[tor-bugs] #1299 [Core Tor/Tor]: Tor should verify signatures before parsing
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Jun 5 15:58:57 UTC 2020
#1299: Tor should verify signatures before parsing
-------------------------------------------------+-------------------------
Reporter: mikeperry | Owner: (none)
Type: defect | Status: closed
Priority: Medium | Milestone: Tor:
| unspecified
Component: Core Tor/Tor | Version:
| 0.2.1.24
Severity: Normal | Resolution: wontfix
Keywords: tor-security, tor-crypto, tor- | Actual Points:
client, parse, safety, 035-removed-20180711 |
Parent ID: | Points: 2
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Changes (by nickm):
* status: new => closed
* resolution: None => wontfix
Comment:
We've got to wontfix this one: too many of our document formats are
specified in a way where you can't know what the keys are until _after_
you do the parsing.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/1299#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list