| commit | ea6006944bc6de9eba8b9fa44cc326005bde5091 | |
| author | Glenn Strauss <gstrauss@gluelogic.com> | |
| Sat, 7 Sep 2019 17:37:36 +0000 (7 13:37 -0400) | ||
| committer | Glenn Strauss <gstrauss@gluelogic.com> | |
| Sat, 7 Sep 2019 17:44:51 +0000 (7 13:44 -0400) | ||
| tree | e717b79a19bf018f7a6e5985744d979d8e16d7a8 | treesnapshot (tar.gz zip) |
| parent | 84fb334476ef9f707c571fede34a3cfd6c72a927 | commitdiff |
[mod_auth] http_auth_const_time_memeq improvement
employ volatile, which might matter with some compilers (or might not)
explicitly check that string lengths match
(or else might match string where last char of short string matches
repeated chars in longer string)
employ volatile, which might matter with some compilers (or might not)
explicitly check that string lengths match
(or else might match string where last char of short string matches
repeated chars in longer string)
| src/http_auth.c | diffblobblamehistory |