Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
GitHub is where the world builds software
Millions of developers and companies build, ship, and maintain their software on GitHub — the largest and most advanced development platform in the world.
fix: compare sensitive data with sodium_memcmp
fix: update apt before installing anything
@irungentoo Well, asymptotic complexity of comparing public keys using memcmp is O(N), using public_key_cmp is ~N, so there are such public keys that in the worst case compares with memcmp as "slow" as they are compared with public_key_cmp. There must be no slow down.