This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author Jon.Oberheide
Recipients Jon.Oberheide, christian.heimes, fijall, hynek, loewis, ncoghlan, petri.lehtinen, pitrou, python-dev
Date 2012-06-16.03:05:30
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1339815932.05.0.807427233052.issue15061@psf.upfronthosting.co.za>
In-reply-to
Content
Wow, that escalated quickly. :-)

Nick, thanks for keeping things focused and on track.

To recap, the primary motivation here is two-fold. First, folks are using == pretty frequently in an unsafe manner when comparing digests, signatures, and other fixed-length strings. This is not good. Second, as we've seen in this thread and elsewhere, getting this right is not easy. Which is the exact reason it belongs in python's stdlib, so that folks do not try to implement it themselves incorrectly.

And again, preventing the leakage of the length of the inputs is not an intended goal here for this use case. It'd be best to keep things as simple as possible while achieving the desired security objective.
History
Date User Action Args
2012-06-16 03:05:32Jon.Oberheidesetrecipients: + Jon.Oberheide, loewis, ncoghlan, pitrou, christian.heimes, fijall, python-dev, petri.lehtinen, hynek
2012-06-16 03:05:32Jon.Oberheidesetmessageid: <1339815932.05.0.807427233052.issue15061@psf.upfronthosting.co.za>
2012-06-16 03:05:31Jon.Oberheidelinkissue15061 messages
2012-06-16 03:05:30Jon.Oberheidecreate