ExternalVendorCode/tahoe-lafs
1
0
Fork 0
mirror of https://github.com/tahoe-lafs/tahoe-lafs.git synced 2025-03-25 21:17:37 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

hashutil: add constant-time comparison function, to avoid timing attacks when python's short-circuiting data-dependent == operator is used to, say, check a write-enabler

Browse Source
This commit is contained in:
Brian Warner 2009-03-22 20:20:55 -07:00
parent 6599eae6f9
commit 01e2032669
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/allmydata/test/test_util.py
View File

@ -601,6 +601,12 @@ class HashUtilTests(unittest.TestCase):
h2.update("foo")
self.failUnlessEqual(h1, h2.digest())
def test_constant_time_compare(self):
self.failUnless(hashutil.constant_time_compare("a", "a"))
self.failUnless(hashutil.constant_time_compare("ab", "ab"))
self.failIf(hashutil.constant_time_compare("a", "b"))
self.failIf(hashutil.constant_time_compare("a", "aa"))
class Abbreviate(unittest.TestCase):
def test_time(self):
a = abbreviate.abbreviate_time

4
src/allmydata/util/hashutil.py
View File

@ -189,3 +189,7 @@ def ssk_readkey_data_hash(IV, readkey):
return tagged_pair_hash(MUTABLE_DATAKEY_TAG, IV, readkey, KEYLEN)
def ssk_storage_index_hash(readkey):
return tagged_hash(MUTABLE_STORAGEINDEX_TAG, readkey, KEYLEN)
def constant_time_compare(a, b):
n = os.urandom(8)
return bool(tagged_hash(n, a) == tagged_hash(n, b))