[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #9249 [Tor]: GSOC seccomp stage 2

Subject: Re: [tor-bugs] #9249 [Tor]: GSOC seccomp stage 2
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 12 Sep 2013 12:55:03 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 12 Sep 2013 08:55:15 -0400
In-reply-to: <047.782ecc73947aab62ecf24a5aa678f75d@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.782ecc73947aab62ecf24a5aa678f75d@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#9249: GSOC seccomp stage 2
-----------------------------+--------------------------------------------
     Reporter:  ctoader      |      Owner:  nickm
         Type:  enhancement  |     Status:  needs_revision
     Priority:  normal       |  Milestone:
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:  tor-relay gsoc seccomp sandbox
Actual Points:               |  Parent ID:  #5756
       Points:               |
-----------------------------+--------------------------------------------

Comment (by ctoader):

 Fixed linux x86_64 bug, libseccomp 1.0.1, where loading a filter was
 failing with -33. Notes:
 - send, recv are not defined on linux x86_64, libseccomp defines them as
 negative values (-108, -109).
 - they can be multiplexed using socketcall (they are on newer versions of
 libseccomp), but libseccomp 1.0.1 considers this to be wrong and returns
 an error.
 - fixed by ifdef-ing them out from the syscall filter for linux x86_64, as
 they are not required for this configuration (tested and works).

 Fixed mprotect exploit as discussed on irc. Notes:
 - I have added the 1MB extra buffer before the protected strings buffer
 - mprotect may not be used with lengths higher than 1MB

 I hope this is what you had in mind. Please let me know if there is
 anything else, or if the merge is done.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9249#comment:19>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #9721 [Ponies]: blog aggregator for Tor project members & friends?
Next by Author: Re: [tor-bugs] #8834 [Tor bundles/installation]: armel packages for Tor v0.2.4.12 missing
Previous by thread: Re: [tor-bugs] #9249 [Tor]: GSOC seccomp stage 2
Next by thread: Re: [tor-bugs] #9249 [Tor]: GSOC seccomp stage 2
Index(es):
- Author
- Thread