recap-relay

grant/recap-relay

Fork 0

Commit Graph

Author	SHA1	Message	Date
Keysat	da1bba2e6b	Compare operator key in constant time resolveIdentity and verifyOperatorKey compared the shared relay_cloud_operator_key with ===/!==, which short-circuits on the first differing byte — a timing oracle on a high-value key. Use a timingSafeEqual-based constantTimeEqual, matching admin-auth.js.	2026-06-13 18:22:00 -05:00
Keysat	318c6c4b81	Wire new routes; identity, summarize-url, dashboard, admin	2026-06-13 13:36:30 -05:00

Author

SHA1

Message

Date

Keysat

da1bba2e6b

Compare operator key in constant time

resolveIdentity and verifyOperatorKey compared the shared
relay_cloud_operator_key with ===/!==, which short-circuits on the first
differing byte — a timing oracle on a high-value key. Use a
timingSafeEqual-based constantTimeEqual, matching admin-auth.js.

2026-06-13 18:22:00 -05:00

Keysat

318c6c4b81

Wire new routes; identity, summarize-url, dashboard, admin

2026-06-13 13:36:30 -05:00

2 Commits