dirauth: don't use hardcoded length when parsing digests

When parsing detached signature, we make sure that we use the length of the digest algorithm instead of an hardcoded DIGEST256_LEN in order to avoid comparing bytes out of bound with a smaller digest length such as SHA1. Fixes #19066 Signed-off-by: David Goulet <dgoulet@torproject.org>
author: David Goulet <dgoulet@torproject.org> 2016-05-16 11:18:51 -0400
committer: David Goulet <dgoulet@torproject.org> 2016-05-16 11:18:51 -0400
commit: 50ff24e27652b4781a127d5dea81c4de96a6fdef (patch)
tree: 478f710fac37690bc0e4c8ed0551985e198aa3bb /changes/bug19066
parent: 249f3a1664479879dc9096034901614302398841 (diff)
download: tor-50ff24e27652b4781a127d5dea81c4de96a6fdef.tar.gz
tor-50ff24e27652b4781a127d5dea81c4de96a6fdef.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/changes/bug19066 b/changes/bug19066
new file mode 100644
index 0000000000..c3d1fc789a
--- /dev/null
+++ b/changes/bug19066
@@ -0,0 +1,5 @@
+  o Minor bugfixes (directory authority):
+    - When parsing detached signature, make sure we use the length of the
+      digest algorithm instead of an hardcoded DIGEST256_LEN in order to
+      avoid comparing bytes out of bound with a smaller digest length such
+      as SHA1. Fixes #19066; bugfix on tor-0.2.2.6-alpha.
author	David Goulet <dgoulet@torproject.org>	2016-05-16 11:18:51 -0400
committer	David Goulet <dgoulet@torproject.org>	2016-05-16 11:18:51 -0400
commit	50ff24e27652b4781a127d5dea81c4de96a6fdef (patch)
tree	478f710fac37690bc0e4c8ed0551985e198aa3bb /changes/bug19066
parent	249f3a1664479879dc9096034901614302398841 (diff)
download	tor-50ff24e27652b4781a127d5dea81c4de96a6fdef.tar.gz tor-50ff24e27652b4781a127d5dea81c4de96a6fdef.zip