [Pluggable transport]: Someone, somewhere needs to unescape pluggable transport "SMETHOD ARGS" arguments.

Subject: Re: [tor-bugs] #12930 [Pluggable transport]: Someone, somewhere needs to unescape pluggable transport "SMETHOD ARGS" arguments.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 23 Aug 2014 22:13:09 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 23 Aug 2014 18:13:17 -0400
In-reply-to: <047.a07945902effc2875271c4c0fb7d89a4@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.a07945902effc2875271c4c0fb7d89a4@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#12930: Someone, somewhere needs to unescape pluggable transport "SMETHOD ARGS"
arguments.
-------------------------------------+-----------------
     Reporter:  yawning              |      Owner:  asn
         Type:  defect               |     Status:  new
     Priority:  normal               |  Milestone:
    Component:  Pluggable transport  |    Version:
   Resolution:                       |   Keywords:
Actual Points:                       |  Parent ID:
       Points:                       |
-------------------------------------+-----------------

Comment (by dcf):

 Replying to [comment:1 yawning]:
 > There's also a goptlib bug here, where it escapes twice.  Once in
 `encodeSmethodArgs()` (fine), and once in `pt.go:formatline()` (not so
 fine).
 >
 > If the output was to be compliant with the pt-spec the problematic
 entries will end in `\=`.

 Good find. The [https://gitweb.torproject.org/pluggable-
 transports/goptlib.git/blob/refs/tags/0.2:/pt.go#l205 escape function]
 isn't specified in pt-spec; it's just a safety valve I cooked up to handle
 the case when someone tries to pass a string containing '\n' or '\x00',
 which would otherwise trash the stdout interaction. But clearly using a
 backslash escape is the wrong thing, because backslashes are used in other
 parts of the protocol. Maybe we should just strip the problematic bytes,
 or even panic. As far as I'm concerned it's undefined behavior, so we can
 do what we want.

 Could you write (and commit) a failing test that demonstrates the error?
 I.e., in TestEscape, add test cases including backslashes and other bytes
 we care about, and modify the check function to verify that if
 `stringIsSafe(input)` is true, that `escape(input) == input`.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12930#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #12930 [Pluggable transport]: Someone, somewhere needs to unescape pluggable transport "SMETHOD ARGS" arguments.
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #12937 [EFF-HTTPS Everywhere]: httpse-ruleset-bug : Zencoder flash video not playing
Next by Author: Re: [tor-bugs] #12752 [Tor]: stem: Microdescript bandwidth considered unmeasured by default
Previous by thread: Re: [tor-bugs] #12930 [Pluggable transport]: Someone, somewhere needs to unescape pluggable transport "SMETHOD ARGS" arguments.
Next by thread: [tor-bugs] #12931 [Tor]: TOR_PT_SERVER_TRANSPORT_OPTIONS are not escaped according to pt-spec.txt
Index(es):
- Author
- Thread