[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #5131 [Obfsproxy]: auditing obfsproxy

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #5131 [Obfsproxy]: auditing obfsproxy
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Wed, 15 Feb 2012 17:00:45 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 15 Feb 2012 12:00:58 -0500
In-reply-to: <047.6a3b707062828e8d449fbb3e74c0420b@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.6a3b707062828e8d449fbb3e74c0420b@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#5131: auditing obfsproxy
-------------------------+--------------------------------------------------
 Reporter:  ioerror      |          Owner:  asn         
     Type:  enhancement  |         Status:  needs_review
 Priority:  normal       |      Milestone:              
Component:  Obfsproxy    |        Version:              
 Keywords:  security     |         Parent:              
   Points:               |   Actualpoints:              
-------------------------+--------------------------------------------------

Comment(by nickm):

 No-strict-aliasing and no-strict-overflow aren't strictly speaking
 "hardening" options so much as "let's turn off some surprising features
 that will break not-strictly-conformant-code".  I'm fine having them in
 our options, but I'm not sure whether they'd get accepted by other
 projects if you want them to use this.

 There's been a bug with -fno-strict-overflow in at least some older GCC
 versions.  We should probably check for it at configure time-- old gccs
 seem to stick around forever.  There's a little test program at
 http://lists.debian.org/debian-gcc/2009/07/msg00168.html .

 -fwrapv is absolutely right for use on Tor and obfsproxy, but has nothing
 to do with compiler hardening as far as I can tell.  Am I missing
 something there?

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5131#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #5131 [Obfsproxy]: auditing obfsproxy
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #2301 [BridgeDB]: migrate bridgedb to tor server
Next by Author: [tor-bugs] #5141 [Obfsproxy]: obfsproxy Segmentation fault on incomplete command line
Previous by thread: Re: [tor-bugs] #5131 [Obfsproxy]: auditing obfsproxy
Next by thread: Re: [tor-bugs] #5131 [Obfsproxy]: auditing obfsproxy
Index(es):
- Author
- Thread