Yuerchu/disknext
1
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

使用 compare_digest 抵御时差攻击

Browse Source
This commit is contained in:
于小丘
2025-07-18 00:59:05 +08:00
parent 4148e362b9
commit bf3b0e5f7e
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/password/pwd.py
View File

@@ -56,4 +56,4 @@ class Password:
100000) 100000)
pwdhash = binascii.hexlify(pwdhash).decode('ascii') pwdhash = binascii.hexlify(pwdhash).decode('ascii')
return pwdhash == stored_password return secrets.compare_digest(pwdhash, stored_password)