LBRYCommunity/lbcd
1
0
Fork 0
Code Issues 17 Pull requests 4 Projects Releases 28 Packages Wiki Activity

Mitigate timing attacks while using btcec.Decrypt.

Browse source
This commit is contained in:
Ishbir Singh 2015-05-25 16:42:43 +05:30
parent 9d6d0e4006
commit d9556df292
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
btcec/ciphering.go
View file

@ -178,7 +178,7 @@ func Decrypt(priv *PrivateKey, in []byte) ([]byte, error) {
hm := hmac.New(sha256.New, keyM)
hm.Write(in[:len(in)-sha256.Size]) // everything is hashed
expectedMAC := hm.Sum(nil)
if !bytes.Equal(messageMAC, expectedMAC) {
if !hmac.Equal(messageMAC, expectedMAC) {
return nil, ErrInvalidMAC
}