[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #4283 [Tor Client]: crypto_pk_cmp_keys does not document its error behaviour
#4283: crypto_pk_cmp_keys does not document its error behaviour
------------------------+---------------------------------------------------
Reporter: rransom | Owner: rransom
Type: defect | Status: needs_revision
Priority: normal | Milestone: Tor: 0.2.4.x-final
Component: Tor Client | Version:
Keywords: | Parent:
Points: | Actualpoints:
------------------------+---------------------------------------------------
Changes (by rransom):
* status: needs_review => needs_revision
Comment:
On second thought, this isn't quite guaranteed to stay correct --
`crypto_pk_cmp_keys` is documented as returning -1, 0, or 1 (even though
nothing relies on those exact values), and `tor_memcmp` isn't. (For the
particular inputs it could operate on here, it does currently produce -1,
0, or 1, but that's a lucky accident.)
I'm in favor of changing the documented behaviour of `crypto_pk_cmp_keys`.
If some later use would be easier if its result were clamped to 0 or Â1,
that should be implemented as a separate function (preferably constant-
time and in di_ops.c).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4283#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs