From ec7572f509b2714fdc029b544d0589c17757e6a9 Mon Sep 17 00:00:00 2001
From: Sebastian <ricecake@greenstuff.io>
Date: Thu, 11 Nov 2021 02:27:06 -0500
Subject: [PATCH] use constant time compare for password validation

Use a constant time comparison function to compare password hashes
This guards against the possibility of leaking timing information when comparing hashes.
---
 packet.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/packet.go b/packet.go
index 7955760..b1c2824 100644
--- a/packet.go
+++ b/packet.go
@@ -1,9 +1,9 @@
 package radius
 
 import (
-	"bytes"
 	"crypto/md5"
 	"crypto/rand"
+	"crypto/subtle"
 	"encoding/binary"
 	"errors"
 )
@@ -155,7 +155,7 @@ func IsAuthenticResponse(response, request, secret []byte) bool {
 	hash.Write(response[20:])
 	hash.Write(secret)
 	var sum [md5.Size]byte
-	return bytes.Equal(hash.Sum(sum[:0]), response[4:20])
+	return subtle.ConstantTimeCompare(hash.Sum(sum[:0]), response[4:20])
 }
 
 // IsAuthenticRequest returns if the given RADIUS request is an authentic
@@ -176,7 +176,7 @@ func IsAuthenticRequest(request, secret []byte) bool {
 		hash.Write(request[20:])
 		hash.Write(secret)
 		var sum [md5.Size]byte
-		return bytes.Equal(hash.Sum(sum[:0]), request[4:20])
+		return subtle.ConstantTimeCompare(hash.Sum(sum[:0]), request[4:20])
 	default:
 		return false
 	}