Changed every memcmp to SCA equivalent mbedtls_platform_memcmp This makes physical attacks more difficult. Selftest memcmp functions were not changed.

commit: 61f412eb587dcb842c9388b93505bc078a58aac4 [log] [tgz]
author: Teppo Järvelin <teppo.jarvelin@arm.com> Thu Oct 03 12:25:22 2019 +0300
committer: Teppo Järvelin <teppo.jarvelin@arm.com> Thu Oct 03 13:14:33 2019 +0300
tree: aeec04ea080257880d100f8e848b7d91bbe739e1
parent: 51f65e4b86f59c7976168eeb61dbe16bbda88356 [diff] [blame]
diff --git a/library/ssl_ticket.c b/library/ssl_ticket.c
index 285e736..b5cd901 100644
--- a/library/ssl_ticket.c
+++ b/library/ssl_ticket.c

@@ -259,7 +259,7 @@
     unsigned char i;
 
     for( i = 0; i < sizeof( ctx->keys ) / sizeof( *ctx->keys ); i++ )
-        if( memcmp( name, ctx->keys[i].name, 4 ) == 0 )
+        if( mbedtls_platform_memcmp( name, ctx->keys[i].name, 4 ) == 0 )
             return( &ctx->keys[i] );
 
     return( NULL );
commit	61f412eb587dcb842c9388b93505bc078a58aac4	[log] [tgz]
author	Teppo Järvelin <teppo.jarvelin@arm.com>	Thu Oct 03 12:25:22 2019 +0300
committer	Teppo Järvelin <teppo.jarvelin@arm.com>	Thu Oct 03 13:14:33 2019 +0300
tree	aeec04ea080257880d100f8e848b7d91bbe739e1
parent	51f65e4b86f59c7976168eeb61dbe16bbda88356 [diff] [blame]