Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Unable to run crypto API on .onion URLs #65

Open
Rafiot opened this issue Nov 28, 2023 · 1 comment
Open

Unable to run crypto API on .onion URLs #65

Rafiot opened this issue Nov 28, 2023 · 1 comment

Comments

@Rafiot
Copy link
Member

Rafiot commented Nov 28, 2023

Buckle up, this one is fun.

It initially came up when this code seemed to detect the capture: https://github.com/Lookyloo/testing/blob/main/website/templates/99.3.compute_hashes.html

But it will work just fine when you try to capture it from: https://rafiot.eu.pythonanywhere.com/compute_sha512

The trick is that the initial code came from an onion website, and this API is only available in secure context. Which is not the case for the onion website. So the capture will systematically fail to compute the proper hash.

The same URL will work just fine with the TorBrowserBundle because this one allows to run the crypto API on onion websites.
@Rafiot
Copy link
Member Author

Rafiot commented Nov 28, 2023
edited
Loading

This is a possible solution: microsoft/playwright#22944 - Only works with the new headless

@adulau pointed out brave solved it in a much cleaner way: brave/brave-browser#13834

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Rafiot