Closed paragonie-scott closed 6 years ago
Thanks @paragonie-scott. Pull requests are welcome. C++ is far from my area of expertise. I don't really know what would be the "best practice" way of implementing a constant-time comparison in this language.
http://www.openwall.com/lists/oss-security/2016/01/24/10
Problematic line: https://github.com/RNCryptor/RNCryptor-cpp/blob/c7eba4afa398f54b97f0a60e42806bf373c89316/src/rndecryptor.cpp#L98