HMAC verification does not use a cosntant time algorithm. Reviewed in https://codereview.appspot.com/6640043/.

commit: 1a0d5cdd20f640b821242a134277a1c156c0af2c [log] [tgz]
author: Joe Gregorio <jcgregorio@google.com> Mon Oct 08 13:48:58 2012 -0400
committer: Joe Gregorio <jcgregorio@google.com> Mon Oct 08 13:48:58 2012 -0400
tree: 648f62f61fa00677afa6f557c93a52d816834f3b
parent: 623de468df99cb65ff91da4806c8c2d75c5ea306 [diff] [blame]
diff --git a/oauth2client/xsrfutil.py b/oauth2client/xsrfutil.py
index 7d5fdbe..7e1fe5c 100644
--- a/oauth2client/xsrfutil.py
+++ b/oauth2client/xsrfutil.py

@@ -100,7 +100,14 @@
   # The given token should match the generated one with the same time.
   expected_token = generate_token(key, user_id, action_id=action_id,
                                   when=token_time)
-  if token != expected_token:
+  if len(token) != len(expected_token):
+    return False
+
+  # Perform constant time comparison to avoid timing attacks
+  different = 0
+  for x, y in zip(token, expected_token):
+    different |= ord(x) ^ ord(y)
+  if different:
     return False
 
   return True
commit	1a0d5cdd20f640b821242a134277a1c156c0af2c	[log] [tgz]
author	Joe Gregorio <jcgregorio@google.com>	Mon Oct 08 13:48:58 2012 -0400
committer	Joe Gregorio <jcgregorio@google.com>	Mon Oct 08 13:48:58 2012 -0400
tree	648f62f61fa00677afa6f557c93a52d816834f3b
parent	623de468df99cb65ff91da4806c8c2d75c5ea306 [diff] [blame]