[H4] token_blacklist cleanup_expired re-verifies every JWT signature; stores whole tokens in RAM #18
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Severity: High
Component(s): server
Affected file(s):
server/src/auth/token_blacklist.rs:85Problem:
cleanup_expiredre-runs full JWT signature verification on every blacklisted token and stores whole tokens in RAM.Recommended fix:
Store
(token, exp)and make cleanup a simple time comparison.Remediation phase: P4 (SPEC-023)
From the 2026-06-05 three-way review (Claude+Gemini+Grok) — see reports/review-2026-06-05/SYNTHESIS-three-way.md (finding H4) and REMEDIATION-PLAN.md (P4).