Merge pull request #674 from JacobBarthelmeh/Testing

Bug fix for cache attack
2016-12-19 18:31:04 -08:00
parent 125cfcacc3 345df93978
commit 07e7521f34
1 changed files with 3 additions and 4 deletions
--- a/wolfcrypt/src/tfm.c
+++ b/wolfcrypt/src/tfm.c
@ -446,12 +446,11 @@ INLINE static void fp_mul_comba_mulx(fp_int *A, fp_int *B, fp_int *C)
      pa = FP_SIZE-1;
   }

-   if (A == C || B == C) {
+   /* Always take branch to use tmp variable. This avoids a cache attack for
+    * determining if C equals A */
+   if (1) {
      fp_init(&tmp);
      dst = &tmp;
-   } else {
-      fp_zero(C);
-      dst = C;
   }

   TFM_INTEL_MUL_COMBA(A, B, dst) ;