← Back to index | Original Bugzilla link

Bug 17286 – A function for comparing two digests securely

Status: RESOLVED
Resolution: FIXED
Severity: enhancement
Priority: P1
Component: phobos
Product: D
Version: D2
Platform: All
OS: All
Creation time: 2017-03-29T20:27:03Z
Last change time: 2018-01-05T13:28:05Z
Assigned to: No Owner
Creator: Jack Stouffer

Comments

Comment #0 by jack — 2017-03-29T20:27:03Z

Given two strings A and B, using std.algorithm.equal to compare them leaves your web application open to timing attacks because it has a short circuit, i.e. it returns false on the first inequality. The attack comes from allowing attacker to brute force you HMAC key. See this article for more information and why Java gets it wrong: https://codahale.com/a-lesson-in-timing-attacks/ The solution is to have a string comparison that will always be constant time given two strings of the same length.

Comment #1 by jack — 2017-03-30T14:54:15Z

https://github.com/dlang/phobos/pull/5312

Comment #2 by github-bugzilla — 2017-03-31T21:04:41Z

Commits pushed to master at https://github.com/dlang/phobos https://github.com/dlang/phobos/commit/290447ead429608c818db8c263c4df9b722c37c2 Fix Issue 17286 - A function for comparing two digests securely https://github.com/dlang/phobos/commit/30b9da518941e2dfad18acbc1d99a2a2790d996a Merge pull request #5312 from JackStouffer/secureCompare Fix Issue 17286 - A function for comparing two digests securely

Comment #3 by github-bugzilla — 2017-06-17T11:34:17Z

Commits pushed to stable at https://github.com/dlang/phobos https://github.com/dlang/phobos/commit/290447ead429608c818db8c263c4df9b722c37c2 Fix Issue 17286 - A function for comparing two digests securely https://github.com/dlang/phobos/commit/30b9da518941e2dfad18acbc1d99a2a2790d996a Merge pull request #5312 from JackStouffer/secureCompare

Comment #4 by github-bugzilla — 2017-08-07T12:26:40Z

Commits pushed to newCTFE at https://github.com/dlang/phobos https://github.com/dlang/phobos/commit/290447ead429608c818db8c263c4df9b722c37c2 Fix Issue 17286 - A function for comparing two digests securely https://github.com/dlang/phobos/commit/30b9da518941e2dfad18acbc1d99a2a2790d996a Merge pull request #5312 from JackStouffer/secureCompare

Comment #5 by github-bugzilla — 2018-01-05T13:28:05Z

Commits pushed to dmd-cxx at https://github.com/dlang/phobos https://github.com/dlang/phobos/commit/290447ead429608c818db8c263c4df9b722c37c2 Fix Issue 17286 - A function for comparing two digests securely https://github.com/dlang/phobos/commit/30b9da518941e2dfad18acbc1d99a2a2790d996a Merge pull request #5312 from JackStouffer/secureCompare