tor/bug19066 at 5fbd195918b4f5ad73130547c2ca58fd69baded0 - tor - Git with a cup of Datura seeds

nihilist/tor

mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-09-21 13:34:59 +02:00

David Goulet 50ff24e276 dirauth: don't use hardcoded length when parsing digests

When parsing detached signature, we make sure that we use the length of the
digest algorithm instead of an hardcoded DIGEST256_LEN in order to avoid
comparing bytes out of bound with a smaller digest length such as SHA1.

Fixes #19066

Signed-off-by: David Goulet <dgoulet@torproject.org>

2016-05-16 11:18:51 -04:00

6 lines

322 B

Plaintext

Raw Blame History

   o Minor bugfixes (directory authority):
     - When parsing detached signature, make sure we use the length of the
       digest algorithm instead of an hardcoded DIGEST256_LEN in order to
       avoid comparing bytes out of bound with a smaller digest length such
       as SHA1. Fixes #19066; bugfix on tor-0.2.2.6-alpha.