Safer buffer comparisons in the SSL modules

commit: 31ff1d2e4fb9ea0b9ffccff990e780bbc3369d7b [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Mon Oct 28 13:46:11 2013 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Thu Oct 31 14:23:12 2013 +0100
tree: 0705c7da7a6f89a82a1f3a48181b2453eb0c335b
parent: 291f9af935e8cbe78216c93ae3b62728e4e62729 [diff] [blame]
diff --git a/include/polarssl/ssl.h b/include/polarssl/ssl.h
index e75f9d7..57379f2 100644
--- a/include/polarssl/ssl.h
+++ b/include/polarssl/ssl.h

@@ -1565,6 +1565,20 @@
 }
 #endif /* POLARSSL_X509_CRT_PARSE_C */
 
+/* constant-time buffer comparison */
+static inline int safer_memcmp( const void *a, const void *b, size_t n )
+{
+    size_t i;
+    const unsigned char *A = (const unsigned char *) a;
+    const unsigned char *B = (const unsigned char *) b;
+    unsigned char diff = 0;
+
+    for( i = 0; i < n; i++ )
+        diff |= A[i] ^ B[i];
+
+    return( diff );
+}
+
 #ifdef __cplusplus
 }
 #endif
commit	31ff1d2e4fb9ea0b9ffccff990e780bbc3369d7b	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Mon Oct 28 13:46:11 2013 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Thu Oct 31 14:23:12 2013 +0100
tree	0705c7da7a6f89a82a1f3a48181b2453eb0c335b
parent	291f9af935e8cbe78216c93ae3b62728e4e62729 [diff] [blame]