-
Notifications
You must be signed in to change notification settings - Fork 2.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLS record HMAC 2b: constant-time computation #5178
Comments
@superna9999 I initially assigned this to me, partially to save myself the trouble of writing a detailed description as I did for the other tasks, but it's now clear that you'll be able to start this way before I do, so here's a quick dump of what I had in mind, hoping it helps. The current implementation of That will require, unfortunately, making the key exportable when we are creating it in Then there are generic differences between MD and PSA, not specific to what this function does: MD has a "context" that both holds the key and the state of the current operation, while in PSA those are distinct objects: the key (held in The signature of the function will have to change, to accept a PSA key as it's first argument instead of a
(or something to that effect). Final point, regarding testing: this function is unit-tested by I hope this makes sense, if you have any question I'm still here tomorrow morning, after that I'll be on holiday for one week, but other team members can help. |
@mpg Thanks, for now I replaced the |
Yes, replacing with a call to |
Provide an implementation of
mbedtls_ct_hmac()
using only PSA APIs, whenMBEDTLS_USE_PSA_CRYPTO
is defined.Depends on: #5176 - to have the keys available in
struct mbedtls_ssl_transform
.Related: #5177
Follow-up: #5178
The text was updated successfully, but these errors were encountered: