upstream/ipython Commit - r17360:71fce017

27

cPickle = None

27

cPickle = None

28

import pickle

28

import pickle

29

30

try:

31

# We are using compare_digest to limit the surface of timing attacks

32

from hmac import compare_digest

33

except ImportError:

34

# Python < 2.7.7: When digests don't match no feedback is provided,

35

# limiting the surface of attack

36

def compare_digest(a,b): return a == b

37

30

import zmq

38

import zmq

31

from zmq.utils import jsonapi

39

from zmq.utils import jsonapi

32

from zmq.eventloop.ioloop import IOLoop

40

from zmq.eventloop.ioloop import IOLoop

33

from zmq.eventloop.zmqstream import ZMQStream

41

from zmq.eventloop.zmqstream import ZMQStream

34

42

35

from IPython.core.release import kernel_protocol_version, ~~kernel_protocol_version_info~~

43

from IPython.core.release import kernel_protocol_version

36

from IPython.config.configurable import Configurable, LoggingConfigurable

44

from IPython.config.configurable import Configurable, LoggingConfigurable

37

from IPython.utils import io

45

from IPython.utils import io

38

from IPython.utils.importstring import import_item

46

from IPython.utils.importstring import import_item

216

dict-based IPython message spec. The Session will handle

224

dict-based IPython message spec. The Session will handle

217

serialization/deserialization, security, and metadata.

225

serialization/deserialization, security, and metadata.

218

226

219

Sessions support configurable serialiization via packer/unpacker traits,

227

Sessions support configurable serialization via packer/unpacker traits,

220

and signing with HMAC digests via the key/keyfile traits.

228

and signing with HMAC digests via the key/keyfile traits.

221

229

222

Parameters

230

Parameters

524

Parameters

532

Parameters

525

----------

533

----------

526

msg : dict or Message

534

msg : dict or Message

527

The nexted message dict as returned by the self.msg method.

535

The next message dict as returned by the self.msg method.

528

536

529

Returns

537

Returns

530

-------

538

-------

818

raise ValueError("Duplicate Signature: %r" % signature)

826

raise ValueError("Duplicate Signature: %r" % signature)

819

self._add_digest(signature)

827

self._add_digest(signature)

820

check = self.sign(msg_list[1:5])

828

check = self.sign(msg_list[1:5])

821

if not signature == check:

829

if not compare_digest(signature, check):

822

raise ValueError("Invalid Signature: %r" % signature)

830

raise ValueError("Invalid Signature: %r" % signature)

823

if not len(msg_list) >= minlen:

831

if not len(msg_list) >= minlen:

824

raise TypeError("malformed message, must have at least %i elements"%minlen)

832

raise TypeError("malformed message, must have at least %i elements"%minlen)

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

                 cPickle = None
                 import pickle
+            try:
+                # We are using compare_digest to limit the surface of timing attacks
+                from hmac import compare_digest
+            except ImportError:
+                # Python < 2.7.7: When digests don't match no feedback is provided,
+                # limiting the surface of attack
+                def compare_digest(a,b): return a == b
             import zmq
             from zmq.utils import jsonapi
             from zmq.eventloop.ioloop import IOLoop
             from zmq.eventloop.zmqstream import ZMQStream
-            from IPython.core.release import kernel_protocol_version, kernel_protocol_version_info
+            from IPython.core.release import kernel_protocol_version
             from IPython.config.configurable import Configurable, LoggingConfigurable
             from IPython.utils import io
             from IPython.utils.importstring import import_item
                 dict-based IPython message spec. The Session will handle
                 serialization/deserialization, security, and metadata.
-                Sessions support configurable serialiization via packer/unpacker traits,
+                Sessions support configurable serialization via packer/unpacker traits,
                 and signing with HMAC digests via the key/keyfile traits.
                 Parameters
                     Parameters
                     ----------
                     msg : dict or Message
-                        The nexted message dict as returned by the self.msg method.
+                        The next message dict as returned by the self.msg method.
                     Returns
                     -------
                             raise ValueError("Duplicate Signature: %r" % signature)
                         self._add_digest(signature)
                         check = self.sign(msg_list[1:5])
-                        if not signature == check:
+                        if not compare_digest(signature, check):
                             raise ValueError("Invalid Signature: %r" % signature)
                     if not len(msg_list) >= minlen:
                         raise TypeError("malformed message, must have at least %i elements"%minlen)