[tor-bugs] #10362 [Pluggable transport]: Deploy FTE as a pluggable transport in PTTBBs

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Dec 18 00:31:35 UTC 2013


#10362: Deploy FTE as a pluggable transport in PTTBBs
-------------------------------------+-----------------
     Reporter:  asn                  |      Owner:
         Type:  task                 |     Status:  new
     Priority:  normal               |  Milestone:
    Component:  Pluggable transport  |    Version:
   Resolution:                       |   Keywords:
Actual Points:                       |  Parent ID:
       Points:                       |
-------------------------------------+-----------------

Comment (by kpdyer):

 Replying to [comment:6 asn]:
 > Nice. Code looks more defensive now. I'll try to find some time to re-
 review the code.
 >
 > BTW, just to make sure I got this right, `rank()` is the only function
 that accepts attacker-controlled network data. `unkrank()` only handles
 "trusted" input, right?

 That is roughly correct from the C++ side. However, it is worth pointing
 out that rank has two levels: the Python wrapper in fte/cDFA.cc and the
 actual rank algorithm in fte/rank_unrank.cc.

 In addition, in Python, the entry point for attacker-controlled code is
 decode in fte/encoder.py. This calls fte.dfa.rank as well as
 fte.encrypter.decrypt.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10362#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list