Commit a148ea0
fix: replace SequenceEqual with SecureMemory.SecureCompare on secret key comparisons
Eliminates timing side-channels in SessionManager key lookup and
Sodium.ValidateX25519PublicKey small-order point checks by using
the constant-time sodium_memcmp wrapper instead of short-circuiting
SequenceEqual. Adds SecureCompare_EqualKeys_ReturnsTrue test.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>1 parent a8dd34e commit a148ea0
3 files changed
Lines changed: 22 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
779 | 779 | | |
780 | 780 | | |
781 | 781 | | |
| 782 | + | |
| 783 | + | |
| 784 | + | |
| 785 | + | |
| 786 | + | |
| 787 | + | |
| 788 | + | |
| 789 | + | |
| 790 | + | |
| 791 | + | |
| 792 | + | |
| 793 | + | |
| 794 | + | |
| 795 | + | |
| 796 | + | |
| 797 | + | |
| 798 | + | |
| 799 | + | |
| 800 | + | |
| 801 | + | |
782 | 802 | | |
783 | 803 | | |
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
1391 | 1391 | | |
1392 | 1392 | | |
1393 | 1393 | | |
1394 | | - | |
| 1394 | + | |
1395 | 1395 | | |
1396 | 1396 | | |
1397 | 1397 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
591 | 591 | | |
592 | 592 | | |
593 | 593 | | |
594 | | - | |
| 594 | + | |
595 | 595 | | |
596 | 596 | | |
597 | 597 | | |
| |||
0 commit comments