projects / GitHub / WoltLab / WCF.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4e565a4) | patch
Added PasswordUtil::secureCompare()
authorAlexander Ebert <ebert@woltlab.com>
Thu, 3 Jan 2013 17:17:28 +0000 (18:17 +0100)
committerAlexander Ebert <ebert@woltlab.com>
Thu, 3 Jan 2013 17:17:28 +0000 (18:17 +0100)
commit75c41a541d3550479f3e88d48c4d7bdc9c207494
treed77fa59e0c959b705327cbb580422f1fac5b5ca3tree | snapshot (tar.gz zip)
parent4e565a4e94baeaaf2408628527d207fe43dbcd90commit | diff
Added PasswordUtil::secureCompare()

secureCompare() is invulnerable to timing attacks as the comparison of two strings always takes the same time to finish (no early return).
wcfsetup/install/files/lib/data/user/User.class.php diff | blob | blame | history
wcfsetup/install/files/lib/util/PasswordUtil.class.php diff | blob | blame | history
WoltLab Suite Core (previously WoltLab Community Framework)