Changed every memcpy to SCA equivalent mbedtls_platform_memcpy This makes physical attacks more difficult.

commit: 91d79387619e0a4fe6a0cc6e045102820b1a18d1 [log] [tgz]
author: Teppo Järvelin <teppo.jarvelin@arm.com> Wed Oct 02 09:09:31 2019 +0300
committer: Teppo Järvelin <teppo.jarvelin@arm.com> Wed Oct 30 14:07:04 2019 +0200
tree: 2b9aeda258513183faab54cdc313c91e5ce989ff
parent: aeecf04be3ab7939a93ad6ad613a1f74a56c21b7 [diff] [blame]
diff --git a/library/pkcs11.c b/library/pkcs11.c
index 7bbc555..59549ee 100644
--- a/library/pkcs11.c
+++ b/library/pkcs11.c

@@ -219,7 +219,7 @@
         *p++ = (unsigned char) ( 0x04 + oid_size );
         *p++ = MBEDTLS_ASN1_OID;
         *p++ = oid_size & 0xFF;
-        memcpy( p, oid, oid_size );
+        mbedtls_platform_memcpy( p, oid, oid_size );
         p += oid_size;
         *p++ = MBEDTLS_ASN1_NULL;
         *p++ = 0x00;
@@ -227,7 +227,7 @@
         *p++ = hashlen;
     }
 
-    memcpy( p, hash, hashlen );
+    mbedtls_platform_memcpy( p, hash, hashlen );
 
     if( pkcs11h_certificate_signAny( ctx->pkcs11h_cert, CKM_RSA_PKCS, sig,
             asn_len + hashlen, sig, &sig_len ) != CKR_OK )
commit	91d79387619e0a4fe6a0cc6e045102820b1a18d1	[log] [tgz]
author	Teppo Järvelin <teppo.jarvelin@arm.com>	Wed Oct 02 09:09:31 2019 +0300
committer	Teppo Järvelin <teppo.jarvelin@arm.com>	Wed Oct 30 14:07:04 2019 +0200
tree	2b9aeda258513183faab54cdc313c91e5ce989ff
parent	aeecf04be3ab7939a93ad6ad613a1f74a56c21b7 [diff] [blame]