commit | 7cdd9bc6e73636350728a171c1334446447faf4a | [log] [tgz] |
---|---|---|
author | dschinazi <dschinazi@google.com> | Fri May 21 17:03:18 2021 -0700 |
committer | Copybara-Service <copybara-worker@google.com> | Fri May 21 17:04:26 2021 -0700 |
tree | 4192a66726f772f195203caa54266a4fd81d4995 | |
parent | 4376044cfce150996fb84ac9d271379b737c3c0d [diff] |
Compare stateless reset tokens in constant time This was reported in https://crbug.com/1210531. The security impact here is very low because receipt of a correct or incorrect token doesn't generate a packet in response, so this doesn't generate a side-channel. It's still better practice to compare cryptographic secrets in constant-time. PiperOrigin-RevId: 375191389
QUICHE (QUIC, Http/2, Etc) is Google‘s implementation of QUIC and related protocols. It powers Chromium as well as Google’s QUIC servers and some other projects. QUICHE is only supported on little-endian platforms.
Code can be viewed in CodeSearch in Quiche and is imported into Chromium.