Constant time compare for admin password.

jholdstock · jholdstock · commit 6149d9cd1e6a · 2026-01-12T12:14:17.000Z
Using a constant time comparison for the admin password reduces the
chance brute forcing the password via a side-channel/timing attack.
diff --git a/internal/webapi/admin.go b/internal/webapi/admin.go
@@ -1,10 +1,12 @@
-// Copyright (c) 2020-2024 The Decred developers
+// Copyright (c) 2020-2025 The Decred developers
 // Use of this source code is governed by an ISC
 // license that can be found in the LICENSE file.
 
 package webapi
 
 import (
+	"crypto/sha256"
+	"crypto/subtle"
 	"encoding/json"
 	"net/http"
 
@@ -263,7 +265,11 @@ func (w *WebAPI) adminLogin(c *gin.Context) {
 
 	password := c.PostForm("password")
 
-	if password != w.cfg.AdminPass {
+	// subtle.ConstantTimeCompare returns immediately if the params are not the
+	// same length. Avoid this by comparing hashes (which will be fixed length)
+	// instead of the raw passwords.
+	passwordHash := sha256.Sum256([]byte(password))
+	if subtle.ConstantTimeCompare(passwordHash[:], w.adminPassHash[:]) != 1 {
 		w.log.Warnf("Failed login attempt from %s", c.ClientIP())
 		c.HTML(http.StatusUnauthorized, "login.html", gin.H{
 			"WebApiCache":    cacheData,
diff --git a/internal/webapi/webapi.go b/internal/webapi/webapi.go
@@ -1,4 +1,4 @@
-// Copyright (c) 2020-2024 The Decred developers
+// Copyright (c) 2020-2025 The Decred developers
 // Use of this source code is governed by an ISC
 // license that can be found in the LICENSE file.
 
@@ -7,6 +7,7 @@ package webapi
 import (
 	"context"
 	"crypto/ed25519"
+	"crypto/sha256"
 	"encoding/base64"
 	"encoding/json"
 	"errors"
@@ -67,15 +68,16 @@ const (
 )
 
 type WebAPI struct {
-	cfg         Config
-	db          *database.VspDatabase
-	log         slog.Logger
-	addrGen     *addressGenerator
-	cache       *cache
-	signPrivKey ed25519.PrivateKey
-	signPubKey  ed25519.PublicKey
-	server      *http.Server
-	listener    net.Listener
+	cfg           Config
+	db            *database.VspDatabase
+	log           slog.Logger
+	addrGen       *addressGenerator
+	cache         *cache
+	adminPassHash [sha256.Size]byte
+	signPrivKey   ed25519.PrivateKey
+	signPubKey    ed25519.PublicKey
+	server        *http.Server
+	listener      net.Listener
 }
 
 func New(vdb *database.VspDatabase, log slog.Logger, dcrd rpc.DcrdConnect,
@@ -121,14 +123,15 @@ func New(vdb *database.VspDatabase, log slog.Logger, dcrd rpc.DcrdConnect,
 	}
 
 	w := &WebAPI{
-		cfg:         cfg,
-		db:          vdb,
-		log:         log,
-		addrGen:     addrGen,
-		cache:       cache,
-		signPrivKey: signPrivKey,
-		signPubKey:  signPubKey,
-		listener:    listener,
+		cfg:           cfg,
+		db:            vdb,
+		log:           log,
+		addrGen:       addrGen,
+		cache:         cache,
+		adminPassHash: sha256.Sum256([]byte(cfg.AdminPass)),
+		signPrivKey:   signPrivKey,
+		signPubKey:    signPubKey,
+		listener:      listener,
 	}
 
 	w.server = &http.Server{
