#22794: Don't open AF_INET/AF_INET6 sockets when AF_LOCAL is configured.
 Reporter:  yawning                              |          Owner:
                                                 |  pospeselr
     Type:  defect                               |         Status:
                                                 |  needs_review
 Priority:  Medium                               |      Milestone:
Component:  Applications/Tor Browser             |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tbb-security, tbb-sandboxing,        |  Actual Points:
  TorBrowserTeam201802R                          |
Parent ID:  #20775                               |         Points:
 Reviewer:                                       |        Sponsor:

Comment (by yawning):

 For what it's worth, I'm of the opinion that the `AF_INET6` socket being
 created is probably fine, as long as the browser isn't rendered non-
 functional if `AF_INET6` isn't supported.

 This can be revisited if/when people want to write seccomp rules that will
 kill (rather than gently reject) proscribed calls, but I don't think
 that's realistic at the moment.

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22794#comment:22>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
tor-bugs mailing list

Reply via email to