sitescripts/signing.py - Issue 5177883412660224: Issue 2234 - Add a WSGI controller to collect email addresses for the Adblock Browser iOS launch

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments.

Keyboard Shortcuts

	File
u :	up to issue
m :	publish + mail comments
M :	edit review message
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line
<Enter> :	respond to / edit current comment
d :	mark current comment as done

	Issue
u :	up to list of issues
m :	publish + mail comments
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue
# :	close issue

	Comment/message editing
<Ctrl> + s or <Ctrl> + Enter :	save comment
<Esc> :	cancel edit

Side by Side Diff: sitescripts/signing.py

Issue 5177883412660224: Issue 2234 - Add a WSGI controller to collect email addresses for the Adblock Browser iOS launch (Closed)

Patch Set: Addressed comment Created April 23, 2015, 2:47 p.m.

Left:
Right:

Use n/p to move between diff chunks; N/P to move between comments.

Jump to:

View unified diff | Download patch

OLD	NEW
(Empty)
	1 import hmac

	2 import hashlib

	3

	4 from sitescripts.utils import get_config

	5

	6 _SECRET = get_config().get('DEFAULT', 'secret')
	Wladimir Palant 2015/04/23 16:04:40 No, it should be .get('submit_email', 'secret') - No, it should be .get('submit_email', 'secret') - the secret is specific to the application. The fact that our example configuration puts it under DEFAULT should probably be considered a bug, even though it works correctly that way. Sebastian Noack 2015/04/23 16:29:41 Done. Show quoted text On 2015/04/23 16:04:40, Wladimir Palant wrote: > No, it should be .get('submit_email', 'secret') - the secret is specific to the > application. The fact that our example configuration puts it under DEFAULT > should probably be considered a bug, even though it works correctly that way. Done.
	7

	8 def constant_time_compare(s1, s2):

	9 if len(s1) != len(s2):

	10 return False

	11 return reduce(lambda a, b: a \| b, (ord(c1) ^ ord(c2) for c1, c2 in zip(s1, s2) )) == 0
	Wladimir Palant 2015/04/23 16:04:40 Do I get it correctly that you are trying to addre Do I get it correctly that you are trying to address timing attacks here? We are comparing strings that are merely 32 characters long, and the potential attacker isn't exactly sitting in front of our server. The comparison takes a bunch of nanoseconds on my computer - that's several magnitudes smaller than the variation introduced by the HTTP processing (never mind the network). You don't need to overthink this... Without this function this module isn't justified and I don't think we should have it. Sebastian Noack 2015/04/23 16:29:41 Sure, that was the idea. But fair enough. Show quoted text On 2015/04/23 16:04:40, Wladimir Palant wrote: > Do I get it correctly that you are trying to address timing attacks here? We are > comparing strings that are merely 32 characters long, and the potential attacker > isn't exactly sitting in front of our server. The comparison takes a bunch of > nanoseconds on my computer - that's several magnitudes smaller than the > variation introduced by the HTTP processing (never mind the network). You don't > need to overthink this... > > Without this function this module isn't justified and I don't think we should > have it. Sure, that was the idea. But fair enough.
	12

	13 def sign(data):

	14 return hmac.new(_SECRET, data, hashlib.sha1).hexdigest()

	15

	16 def verify(data, signature):

	17 return constant_time_compare(sign(data), signature)

OLD	NEW

« no previous file with comments | « .sitescripts.example ('k') | sitescripts/submitEmail/__init__.py » ('j') | sitescripts/submitEmail/web/submitEmail.py » ('J')