|
|
@@ -1291,11 +1291,11 @@ namespace Renci.SshNet
|
|
|
if (_serverMac != null && _serverEtm)
|
|
|
{
|
|
|
var clientHash = _serverMac.ComputeHash(data, 0, data.Length - serverMacLength);
|
|
|
- var serverHash = data.Take(data.Length - serverMacLength, serverMacLength);
|
|
|
-
|
|
|
- // TODO Add IsEqualTo overload that takes left+right index and number of bytes to compare.
|
|
|
- // TODO That way we can eliminate the extra allocation of the Take above.
|
|
|
- if (!serverHash.IsEqualTo(clientHash))
|
|
|
+#if NETSTANDARD2_1_OR_GREATER || NETCOREAPP2_1_OR_GREATER
|
|
|
+ if (!CryptographicOperations.FixedTimeEquals(clientHash, new ReadOnlySpan<byte>(data, data.Length - serverMacLength, serverMacLength)))
|
|
|
+#else
|
|
|
+ if (!Security.Chaos.NaCl.CryptoBytes.ConstantTimeEquals(clientHash, 0, data, data.Length - serverMacLength, serverMacLength))
|
|
|
+#endif
|
|
|
{
|
|
|
throw new SshConnectionException("MAC error", DisconnectReason.MacError);
|
|
|
}
|
|
|
@@ -1319,11 +1319,11 @@ namespace Renci.SshNet
|
|
|
if (_serverMac != null && !_serverEtm)
|
|
|
{
|
|
|
var clientHash = _serverMac.ComputeHash(data, 0, data.Length - serverMacLength);
|
|
|
- var serverHash = data.Take(data.Length - serverMacLength, serverMacLength);
|
|
|
-
|
|
|
- // TODO Add IsEqualTo overload that takes left+right index and number of bytes to compare.
|
|
|
- // TODO That way we can eliminate the extra allocation of the Take above.
|
|
|
- if (!serverHash.IsEqualTo(clientHash))
|
|
|
+#if NETSTANDARD2_1_OR_GREATER || NETCOREAPP2_1_OR_GREATER
|
|
|
+ if (!CryptographicOperations.FixedTimeEquals(clientHash, new ReadOnlySpan<byte>(data, data.Length - serverMacLength, serverMacLength)))
|
|
|
+#else
|
|
|
+ if (!Security.Chaos.NaCl.CryptoBytes.ConstantTimeEquals(clientHash, 0, data, data.Length - serverMacLength, serverMacLength))
|
|
|
+#endif
|
|
|
{
|
|
|
throw new SshConnectionException("MAC error", DisconnectReason.MacError);
|
|
|
}
|
Scott Xu