auditing obfsproxy (#5131) · Issues · Legacy / Trac · GitLab

GitLab is used only for code review, issue tracking and project management. Canonical locations for source code are still https://gitweb.torproject.org/ https://git.torproject.org/ and git-rw.torproject.org.

auditing obfsproxy

Hi,

At the request of asn, I started to audit obfsproxy - I started and have been making some commits as I go along:

Here's my gcc/ld hardening one trick pony: https://gitweb.torproject.org/user/ioerror/obfsproxy.git/commit/b3367507b465703762c0c6dd9816f9eef133c350

A basic start at an apparmor profile: https://gitweb.torproject.org/user/ioerror/obfsproxy.git/commit/d1599cf358bb2471014b1aaaed2b10fe22516bc2

Spec notes: https://gitweb.torproject.org/user/ioerror/obfsproxy.git/commit/4d0405a6269f3abf0bb862e9e0a7587cbe5fbeef

Threat model notes: https://gitweb.torproject.org/user/ioerror/obfsproxy.git/commit/053b267d96053624daa326d3ad6171dd3763b498

Here's the full branch: https://gitweb.torproject.org/user/ioerror/obfsproxy.git/shortlog/refs/heads/compile_hardening

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information