Created
January 30, 2013 19:09
-
-
Save lvh/4675839 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| def _immediateResponder(f): | |
| """ | |
| A decorator for responder functions that should return immediately and | |
| execute asynchronously, as a defense against timing attacks. | |
| The responder decorator should be applied after (above) this decorator:: | |
| @SomeCommand.responder | |
| @_immediateResponder | |
| def responder(...): | |
| .... | |
| This should be timing attack resistant since it is unconditional: the | |
| the AMP response is returned immediately, and the real responder is | |
| scheduled to run at the next chance the reactor has to do so. | |
| This only works with AMP commands with empty responses. That's probably a | |
| good idea anyway: almost all information you could add to the response | |
| is liable to introduce a timing attack vulnerability. | |
| Since this precludes your ability to communicate success or failure to | |
| the caller, the decorated function should return quite quickly (or, if it | |
| can't, that should be clearly documented). Otherwise, you may end up in a | |
| a race condition, where the caller assumes the operation has completed, | |
| but it is in progress or hasn't started yet. | |
| The original responder function is available on the decorated function as | |
| the ``responderFunction`` attribute. | |
| """ | |
| @functools.wraps(f) | |
| def wrapped(self, *args, **kwargs): | |
| reactor.callLater(0, f, self, *args, **kwargs) | |
| return {} | |
| wrapped.responderFunction = f | |
| return wrapped |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment