librustzcash
librustzcash copied to clipboard
Constant-time comparison of nullifiers in scan_block
From #84.
This was mostly completed in 2bafc688ff5701d1f5531680b9ecd231ced543e1 as part of #114. The remaining non-constant-time behaviour is in filtering out negative results, and it's not obvious to me whether this is something that is exploitable. cc @defuse