Merge pull request #844 from antonio-nino-diaz-arm/an/no-timingsafe Revert "tbbr: Use constant-time bcmp() to compare hashes"

commit: e53da30cc928ec1ac095cf055d49b2af8e1f6ddc [log] [tgz]
author: danh-arm <dan.handley@arm.com> Mon Feb 20 14:00:05 2017 +0000
committer: GitHub <noreply@github.com> Mon Feb 20 14:00:05 2017 +0000
tree: bf743038d7035ec13468a7c8ce113b37fd438027
parent: f526d596e26daa46a749e40a532b28187bd52754 [diff]
parent: 0ca1afa1bf4669e6f226a301d18d9581a6883a12 [diff]
diff --git a/drivers/auth/mbedtls/mbedtls_crypto.c b/drivers/auth/mbedtls/mbedtls_crypto.c
index 11d3ede..1a96e8f 100644
--- a/drivers/auth/mbedtls/mbedtls_crypto.c
+++ b/drivers/auth/mbedtls/mbedtls_crypto.c

@@ -217,7 +217,7 @@
 	}
 
 	/* Compare values */
-	rc = timingsafe_bcmp(data_hash, hash, mbedtls_md_get_size(md_info));
+	rc = memcmp(data_hash, hash, mbedtls_md_get_size(md_info));
 	if (rc != 0) {
 		return CRYPTO_ERR_HASH;
 	}

diff --git a/drivers/auth/mbedtls/mbedtls_x509_parser.c b/drivers/auth/mbedtls/mbedtls_x509_parser.c
index 36c279f..092c346 100644
--- a/drivers/auth/mbedtls/mbedtls_x509_parser.c
+++ b/drivers/auth/mbedtls/mbedtls_x509_parser.c

@@ -393,7 +393,7 @@
 	if (sig_alg1.len != sig_alg2.len) {
 		return IMG_PARSER_ERR_FORMAT;
 	}
-	if (0 != timingsafe_bcmp(sig_alg1.p, sig_alg2.p, sig_alg1.len)) {
+	if (0 != memcmp(sig_alg1.p, sig_alg2.p, sig_alg1.len)) {
 		return IMG_PARSER_ERR_FORMAT;
 	}
 	memcpy(&sig_alg, &sig_alg1, sizeof(sig_alg));
commit	e53da30cc928ec1ac095cf055d49b2af8e1f6ddc	[log] [tgz]
author	danh-arm <dan.handley@arm.com>	Mon Feb 20 14:00:05 2017 +0000
committer	GitHub <noreply@github.com>	Mon Feb 20 14:00:05 2017 +0000
tree	bf743038d7035ec13468a7c8ce113b37fd438027
parent	f526d596e26daa46a749e40a532b28187bd52754 [diff]
parent	0ca1afa1bf4669e6f226a301d18d9581a6883a12 [diff]