[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #27896 [Core Tor/Tor]: base32 padding inconsistency between client and server in HS v3 client auth preview

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #27896 [Core Tor/Tor]: base32 padding inconsistency between client and server in HS v3 client auth preview
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 20 Oct 2018 15:11:38 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 20 Oct 2018 11:11:48 -0400
In-reply-to: <048.3aa21f2b2c91cc52a84b8ddab9a3228a@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <048.3aa21f2b2c91cc52a84b8ddab9a3228a@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#27896: base32 padding inconsistency between client and server in HS v3 client auth
preview
-----------------------------+------------------------------------
 Reporter:  jchevali         |          Owner:  (none)
     Type:  defect           |         Status:  needs_information
 Priority:  Medium           |      Milestone:  Tor: unspecified
Component:  Core Tor/Tor     |        Version:  Tor: 0.3.5.1-alpha
 Severity:  Normal           |     Resolution:
 Keywords:  tor-hs, hs-auth  |  Actual Points:
Parent ID:                   |         Points:
 Reviewer:                   |        Sponsor:
-----------------------------+------------------------------------

Comment (by jchevali):

 Perhaps you'd like to deal with the assertion failed issue in the ticket
 that pege's opened, #28129 (although that same stack trace was presented
 here earlier), and leave this ticket for the other issues, namely, how
 should we investigate invalid descriptors (by the server that doesn't
 crash -- i.e., if given its characteristics, e.g., no GCC, no IPv4, etc.,
 you still deem it worthy of testing), and whether padded content should be
 allowed (after all under the base32 definition I believe it's legal), and
 whether padded entries or otherwise invalid entries (except comments)
 should, when they're not among otherwise valid entries, result in an
 unsecured service or a secured (closed) one.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/27896#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #27937 [Applications/Tor Browser]: Reproducing Tor Browser 8.0.2 is failing sometimes on Linux (64bit)
Next by Author: Re: [tor-bugs] #27893 [Core Tor/Tor]: memory leak in dump_config()
Previous by thread: Re: [tor-bugs] #27896 [Core Tor/Tor]: base32 padding inconsistency between client and server in HS v3 client auth preview
Next by thread: Re: [tor-bugs] #27896 [Core Tor/Tor]: base32 padding inconsistency between client and server in HS v3 client auth preview
Index(es):
- Author
- Thread