rfc:timing_attack
Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
rfc:timing_attack [2014/04/13 21:33] realityking |
rfc:timing_attack [2017/09/22 13:28] (current) |
||
---|---|---|---|
Line 61: | Line 61: | ||
* 0.2 Renamed to hash_compare, added link to Zend Framework 2, removed information leak when knownString is empty (Thank you Tjerk) | * 0.2 Renamed to hash_compare, added link to Zend Framework 2, removed information leak when knownString is empty (Thank you Tjerk) | ||
* 1.0 Moved function to ext/hash. Started voting. | * 1.0 Moved function to ext/hash. Started voting. | ||
+ | * 1.1 Added section about differences between RFC and implementation | ||
+ | |||
+ | ===== Differences between this RFC and the implementation ==== | ||
+ | * The function is now called hash_equals | ||
+ | * Both arguments passed to the function have to be strings, otherwise an E_WARNING is raised. |
rfc/timing_attack.1397424816.txt.gz · Last modified: 2017/09/22 13:28 (external edit)