Use ConstantCompare instead of memcmp in wh_server_she.c

padelsbach · padelsbach · commit 2f59a68c4c72 · 2026-03-23T16:13:27.000-07:00
diff --git a/src/wh_server_she.c b/src/wh_server_she.c
@@ -43,6 +43,7 @@
 #include "wolfssl/wolfcrypt/wc_port.h"
 #include "wolfssl/wolfcrypt/aes.h"
 #include "wolfssl/wolfcrypt/cmac.h"
+#include "wolfssl/wolfcrypt/misc.h"
 #include "wolfhsm/wh_server_keystore.h"
 #endif /* !WOLFHSM_CFG_NO_CRYPTO */
 
@@ -385,7 +386,7 @@ static int _SecureBootFinish(whServerContext* server, uint16_t magic,
     }
     if (ret == 0) {
         /* compare and set either success or failure */
-        ret = memcmp(cmacOutput, macDigest, field);
+        ret = ConstantCompare(cmacOutput, macDigest, field);
         if (ret == 0) {
             server->she->sbState = WH_SHE_SB_SUCCESS;
             resp.status          = WH_SHE_ERC_NO_ERROR;
@@ -503,7 +504,7 @@ static int _LoadKey(whServerContext* server, uint16_t magic, uint16_t req_size,
             sizeof(cmacInput), tmpKey, WH_SHE_KEY_SZ, NULL, server->devId);
     }
     /* compare digest to M3 */
-    if (ret == 0 && memcmp(req.messageThree, cmacOutput, field) != 0) {
+    if (ret == 0 && ConstantCompare(req.messageThree, cmacOutput, field) != 0) {
         ret = WH_SHE_ERC_KEY_UPDATE_ERROR;
     }
     /* make K1 using AES-MP(authKey | WH_SHE_KEY_UPDATE_ENC_C) */
@@ -556,7 +557,7 @@ static int _LoadKey(whServerContext* server, uint16_t magic, uint16_t req_size,
         }
     }
     /* compare to UID */
-    else if (ret == 0 && memcmp(req.messageOne, server->she->uid,
+    else if (ret == 0 && ConstantCompare(req.messageOne, server->she->uid,
                                 sizeof(server->she->uid)) != 0) {
         ret = WH_SHE_ERC_KEY_UPDATE_ERROR;
     }

Original file line number	Diff line number	Diff line change
`@@ -43,6 +43,7 @@`
`43`	`43`	`#include "wolfssl/wolfcrypt/wc_port.h"`
`44`	`44`	`#include "wolfssl/wolfcrypt/aes.h"`
`45`	`45`	`#include "wolfssl/wolfcrypt/cmac.h"`
	`46`	`+#include "wolfssl/wolfcrypt/misc.h"`
`46`	`47`	`#include "wolfhsm/wh_server_keystore.h"`
`47`	`48`	`#endif /* !WOLFHSM_CFG_NO_CRYPTO */`
`48`	`49`
`@@ -385,7 +386,7 @@ static int _SecureBootFinish(whServerContext* server, uint16_t magic,`
`385`	`386`	`}`
`386`	`387`	`if (ret == 0) {`
`387`	`388`	`/* compare and set either success or failure */`
`388`		`- ret = memcmp(cmacOutput, macDigest, field);`
	`389`	`+ ret = ConstantCompare(cmacOutput, macDigest, field);`
`389`	`390`	`if (ret == 0) {`
`390`	`391`	`server->she->sbState = WH_SHE_SB_SUCCESS;`
`391`	`392`	`resp.status = WH_SHE_ERC_NO_ERROR;`
`@@ -503,7 +504,7 @@ static int _LoadKey(whServerContext* server, uint16_t magic, uint16_t req_size,`
`503`	`504`	`sizeof(cmacInput), tmpKey, WH_SHE_KEY_SZ, NULL, server->devId);`
`504`	`505`	`}`
`505`	`506`	`/* compare digest to M3 */`
`506`		`- if (ret == 0 && memcmp(req.messageThree, cmacOutput, field) != 0) {`
	`507`	`+ if (ret == 0 && ConstantCompare(req.messageThree, cmacOutput, field) != 0) {`
`507`	`508`	`ret = WH_SHE_ERC_KEY_UPDATE_ERROR;`
`508`	`509`	`}`
`509`	`510`	`/* make K1 using AES-MP(authKey \| WH_SHE_KEY_UPDATE_ENC_C) */`
`@@ -556,7 +557,7 @@ static int _LoadKey(whServerContext* server, uint16_t magic, uint16_t req_size,`
`556`	`557`	`}`
`557`	`558`	`}`
`558`	`559`	`/* compare to UID */`
`559`		`- else if (ret == 0 && memcmp(req.messageOne, server->she->uid,`
	`560`	`+ else if (ret == 0 && ConstantCompare(req.messageOne, server->she->uid,`
`560`	`561`	`sizeof(server->she->uid)) != 0) {`
`561`	`562`	`ret = WH_SHE_ERC_KEY_UPDATE_ERROR;`
`562`	`563`	`}`