Symfony\Component\Security\Http\RememberMe\TokenBasedRememberMeServices::compareHashes
Compares two hashes using a constant-time algorithm to avoid (remote) timing attacks.
This is the same implementation as used in the BasePasswordEncoder.
Signature
private function compareHashes(string
$hash1,
string
$hash2 )
Parameters
$hash1
— string- The first hash
$hash2
— string- The second hash
Returns
- Boolean
- true if the two hashes are the same, false otherwise