From 34dee6d29324bda08c5009b64b7d144a7fb5b8ac Mon Sep 17 00:00:00 2001
From: Leon Klingele <git@leonklingele.de>
Date: Sat, 15 Feb 2020 20:01:08 +0100
Subject: [PATCH] Verify token signature in constant time

To prevent timing side channel attacks
---
 src/invidious/helpers/tokens.cr | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/invidious/helpers/tokens.cr b/src/invidious/helpers/tokens.cr
index 30f7d4f4..6e2d9f06 100644
--- a/src/invidious/helpers/tokens.cr
+++ b/src/invidious/helpers/tokens.cr
@@ -1,3 +1,5 @@
+require "crypto/subtle"
+
 def generate_token(email, scopes, expire, key, db)
   session = "v1:#{Base64.urlsafe_encode(Random::Secure.random_bytes(32))}"
   PG_DB.exec("INSERT INTO session_ids VALUES ($1, $2, $3)", session, email, Time.utc)
@@ -76,7 +78,7 @@ def validate_request(token, session, request, key, db, locale = nil)
     raise translate(locale, "Hidden field \"token\" is a required field")
   end
 
-  if token["signature"] != sign_token(key, token)
+  if !Crypto::Subtle.constant_time_compare(token["signature"].to_s, sign_token(key, token))
     raise translate(locale, "Invalid signature")
   end