Flag SCA_CM encrypt/decrypt functions There is a 50% performance drop in the SCA_CM enabled encrypt and decrypt functions. Therefore use the older version of encrypt/decypt functions when SCA_CM is disabled.

commit: 311ab594d71136b222b3fc69b7ce549906f01058 [log] [tgz]
author: Arto Kinnunen <arto.kinnunen@arm.com> Thu Jan 16 17:20:51 2020 +0200
committer: Arto Kinnunen <arto.kinnunen@arm.com> Tue Jan 21 12:01:42 2020 +0200
tree: a1d0870e599f18e51f9670319abe5f4c0f71ae07
parent: 2b24f4280ff259203ee7124f63f79ac65a85abff [diff] [blame]
diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index 0f65133..e5e9a88 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h

@@ -640,10 +640,13 @@
  * Add countermeasures against possible side-channel-attack to AES calculation.
  *
  * Uncommenting this macro adds additional calculation rounds to AES
- * calculation. Additional rounds are using random data and can occur in any
- * AES calculation round.
+ * calculation. Additional rounds are using random data for calculation. The
+ * additional rounds are added to:
+ * -initial key addition phase
+ * -before the first AES calculation round
+ * -after the last AES calculation round
  *
- * Tradeoff: Uncommenting this increases ROM footprint by ~100 bytes.
+ * Tradeoff: Uncommenting this macro does not increases ROM footprint.
  * The performance loss is ~50% with 128 bit AES.
  *
  * This option is dependent of \c MBEDTLS_ENTROPY_HARDWARE_ALT.
commit	311ab594d71136b222b3fc69b7ce549906f01058	[log] [tgz]
author	Arto Kinnunen <arto.kinnunen@arm.com>	Thu Jan 16 17:20:51 2020 +0200
committer	Arto Kinnunen <arto.kinnunen@arm.com>	Tue Jan 21 12:01:42 2020 +0200
tree	a1d0870e599f18e51f9670319abe5f4c0f71ae07
parent	2b24f4280ff259203ee7124f63f79ac65a85abff [diff] [blame]