Module: ActiveSupport::SecurityUtils

Included in:

SecureCompareRotator

Defined in:

activesupport/lib/active_support/security_utils.rb

Class Method Summary

• .fixed_length_secure_compare(a, b) ⇒ Object

  Constant time string comparison, for fixed length strings.

• .secure_compare(a, b) ⇒ Object

  Constant time string comparison, for variable length strings.

Class Method Details

.fixed_length_secure_compare(a, b) ⇒ Object

Constant time string comparison, for fixed length strings.

The values compared should be of fixed length, such as strings that have already been processed by HMAC. Raises in case of length mismatch.

Raises:

• (ArgumentError)

# File 'activesupport/lib/active_support/security_utils.rb', line 11

def fixed_length_secure_compare(a, b)
  raise ArgumentError, "string length mismatch." unless a.bytesize == b.bytesize

  l = a.unpack "C#{a.bytesize}"

  res = 0
  b.each_byte { |byte| res |= byte ^ l.shift }
  res == 0
end

.secure_compare(a, b) ⇒ Object

Constant time string comparison, for variable length strings.

The values are first processed by SHA256, so that we don’t leak length info via timing attacks.

# File 'activesupport/lib/active_support/security_utils.rb', line 26

def secure_compare(a, b)
  fixed_length_secure_compare(::Digest::SHA256.digest(a), ::Digest::SHA256.digest(b)) && a == b
end