[tor-bugs] #21304 [Obfuscation/Snowflake]: Sanitize snowflake.log
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Mar 20 20:10:27 UTC 2019
#21304: Sanitize snowflake.log
-----------------------------------+--------------------------
Reporter: arlolra | Owner: cohosh
Type: defect | Status: assigned
Priority: Medium | Milestone:
Component: Obfuscation/Snowflake | Version:
Severity: Normal | Resolution:
Keywords: starter | Actual Points:
Parent ID: | Points: 1
Reviewer: | Sponsor:
-----------------------------------+--------------------------
Comment (by cohosh):
I've implemented a log scrubber that sends all log output through a series
of regular expressions to replace IPv4 and IPv6 addresses with safe
strings ({{{X.X.X.X}}} and {{{X:X:X:X:X:X:X:X}}}, respectively). Here is
the commit:
https://github.com/cohosh/snowflake/commit/e5dda8a3d526b692712baa4e8602b4248ea38376
The http server panic mentioned above is solved in this way, since the
server is set up to log messages to the default logger (set up in
server.go to output to the provided log file). If the code is ever changed
to give the http.Server structs created in server.go their own logger,
we'll need to make sure we add a scrubber to the logger.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21304#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list