Move mbedtls_cf_memcpy_offset function to the constant-time module
Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
This commit is contained in:
gabor-mezei-arm
parent
dee0fd33f1
commit
0e7f71e1a9
3 changed files with 45 additions and 21 deletions
|
|
@ -418,3 +418,24 @@ void mbedtls_cf_memcpy_if_eq( unsigned char *dst,
|
||||||
for( size_t i = 0; i < len; i++ )
|
for( size_t i = 0; i < len; i++ )
|
||||||
dst[i] = ( src[i] & mask ) | ( dst[i] & ~mask );
|
dst[i] = ( src[i] & mask ) | ( dst[i] & ~mask );
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Constant-flow memcpy from variable position in buffer.
|
||||||
|
* - functionally equivalent to memcpy(dst, src + offset_secret, len)
|
||||||
|
* - but with execution flow independent from the value of offset_secret.
|
||||||
|
*/
|
||||||
|
void mbedtls_cf_memcpy_offset(
|
||||||
|
unsigned char *dst,
|
||||||
|
const unsigned char *src_base,
|
||||||
|
size_t offset_secret,
|
||||||
|
size_t offset_min, size_t offset_max,
|
||||||
|
size_t len )
|
||||||
|
{
|
||||||
|
size_t offset;
|
||||||
|
|
||||||
|
for( offset = offset_min; offset <= offset_max; offset++ )
|
||||||
|
{
|
||||||
|
mbedtls_cf_memcpy_if_eq( dst, src_base + offset, len,
|
||||||
|
offset, offset_secret );
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
|
||||||
|
|
@ -74,3 +74,27 @@ void mbedtls_cf_memcpy_if_eq( unsigned char *dst,
|
||||||
const unsigned char *src,
|
const unsigned char *src,
|
||||||
size_t len,
|
size_t len,
|
||||||
size_t c1, size_t c2 );
|
size_t c1, size_t c2 );
|
||||||
|
|
||||||
|
/** Copy data from a secret position with constant flow.
|
||||||
|
*
|
||||||
|
* This function copies \p len bytes from \p src_base + \p offset_secret to \p
|
||||||
|
* dst, with a code flow and memory access pattern that does not depend on \p
|
||||||
|
* offset_secret, but only on \p offset_min, \p offset_max and \p len.
|
||||||
|
*
|
||||||
|
* \param dst The destination buffer. This must point to a writable
|
||||||
|
* buffer of at least \p len bytes.
|
||||||
|
* \param src_base The base of the source buffer. This must point to a
|
||||||
|
* readable buffer of at least \p offset_max + \p len
|
||||||
|
* bytes.
|
||||||
|
* \param offset_secret The offset in the source buffer from which to copy.
|
||||||
|
* This must be no less than \p offset_min and no greater
|
||||||
|
* than \p offset_max.
|
||||||
|
* \param offset_min The minimal value of \p offset_secret.
|
||||||
|
* \param offset_max The maximal value of \p offset_secret.
|
||||||
|
* \param len The number of bytes to copy.
|
||||||
|
*/
|
||||||
|
void mbedtls_cf_memcpy_offset( unsigned char *dst,
|
||||||
|
const unsigned char *src_base,
|
||||||
|
size_t offset_secret,
|
||||||
|
size_t offset_min, size_t offset_max,
|
||||||
|
size_t len );
|
||||||
|
|
|
||||||
|
|
@ -1027,27 +1027,6 @@ cleanup:
|
||||||
mbedtls_md_free( &aux );
|
mbedtls_md_free( &aux );
|
||||||
return( ret );
|
return( ret );
|
||||||
}
|
}
|
||||||
|
|
||||||
/*
|
|
||||||
* Constant-flow memcpy from variable position in buffer.
|
|
||||||
* - functionally equivalent to memcpy(dst, src + offset_secret, len)
|
|
||||||
* - but with execution flow independent from the value of offset_secret.
|
|
||||||
*/
|
|
||||||
MBEDTLS_STATIC_TESTABLE void mbedtls_cf_memcpy_offset(
|
|
||||||
unsigned char *dst,
|
|
||||||
const unsigned char *src_base,
|
|
||||||
size_t offset_secret,
|
|
||||||
size_t offset_min, size_t offset_max,
|
|
||||||
size_t len )
|
|
||||||
{
|
|
||||||
size_t offset;
|
|
||||||
|
|
||||||
for( offset = offset_min; offset <= offset_max; offset++ )
|
|
||||||
{
|
|
||||||
mbedtls_cf_memcpy_if_eq( dst, src_base + offset, len,
|
|
||||||
offset, offset_secret );
|
|
||||||
}
|
|
||||||
}
|
|
||||||
#endif /* MBEDTLS_SSL_SOME_SUITES_USE_TLS_CBC */
|
#endif /* MBEDTLS_SSL_SOME_SUITES_USE_TLS_CBC */
|
||||||
|
|
||||||
int mbedtls_ssl_decrypt_buf( mbedtls_ssl_context const *ssl,
|
int mbedtls_ssl_decrypt_buf( mbedtls_ssl_context const *ssl,
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue