You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As the current objectRegistery allows registering and un-registering arbitrary objectPaths on different service names, without verifying the origin of the caller, DoS attacks are possible as well as re-routing calls meant for other services to a different service.
interface ObjectRegistry {
bool registerObject(string objectPath, string serviceName);
bool unregisterObject(string objectPath, string serviceName);
map getObjects();
signal objectAdded(string objectPath, string serviceName, int version);
signal objectRemoved(string objectPath, int version);
}
The text was updated successfully, but these errors were encountered:
As the current objectRegistery allows registering and un-registering arbitrary objectPaths on different service names, without verifying the origin of the caller, DoS attacks are possible as well as re-routing calls meant for other services to a different service.
interface ObjectRegistry {
bool registerObject(string objectPath, string serviceName);
bool unregisterObject(string objectPath, string serviceName);
map getObjects();
signal objectAdded(string objectPath, string serviceName, int version);
signal objectRemoved(string objectPath, int version);
}
The text was updated successfully, but these errors were encountered: