Closed
Bug 721129
Opened 14 years ago
Closed 14 years ago
Incorrect BigInteger comparison in JPakeCrypto
Categories
(Firefox for Android Graveyard :: Android Sync, defect)
Tracking
(firefox11 fixed)
RESOLVED
FIXED
| Tracking | Status | |
|---|---|---|
| firefox11 | --- | fixed |
People
(Reporter: dchanm+bugzilla, Assigned: rnewman)
References
Details
(Whiteboard: [qa-])
Attachments
(1 file)
|
2.44 KB,
patch
|
dchanm+bugzilla
:
review+
|
Details | Diff | Splinter Review |
JPakeCrypto.java [1]
141 if (jp.gx4 == BigInteger.ONE) {
142 throw new Gx4IsOneException();
143 }
The above comparison will fail do to reference checking. jp.gx4 is assigned in JPakeClient.java [2] with new BigInteger(String) .
[1] - https://github.com/mozilla-services/android-sync/blob/develop/src/main/java/org/mozilla/gecko/sync/jpake/JPakeCrypto.java#L141
[2] - https://github.com/mozilla-services/android-sync/blob/develop/src/main/java/org/mozilla/gecko/sync/jpake/JPakeClient.java#L354
|
Assignee | |
Comment 1•14 years ago
|
||
Fix and test. Should be a rubberstamp…! :D
Assignee: nobody → rnewman
Status: NEW → ASSIGNED
Attachment #591580 -
Flags: review?(dchan+bugzilla)
|
Reporter | |
Comment 2•14 years ago
|
||
Comment on attachment 591580 [details] [diff] [review]
Proposed patch. v1
Review of attachment 591580 [details] [diff] [review]:
-----------------------------------------------------------------
Hurrah! Patch with a test.
Attachment #591580 -
Flags: review?(dchan+bugzilla) → review+
|
|
Assignee | |
Comment 3•14 years ago
|
||
Fixed in develop:
https://github.com/mozilla-services/android-sync/commit/d0e6cc458bf4551177a4d3dce2e424321893cfda
Thanks for the quick review!
Status: ASSIGNED → RESOLVED
Closed: 14 years ago
Resolution: --- → FIXED
|
||
Comment 4•14 years ago
|
||
Richard, please request aurora approval
|
|
Assignee | |
Comment 5•14 years ago
|
||
(In reply to Brad Lassey [:blassey] from comment #4)
> Richard, please request aurora approval
Already merged as part of Bug 720933.
status-firefox11:
--- → fixed
|
||
Updated•14 years ago
|
Whiteboard: [qa-]
|
||
Updated•13 years ago
|
Product: Mozilla Services → Android Background Services
|
||
Updated•8 years ago
|
Product: Android Background Services → Firefox for Android
|
|
||
Updated•5 years ago
|
Product: Firefox for Android → Firefox for Android Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•