[tor-bugs] #22794 [Applications/Tor Browser]: Don't open AF_INET/AF_INET6 sockets when AF_LOCAL is configured.
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Feb 2 08:12:18 UTC 2018
#22794: Don't open AF_INET/AF_INET6 sockets when AF_LOCAL is configured.
-------------------------------------------------+-------------------------
Reporter: yawning | Owner:
| pospeselr
Type: defect | Status:
| needs_review
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: tbb-security, tbb-sandboxing, | Actual Points:
TorBrowserTeam201802R |
Parent ID: #20775 | Points:
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by yawning):
For what it's worth, I'm of the opinion that the `AF_INET6` socket being
created is probably fine, as long as the browser isn't rendered non-
functional if `AF_INET6` isn't supported.
This can be revisited if/when people want to write seccomp rules that will
kill (rather than gently reject) proscribed calls, but I don't think
that's realistic at the moment.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22794#comment:22>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list