Home
last modified time | relevance | path

Searched refs:mbedtls_ct_memcmp (Results 1 – 24 of 24) sorted by relevance

/mbedtls-latest/tests/suites/
Dtest_suite_constant_time.data13 mbedtls_ct_memcmp NULL
16 mbedtls_ct_memcmp len 1
17 mbedtls_ct_memcmp:-1:1:0
19 mbedtls_ct_memcmp len 3
20 mbedtls_ct_memcmp:-1:3:0
22 mbedtls_ct_memcmp len 4
23 mbedtls_ct_memcmp:-1:4:0
25 mbedtls_ct_memcmp len 5
26 mbedtls_ct_memcmp:-1:5:0
28 mbedtls_ct_memcmp len 15
[all …]
Dtest_suite_constant_time.function28 TEST_ASSERT(mbedtls_ct_memcmp(&x, NULL, 0) == 0);
29 TEST_ASSERT(mbedtls_ct_memcmp(NULL, &x, 0) == 0);
30 TEST_ASSERT(mbedtls_ct_memcmp(NULL, NULL, 0) == 0);
209 int result = mbedtls_ct_memcmp(a, b, size);
224 result = mbedtls_ct_memcmp(a, b, size);
243 void mbedtls_ct_memcmp(int same, int size, int offset)
267 int actual = mbedtls_ct_memcmp(a + offset, b + offset, size);
/mbedtls-latest/include/mbedtls/
Dconstant_time.h32 int mbedtls_ct_memcmp(const void *a,
/mbedtls-latest/library/
Dnist_kw.c358 diff = mbedtls_ct_memcmp(NIST_KW_ICV1, A, KW_SEMIBLOCK_LENGTH); in mbedtls_nist_kw_unwrap()
402 diff = mbedtls_ct_memcmp(NIST_KW_ICV2, A, KW_SEMIBLOCK_LENGTH / 2); in mbedtls_nist_kw_unwrap()
Dconstant_time.c68 int mbedtls_ct_memcmp(const void *a, in mbedtls_ct_memcmp() function
Dssl_cookie.c354 if (mbedtls_ct_memcmp(cookie + 4, ref_hmac, sizeof(ref_hmac)) != 0) { in mbedtls_ssl_cookie_check()
Dchachapoly.c311 diff = mbedtls_ct_memcmp(tag, check_tag, sizeof(check_tag)); in mbedtls_chachapoly_auth_decrypt()
Dpsa_crypto_mac.c445 if (mbedtls_ct_memcmp(mac, actual_mac, mac_length) != 0) { in mbedtls_psa_mac_verify_finish()
Dcipher.c1272 if (mbedtls_ct_memcmp(tag, check_tag, tag_len) != 0) { in mbedtls_cipher_check_tag()
1293 if (mbedtls_ct_memcmp(tag, check_tag, tag_len) != 0) { in mbedtls_cipher_check_tag()
Drsa.c1994 bad = mbedtls_ct_bool_or(bad, mbedtls_ct_bool(mbedtls_ct_memcmp(lhash, p, hlen))); in mbedtls_rsa_rsaes_oaep_decrypt()
2475 if (mbedtls_ct_memcmp(verif, sig, ctx->len) != 0) { in mbedtls_rsa_rsassa_pkcs1_v15_sign()
2719 if ((ret = mbedtls_ct_memcmp(encoded, encoded_expected, in mbedtls_rsa_rsassa_pkcs1_v15_verify()
Dccm.c576 int diff = mbedtls_ct_memcmp(tag1, tag2, tag_len); in mbedtls_ccm_compare_tags()
Dssl_tls13_server.c383 mbedtls_ct_memcmp(ssl->conf->psk_identity, in ssl_tls13_offered_psks_check_identity_match()
451 if (mbedtls_ct_memcmp(server_computed_binder, in ssl_tls13_offered_psks_check_binder_match()
Dgcm.c760 diff = mbedtls_ct_memcmp(tag, check_tag, tag_len); in mbedtls_gcm_auth_decrypt()
Dssl_tls13_generic.c1113 if (mbedtls_ct_memcmp(buf, in ssl_tls13_parse_finished_message()
Dssl_tls12_client.c626 mbedtls_ct_memcmp(buf + 1, in ssl_parse_renegotiation_info()
628 mbedtls_ct_memcmp(buf + 1 + ssl->verify_data_len, in ssl_parse_renegotiation_info()
Dssl_tls12_server.c116 mbedtls_ct_memcmp(buf + 1, ssl->peer_verify_data, in ssl_parse_renegotiation_info()
3645 mbedtls_ct_memcmp(ssl->conf->psk_identity, *p, n) != 0) { in ssl_parse_client_psk_identity()
Dpsa_crypto.c2469 if (mbedtls_ct_memcmp(hash, actual_hash, actual_hash_length) != 0) {
2539 if (mbedtls_ct_memcmp(hash, actual_hash, actual_hash_length) != 0) {
2954 if (mbedtls_ct_memcmp(mac, actual_mac, actual_mac_length) != 0) {
Dssl_msg.c1795 if (mbedtls_ct_memcmp(data + rec->data_len, mac_expect, in mbedtls_ssl_decrypt_buf()
2068 if (mbedtls_ct_memcmp(mac_peer, mac_expect, in mbedtls_ssl_decrypt_buf()
Dpsa_crypto_driver_wrappers.h2474 mbedtls_ct_memcmp( tag, check_tag, tag_length ) in psa_driver_wrapper_aead_verify()
Dssl_tls.c8457 if (mbedtls_ct_memcmp(ssl->in_msg + mbedtls_ssl_hs_hdr_len(ssl), in mbedtls_ssl_parse_finished()
/mbedtls-latest/tests/src/drivers/
Dtest_driver_aead.c424 mbedtls_ct_memcmp(tag, check_tag, tag_length) in mbedtls_test_transparent_aead_verify()
/mbedtls-latest/docs/
Dpsa-transition.md260 Note that the PSA API does include features that reduce the need for `mbedtls_ct_memcmp`:
262 …ue, use `psa_mac_verify` rather than `psa_mac_compute` followed by `mbedtls_ct_memcmp`, or use `ps…
554 …d be in constant time to avoid a side channel vulnerability, for example using `mbedtls_ct_memcmp`.
562 …d be in constant time to avoid a side channel vulnerability, for example using `mbedtls_ct_memcmp`.
/mbedtls-latest/scripts/data_files/driver_templates/
Dpsa_crypto_driver_wrappers.h.jinja2096 mbedtls_ct_memcmp( tag, check_tag, tag_length )
/mbedtls-latest/
DChangeLog1516 * Add new API mbedtls_ct_memcmp for constant time buffer comparison.