librustzcash icon indicating copy to clipboard operation
librustzcash copied to clipboard

Published 20 hours ago verified publisher icon zcash

Constant-time comparison of nullifiers in scan_block

Open str4d opened this issue 4 years ago • 1 comments

From #84.

str4d avatar Sep 12 '19 15:09 str4d

This was mostly completed in 2bafc688ff5701d1f5531680b9ecd231ced543e1 as part of #114. The remaining non-constant-time behaviour is in filtering out negative results, and it's not obvious to me whether this is something that is exploitable. cc @defuse

str4d avatar Sep 12 '19 15:09 str4d