revi-archive/phorge-phorge
1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2024-11-13 10:22:42 +01:00
Code Issues Releases Wiki Activity
phorge-phorge/src/applications/settings
History
epriestley 29948eaa5b Use phutil_hashes_are_identical() when comparing hashes in Phabricator 
Summary: See D14025. In all cases where we compare hashes, use strict, constant-time comparisons.

Test Plan: Logged in, logged out, added TOTP, ran Conduit, terminated sessions, submitted forms, changed password. Tweaked CSRF token, got rejected.

Reviewers: chad

Reviewed By: chad

Subscribers: chenxiruanhai

Differential Revision: https://secure.phabricator.com/D14026
2015-09-01 15:52:44 -07:00
..
action Add semi-generic rate limiting infrastructure 2014-04-03 11:22:38 -07:00
application Remove getIconName from all applications 2015-01-30 12:11:21 -08:00
controller Use PhutilClassMapQuery instead of PhutilSymbolLoader 2015-08-14 07:49:01 +10:00
panel Use phutil_hashes_are_identical() when comparing hashes in Phabricator 2015-09-01 15:52:44 -07:00
storage Merge branch 'master' into redesign-2015 2015-06-22 15:52:40 -07:00