Closed avoidwork closed 6 years ago
hi,
the timeSafeCompare() function appears to fail for http2 requests, while http1 works fine. my env is running node 9.4.0, and my tests for the 2 protocols are equal.
timeSafeCompare()
http1 input:
http2 input:
the nodejs 9.4 changelog doesn't mention any crypto changes, so i'm confused: https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V9.md#9.4.0
maybe this is related to #43?
nm, pebcak (cookie is missing).
hi,
the
timeSafeCompare()
function appears to fail for http2 requests, while http1 works fine. my env is running node 9.4.0, and my tests for the 2 protocols are equal.http1 input:
http2 input:
the nodejs 9.4 changelog doesn't mention any crypto changes, so i'm confused: https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V9.md#9.4.0