Boot: Add constant time memory equality function Add boot_secure_memequal function which runs in constant time, mitigating the risk of timing side channel attacks. Replace calls to memcmp where applicable (where they test only equality). Change-Id: I062a433a67a1a865d6e890ba06a75bfb6b13deb3 Signed-off-by: Raef Coles <raef.coles@arm.com>

commit: 25b857a27e6859e19cb802f43278385543adbc40 [log] [tgz]
author: Raef Coles <raef.coles@arm.com> Thu Sep 05 13:59:55 2019 +0100
committer: Tamas Ban <tamas.ban@arm.com> Fri Sep 27 14:28:29 2019 +0000
tree: 2cce191283bf7f1070b68e7a62a238a027f39081
parent: 6bd5b8138c1081b81817a32514304ecf5400b4da [diff] [blame]
diff --git a/bl2/ext/mcuboot/bootutil/src/image_rsa.c b/bl2/ext/mcuboot/bootutil/src/image_rsa.c
index 22dc6e3..ae71d9b 100644
--- a/bl2/ext/mcuboot/bootutil/src/image_rsa.c
+++ b/bl2/ext/mcuboot/bootutil/src/image_rsa.c

@@ -263,7 +263,7 @@
 
     /* Step 14.  If H = H', output "consistent".  Otherwise, output
      * "inconsistent". */
-    if (memcmp(h2, &em[PSS_HASH_OFFSET], PSS_HLEN) != 0) {
+    if (boot_secure_memequal(h2, &em[PSS_HASH_OFFSET], PSS_HLEN) != 0) {
         return -1;
     }
commit	25b857a27e6859e19cb802f43278385543adbc40	[log] [tgz]
author	Raef Coles <raef.coles@arm.com>	Thu Sep 05 13:59:55 2019 +0100
committer	Tamas Ban <tamas.ban@arm.com>	Fri Sep 27 14:28:29 2019 +0000
tree	2cce191283bf7f1070b68e7a62a238a027f39081
parent	6bd5b8138c1081b81817a32514304ecf5400b4da [diff] [blame]