[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #19170 [Metrics/CollecTor]: make parsing more robust (extra-info)

Subject: Re: [tor-bugs] #19170 [Metrics/CollecTor]: make parsing more robust (extra-info)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 26 May 2016 15:46:58 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 26 May 2016 11:47:06 -0400
In-reply-to: <046.0756a44b16af6ab6f6a987cfb71a1216@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.0756a44b16af6ab6f6a987cfb71a1216@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#19170: make parsing more robust (extra-info)
-------------------------------+------------------------
 Reporter:  iwakeh             |          Owner:  iwakeh
     Type:  defect             |         Status:  new
 Priority:  Medium             |      Milestone:
Component:  Metrics/CollecTor  |        Version:
 Severity:  Normal             |     Resolution:
 Keywords:  ctip               |  Actual Points:
Parent ID:                     |         Points:
 Reviewer:                     |        Sponsor:
-------------------------------+------------------------

Comment (by karsten):

 Huh, fine questions.  Let's go through some possible ways of handling
 this:

  - Continue to reject descriptors containing problematic characters:
 Admittedly, this is not pretty, because nobody will know why a descriptor
 is missing, even if it's missing for a good reason.  After all,
 descriptors should only contain ASCII, period.  But, meh.
  - Replace problematic characters: I don't think we can do that, because
 that would break the signature.  In general, I think we shouldn't touch
 descriptor contents.
  - Ignore problematic characters: We're accepting non-ASCII characters in
 other lines (contact and platform, for example), so we could as well
 accept them in lines containing country codes.  The ugly part is that we'd
 have to distinguish DescriptorParseExceptions by severity, which is not
 really supported by metrics-lib yet.
  - Accept anything as long as the signature is valid: This is like the
 previous suggestion but going one step further and even accepting lines we
 think are otherwise malformed.  We're not verifying signatures yet, so
 this could only be a longer-term solution.  Basically, whatever the
 directory authorities accept is also what we accept, regardless of whether
 there's a bug in the authorities or not.

 I don't yet know which variant I like most.  Thoughts?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19170#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #19170 [Metrics/CollecTor]: make parsing more robust (extra-info)
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #19126 [Core Tor/Tor]: Consistently use uint64_t for integers in shared random structs
Next by Author: Re: [tor-bugs] #6119 [Applications/Quality Assurance and Testing]: Create our own instance of Panopticlick
Previous by thread: Re: [tor-bugs] #19170 [Metrics/CollecTor]: make parsing more robust (extra-info)
Next by thread: Re: [tor-bugs] #17939 [Metrics/Onionoo]: Optimise the construction of details documents with field constraints
Index(es):
- Author
- Thread