[tor-bugs] #20027 [Core Tor/Tor]: Ed25519 certificate parsing does badly with expirations after 2038
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Aug 30 12:57:29 UTC 2016
#20027: Ed25519 certificate parsing does badly with expirations after 2038
------------------------------+--------------------------------
Reporter: nickm | Owner:
Type: defect | Status: new
Priority: Medium | Milestone: Tor: 0.2.9.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Keywords: TorCoreTeam201608
Actual Points: | Parent ID: #15055
Points: 0 | Reviewer:
Sponsor: |
------------------------------+--------------------------------
We deliberately chose an hour-based expiration counter for ed certs,
because of 32-bit issues. But when we parse them, we just multiply the
32-bit field by 3600. That results in an overflow if the time is greater
than UINT32_MAX.
The impact here isn't too bad. First, it only affects certs that expire
after 32-bit signed time overflows in Y2038. Second, it can only make it
seem that a non-expired cert is expired: it can never make it seem that an
expired cert is still live.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20027>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list