scmp

safe, constant-time comparison of Buffers

Last updated 6 years ago by freewil .

BSD-3-Clause · Repository · Bugs · Original npm

$ cnpm install scmp

SYNC missed versions from official npm registry.

scmp

Safe, constant-time comparison of Buffers.

Install

npm install scmp

Why?

To minimize vulnerability against timing attacks.

Example

const scmp = require('scmp');
const Buffer = require('safe-buffer').Buffer;

const hash      = Buffer.from('e727d1464ae12436e899a726da5b2f11d8381b26', 'hex');
const givenHash = Buffer.from('e727e1b80e448a213b392049888111e1779a52db', 'hex');

if (scmp(hash, givenHash)) {
  console.log('good hash');
} else {
  console.log('bad hash');
}

Current Tags

2.1.0 ... latest (6 years ago)

1 Versions

2.1.0 ... 6 years ago

Maintainers (1)

Downloads

Today 0

This Week 0

This Month 0

Last Day 0

Last Week 0

Last Month 0

Dependencies (0)

None

Dev Dependencies (4)

benchmark ^2.1.4
mocha ^6.2.0
safe-buffer ^5.1.2
standard ^14.3.1

Dependents (0)

None

Copyright 2013 - present © cnpmjs.org