diff options
| author |  Joey Hess <joeyh@joeyh.name> | 2016-12-08 20:55:46 -0400 |
|---|---|---|
| committer | Joey Hess <joeyh@joeyh.name> | 2016-12-08 20:55:46 -0400 |
| commit | b443077e8a1c3a60c0e21472f9165316f9dfa3bf (patch) | |
| tree | c3426c4c5b6e6db913bb19e982736c2134dea17d | |
| parent | cddae0a755db1ecd848c5f48e778d9328e5418d3 (diff) | |
todo
| -rw-r--r-- | doc/todo/tor.mdwn | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/doc/todo/tor.mdwn b/doc/todo/tor.mdwn index 00ded54c5..ce8d8e98a 100644 --- a/doc/todo/tor.mdwn +++ b/doc/todo/tor.mdwn @@ -4,6 +4,10 @@ Mostly working! Current todo list: +* Current use of hGetLine to read protocol messages allows memory DOS by + sending a very long line. May also have line ending problems across OS's. + Switch to instead reading a packed data structure that starts with its + length, and refuse to read messages > 32k. * When a transfer can't be done because another transfer of the same object is already in progress, the message about this is output by the remotedaemon --debug, but not forwarded to the peer, which shows |