[prev in list] [next in list] [prev in thread] [next in thread] 

List:       tor-dev
Subject:    [tor-dev] [GSOC] Status report - Tor capabilities
From:       Cristian-Matei Toader <cristian.matei.toader () gmail ! com>
Date:       2013-07-26 17:29:10
Message-ID: CAFFwUgNFcYvn2ap4JJEdXaTZO8iyN_F6-YMOF---uwp+GmHv2w () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


Hello tor-dev,

For the last week I was on holiday for the graduation ceremony. I did
however manage to get some work done, so for the past 2 weeks I have:

- worked on adding parameter filters for the syscall filter; this is done
using both a static list of parameters, as well as a dynamic list
configurable at runtime;
- parameter filters currently support numeric and pointer based parameters
such as C strings; pointer based parameters are referenced in the original
tor code through a getter (this was implemented for the 'open' syscall).
- possibly identified a bug in libseccomp which was causing the accept4
syscall to fail to be added to the filter which was temporarily fixed by
accepting all socketcall filters; still need to confirm this with nickm,
but for those interested i believe -117 on this [1] line should be at least
-120; my local fix makes everything work fine without socketcall.

As a general conclusions things are going fine, I am currently trying to
figure out what should go in the parameter filter.

Another quick link to my remote branch for the ease of those interested:
[2].

Looking forward to some feedback, if you happen to have any!

References:
[1]
http://sourceforge.net/p/libseccomp/libseccomp/ci/release-2.1/tree/src/arch-x86.c#l86
[2]
https://github.com/cristiantoader/tor-gsoc-capabilities/tree/gsoc-cap-stage2

[Attachment #5 (text/html)]

<div dir="ltr"><span style="font-family:arial,sans-serif;font-size:13px">Hello \
tor-dev,</span><br style="font-family:arial,sans-serif;font-size:13px"><br \
style="font-family:arial,sans-serif;font-size:13px"><span \
style="font-family:arial,sans-serif;font-size:13px">For the last week I was on \
holiday for the graduation ceremony. I did however manage to get some work done, so \
for the past 2 weeks I have:</span><br> <div><span \
style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div><span \
style="font-family:arial,sans-serif;font-size:13px">- worked on adding parameter \
filters for the syscall filter; this is done using both a static list of parameters, \
as well as a dynamic list configurable at runtime; </span></div> <div><span \
style="font-family:arial,sans-serif;font-size:13px">- parameter filters currently \
support numeric and pointer based parameters such as C strings; pointer based \
parameters are referenced in the original tor code through a getter (this was \
implemented for the &#39;open&#39; syscall).</span></div> <div><span \
style="font-family:arial,sans-serif;font-size:13px">- possibly identified a bug in \
libseccomp which was causing the accept4 syscall to fail to be added to the filter \
which was temporarily fixed by accepting all socketcall filters; still need to \
confirm this with nickm, but for those interested i believe -117 on this [1] line \
should be at least -120; my local fix makes everything work fine without \
socketcall.</span></div> <div><span \
style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div><span \
style="font-family:arial,sans-serif;font-size:13px">As a general conclusions things \
are going fine, I am currently trying to figure out what should go in the parameter \
filter.</span></div> <div><span \
style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div><font \
face="arial, sans-serif">Another</font><span \
style="font-family:arial,sans-serif;font-size:13px"> quick link to my remote branch \
for the ease of those interested: [2].</span></div> <div><span \
style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div><span \
style="font-family:arial,sans-serif;font-size:13px">Looking forward to some feedback, \
if you happen to have any!</span><br \
style="font-family:arial,sans-serif;font-size:13px"> </div><div><span \
style="font-family:arial,sans-serif;font-size:13px"><br></span></div><div><span \
style="font-family:arial,sans-serif;font-size:13px">References:</span></div><div><span \
style="font-family:arial,sans-serif;font-size:13px">[1] </span><a \
href="http://sourceforge.net/p/libseccomp/libseccomp/ci/release-2.1/tree/src/arch-x86. \
c#l86">http://sourceforge.net/p/libseccomp/libseccomp/ci/release-2.1/tree/src/arch-x86.c#l86</a></div>
 <div>[2] <a href="https://github.com/cristiantoader/tor-gsoc-capabilities/tree/gsoc-c \
ap-stage2">https://github.com/cristiantoader/tor-gsoc-capabilities/tree/gsoc-cap-stage2</a></div></div>




_______________________________________________
tor-dev mailing list
tor-dev@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic