Town-Crier
Town-Crier copied to clipboard
bl4ck5un
Town Crier: an Authenticated Data Feeds for Smart Contracts
when I run : make tc-test cd src/Enclave ./tc-test I got a error: [ OK ] dummyTest.hybridEncryption (134 ms) [----------] 1 test from dummyTest (134 ms total) [----------] 1 test...
We found several security vulnerabilities in the enclave. First, the `g_environment` pointer can be null while being dereferenced. Since it contains nested pointers, i.e., the `std::map`, an attacker can gain...
hi,sir, Town-Crier is an awesome project, I love it.but I think there maybe a security issue here , in file `Enclave/SSLClient.c` : ```C len = sizeof( buf ) - 1;...
Tested with SSA websites and Coinbase which happen to return HTTP headers containing entries with empty value.
in file `win/Enclave/Current_bloomberg.cpp`: ```C static int construct_query(char* symbol, char** buf) { int len; char query[1000]; query[0] = 0; strncat(query, "/quote/", sizeof query); strncat(query, symbol, sizeof query); strncat(query, ":US", sizeof query);...
Need to add the following to https://town-crier.readthedocs.io/en/latest/ - [x] How to use docker service to launch TC in one command - [ ] supported data feed (some APIs have changed)...
Build completed successfully , but fails during make command. OS : ubuntu 16.04 jsonrpc-cpp version : 0.3.2 (Latest 0.6.x also gave error "undefined references" ) `[ 67%] Generating Enclave_u.c Scanning...
I read that custom queries are supported from smartcontract.com GUI. Any plans to support custom queries directly for request()'s on the TownCrier contract?
I noticed a problem in the url_decode function at https://github.com/bl4ck5un/Town-Crier/blob/master/src/Enclave/scrapers/scraper_utils.cpp#L91 in that the function does not verify the input chars of a hex escape are valid hex. As a result...
same to #70 https://github.com/bl4ck5un/Town-Crier/blob/78e19969dddf0964da9db1e9d1043e62f231daea/src/Enclave/scrapers/steam2.cpp#L223 `*resp` may be NULL here is a memory copy, the content of `query1` can be leaked outside enclave. https://github.com/bl4ck5un/Town-Crier/blob/78e19969dddf0964da9db1e9d1043e62f231daea/src/Enclave/scrapers/steam2.cpp#L224 same issue: https://github.com/bl4ck5un/Town-Crier/blob/78e19969dddf0964da9db1e9d1043e62f231daea/src/Enclave/test/regex_test.cpp#L80 https://github.com/bl4ck5un/Town-Crier/blob/78e19969dddf0964da9db1e9d1043e62f231daea/src/Enclave/test/regex_test.cpp#L81