Delete SafeComparison.py

2026-04-30 03:05:15 +02:00 · 2022-08-05 12:48:51 +01:00
parent c7828bf9b4
commit d9e85a9064
1 changed files with 0 additions and 33 deletions
--- a/python/ql/src/experimental/Security/CWE-208/SafeComparison.py
+++ b/python/ql/src/experimental/Security/CWE-208/SafeComparison.py
@@ -1,33 +0,0 @@
-#!/usr/bin/env python
-# -*- coding: UTF-8 -*-
-
-"""
-@Desc   ：preventing timing attack
-"""
-import hmac
-from flask import Flask
-from flask import request
-import hashlib
-
-key = "e179017a-62b0-4996-8a38-e91aa9f1"
-
-@app.route('/good1')
-def good1():
-    Secret = request.headers.get('X-Auth-Token')    
-    if not hmac.compare_digest(Secret, "token"):
-        raise Exception('bad token')
-    return 'good1'
-
-@app.route('/good2')
-def check_credentials(password):
-    return hmac.compare_digest(password, "token")
-
-def sign(pre_key, msg, alg):
-    return hmac.new(pre_key, msg, alg).digest()
-
-def verify(msg, sig):
-    return hmac.compare_digest(sig, sign(key, msg, hashlib.sha256)) #good
-        
-if __name__ == '__main__':
-    app.debug = True
-    app.run()