rails

mirror of https://github.com/github/rails.git synced 2026-04-26 03:00:59 -04:00

Go to file

Coda Hale 5e6dab8b34 Fix timing attack vulnerability in ActiveSupport::MessageVerifier.

Use a constant-time comparison algorithm to compare the candidate HMAC with the calculated HMAC to prevent leaking information about the calculated HMAC.

Signed-off-by: Michael Koziarski <michael@koziarski.com>

2009-09-04 09:25:38 +12:00

actionmailer

Refactor ActionView::Resolver

2009-09-03 11:18:57 -07:00

actionpack

CookieStore should not be derived from Hash - reverting [#2268 state:resolved]

2009-09-03 15:15:15 -05:00

activemodel

Kill AMo observing wrap_with_notifications since ARes was only using it

2009-09-02 11:44:36 -05:00

activerecord

Revert "Assert primary key does not exist in habtm when the association is defined, instead of doing that everytime a record is inserted."

2009-09-02 13:55:47 -07:00

activeresource

Kill AMo observing wrap_with_notifications since ARes was only using it

2009-09-02 11:44:36 -05:00

activesupport

Fix timing attack vulnerability in ActiveSupport::MessageVerifier.

2009-09-04 09:25:38 +12:00

rack-test 0.4.2 has rack 1.1.pre goodies, we'll use it instead

2009-08-31 23:08:20 -05:00

doc/template

Horo rdoc template

2008-06-22 10:38:25 -07:00

railties

Vendor the latest version of the bundler

2009-09-03 09:31:04 -07:00

tools

Rename tools/profile_requires -> tools/profile since we do both require and ruby-prof profiling.

2009-05-27 01:11:33 -05:00

.gitignore

Refactor ActionView::Resolver

2009-09-03 11:18:57 -07:00

.gitmodules

Remove submodule

2009-08-11 23:44:44 -07:00

pushgems.rb

No more svn version numbers to rely on, use timestamps instead

2008-05-11 18:21:47 -05:00

Rakefile

Add rake gemspec and gemspecs to the repo

2009-08-31 17:20:44 -07:00

release.rb

Use copy instead of export for release

2008-09-05 14:22:56 +02:00