Duplicate sensitive buffer and buffer length information Detect FI attacks on buffer pointers and buffer lengths. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>

commit: 74f7d0f03de292474ed16500575aee45758fa491 [log] [tgz]
author: Andrzej Kurek <andrzej.kurek@arm.com> Mon Jul 06 14:28:12 2020 -0400
committer: Andrzej Kurek <andrzej.kurek@arm.com> Mon Jul 06 14:28:12 2020 -0400
tree: 8c7c27d291705e8bd54131673e0810729c66cc8a
parent: 98c847a4834eff8cd9b27b3ac5bbf30668578b48 [diff] [blame]
diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index 5c74386..24c73b5 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c

@@ -2796,10 +2796,14 @@
     volatile int ret = 0;
     unsigned char *p;
     unsigned char *end;
+    volatile unsigned char *buf_dup = buf;
+    volatile size_t buflen_dup = buflen;
 
     mbedtls_ssl_ciphersuite_handle_t ciphersuite_info =
         mbedtls_ssl_handshake_get_ciphersuite( ssl->handshake );
 
+    ((void) buf_dup);
+    ((void) buflen_dup);
     p   = buf + mbedtls_ssl_hs_hdr_len( ssl );
     end = buf + buflen;
 
@@ -3100,7 +3104,7 @@
         {
             mbedtls_platform_random_delay();
 
-            if( ret == 0 )
+            if( ret == 0 && buf_dup == buf && buflen_dup == buflen )
             {
 #if !defined(MBEDTLS_SSL_KEEP_PEER_CERTIFICATE)
                 /* We don't need the peer's public key anymore. Free it,
commit	74f7d0f03de292474ed16500575aee45758fa491	[log] [tgz]
author	Andrzej Kurek <andrzej.kurek@arm.com>	Mon Jul 06 14:28:12 2020 -0400
committer	Andrzej Kurek <andrzej.kurek@arm.com>	Mon Jul 06 14:28:12 2020 -0400
tree	8c7c27d291705e8bd54131673e0810729c66cc8a
parent	98c847a4834eff8cd9b27b3ac5bbf30668578b48 [diff] [blame]