Sha256: 25fddc4912cd773f1058993b6cc5b34f6c1bd30b74ac1b5099a75348aad4f1f5

Contents?: true

Size: 585 Bytes

Versions: 32

Compression:

Stored size: 585 Bytes

Contents

module ActiveSupport
  module SecurityUtils
    # Constant time string comparison.
    #
    # The values compared should be of fixed length, such as strings
    # that have already been processed by HMAC. This should not be used
    # on variable length plaintext strings because it could leak length info
    # via timing attacks.
    def secure_compare(a, b)
      return false unless a.bytesize == b.bytesize

      l = a.unpack "C#{a.bytesize}"

      res = 0
      b.each_byte { |byte| res |= byte ^ l.shift }
      res == 0
    end
    module_function :secure_compare
  end
end

Version data entries

32 entries across 30 versions & 7 rubygems

Version Path
activejob-lock-0.0.2 rails/activesupport/lib/active_support/security_utils.rb
angular-rails4-templates-0.4.1 vendor/ruby/2.1.0/gems/activesupport-4.2.4/lib/active_support/security_utils.rb
angular-rails4-templates-0.4.0 vendor/ruby/2.1.0/gems/activesupport-4.2.4/lib/active_support/security_utils.rb
tdiary-4.2.1 vendor/bundle/ruby/2.2.0/gems/activesupport-4.2.5/lib/active_support/security_utils.rb
tdiary-4.2.1 vendor/bundle/ruby/2.3.0/gems/activesupport-4.2.5/lib/active_support/security_utils.rb
activesupport-5.0.0.beta1 lib/active_support/security_utils.rb
angular-rails4-templates-0.3.0 vendor/ruby/2.1.0/gems/activesupport-4.2.4/lib/active_support/security_utils.rb
activesupport-4.2.5 lib/active_support/security_utils.rb
activesupport-4.2.5.rc2 lib/active_support/security_utils.rb
activesupport-4.2.5.rc1 lib/active_support/security_utils.rb
sc_core-0.0.7 test/dummy/vendor/bundle/ruby/2.2.0/gems/activesupport-4.2.4/lib/active_support/security_utils.rb
activesupport-4.2.4 lib/active_support/security_utils.rb
activesupport-4.2.4.rc1 lib/active_support/security_utils.rb
solidus_backend-1.0.0.pre3 vendor/bundle/gems/activesupport-4.2.3/lib/active_support/security_utils.rb
solidus_backend-1.0.0.pre2 vendor/bundle/gems/activesupport-4.2.3/lib/active_support/security_utils.rb
solidus_backend-1.0.0.pre vendor/bundle/gems/activesupport-4.2.1/lib/active_support/security_utils.rb
solidus_backend-1.0.0.pre vendor/bundle/gems/activesupport-4.2.2/lib/active_support/security_utils.rb
activesupport-4.2.3 lib/active_support/security_utils.rb
activesupport-4.2.3.rc1 lib/active_support/security_utils.rb
activesupport-4.2.2 lib/active_support/security_utils.rb