Fossil

Timeline
Login

Many hyperlinks are disabled.
Use anonymous login to enable hyperlinks.

12 check-ins related to "dmitry-security"

2011-10-04
15:15
Merge protection against timing attacks into trunk. check-in: d4a341b4 user: dmitry tags: trunk
14:38
Merge trunk into dmitry-security branch. Closed-Leaf check-in: f4eb0f5a user: dmitry tags: dmitry-security
14:34
Rename constant_time_eq to constant_time_cmp to better indicate that these functions return 0 when values are equal, like memcmp, strcmp, etc., not truth, to avoid possible mistakes. check-in: d244c484 user: dmitry tags: dmitry-security
14:28
Revert the previous change after thinking more about it.    Login cards in the sync protocol have the following format:    login userid nonce signature    Nonce is SHA-1 of the message that follows this line, signature is SHA-1 of the concatenation of the nonce and user's shared secret. The successful timing attack can reveal only signature for this particular packet due to nonce. However, as nonce is known to the attacker, it's theoretically possible for them to bruteforce the shared secret_offline_.    The whole scenario sounds highly improbable, but using constant-time comparison function for such things by default is a good practice. check-in: 13a9a124 user: dmitry tags: dmitry-security
2011-10-03
16:34
Disabling Cache-control: no-store, as it made firefox forget about form field contents on back/forward in history.    Resolution achieved by a minimal consensus at this thread on the mailing list. check-in: 3fac77d7 user: viriketo tags: trunk
2011-09-30
10:51
It seems like blob_constant_time_eq() is unnecessary for sync protocol signatures; removed. check-in: 48bcfbd4 user: dmitry tags: dmitry-security
09:41
Catch zero length early in blob_constant_time_eq(). check-in: e3d022df user: dmitry tags: dmitry-security
2011-09-29
21:06
Fix to the previous fix: install function to the correct database. check-in: 3782276d user: dmitry tags: dmitry-security
21:04
Fix login groups. check-in: 6f29649e user: dmitry tags: dmitry-security
17:26
Fix comment. check-in: a0fa120b user: dmitry tags: dmitry-security
17:21
Protect against timing attacks by using constant-time comparison function to compare passwords and cookies. check-in: 7f110475 user: dmitry tags: dmitry-security
14:07
When creating a manifest, get isExe and isLink bits from filesystem at once instead of doing two stat(2) calls. check-in: 9bfa186b user: dmitry tags: trunk