TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / e1cb8846e7648c915b0d25abeb6862ef5bece1f7^! / . / tinycrypt
commite1cb8846e7648c915b0d25abeb6862ef5bece1f7[log] [tgz]
authorManuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>Thu Nov 28 12:21:34 2019 +0100
committerManuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>Thu Nov 28 12:21:34 2019 +0100
tree45287b893c6fbda5cc0b7918fb0ad4a2fdca0669
parent5c3066a4f6612beef34b122e2b2be7fcd71b867b [diff]
Add loop integrity check to curve param check

Also make the reference result static const while at it.

diff --git a/tinycrypt/ecc.c b/tinycrypt/ecc.c
index e4e8e0d..df7a692 100644
--- a/tinycrypt/ecc.c
+++ b/tinycrypt/ecc.c

@@ -147,14 +147,14 @@
 static int uECC_check_curve_integrity(void)
 {
 	unsigned char computed[32];
-	unsigned char reference[32] = {
+	static const unsigned char reference[32] = {
 		0x2d, 0xa1, 0xa4, 0x64, 0x45, 0x28, 0x0d, 0xe1,
 		0x93, 0xf9, 0x29, 0x2f, 0xac, 0x3e, 0xe2, 0x92,
 		0x76, 0x0a, 0xe2, 0xbc, 0xce, 0x2a, 0xa2, 0xc6,
 		0x38, 0xf2, 0x19, 0x1d, 0x76, 0x72, 0x93, 0x49,
 	};
 	volatile unsigned char diff = 0;
-	unsigned char i;
+	volatile unsigned i;
 
 	if (uECC_compute_param_sha256(computed) != UECC_SUCCESS) {
 		return UECC_FAILURE;
@@ -163,6 +163,10 @@
 	for (i = 0; i < 32; i++)
 		diff |= computed[i] ^ reference[i];
 
+	/* i should be 32 */
+	mbedtls_platform_enforce_volatile_reads();
+	diff |= (unsigned char) i ^ 32;
+
 	return diff;
 }