Home
last modified time | relevance | path

Searched refs:mask (Results 1 – 25 of 41) sorted by relevance

12

/crypto/fipsmodule/bn/
A Drandom.cc.inc111 mask |= a[i];
114 mask = constant_time_is_zero_w(mask);
116 return mask;
139 mask |= mask >> 1;
140 mask |= mask >> 2;
141 mask |= mask >> 4;
142 mask |= mask >> 8;
143 mask |= mask >> 16;
145 mask |= mask >> 32;
164 BN_ULONG mask;
[all …]
A Dbn.cc.inc136 mask = 0u - x;
137 mask = (0u - (mask >> (BN_BITS2 - 1)));
146 mask = 0u - x;
147 mask = (0u - (mask >> (BN_BITS2 - 1)));
152 mask = 0u - x;
153 mask = (0u - (mask >> (BN_BITS2 - 1)));
158 mask = 0u - x;
159 mask = (0u - (mask >> (BN_BITS2 - 1)));
164 mask = 0u - x;
165 mask = (0u - (mask >> (BN_BITS2 - 1)));
[all …]
A Dshift.cc.inc142 BN_ULONG mask = (n >> i) & 1;
143 mask = 0 - mask;
260 crypto_word_t mask;
268 bits += 32 & mask;
274 bits += 16 & mask;
278 bits += 8 & mask;
279 l = constant_time_select_w(mask, l >> 8, l);
282 bits += 4 & mask;
283 l = constant_time_select_w(mask, l >> 4, l);
286 bits += 2 & mask;
[all …]
A Dcmp.cc.inc41 crypto_word_t mask = 0;
43 mask |= b[i];
47 crypto_word_t mask = 0;
49 mask |= a[i];
95 mask |= bn->d[i];
97 return mask == 0;
143 BN_ULONG mask = 0;
146 mask |= b->d[i];
149 mask |= a->d[i];
157 mask |= (a->neg ^ b->neg);
[all …]
A Dgcd_extra.cc.inc26 static void maybe_rshift1_words(BN_ULONG *a, BN_ULONG mask, BN_ULONG *tmp,
29 bn_select_words(a, mask, tmp, a, num);
33 BN_ULONG mask, BN_ULONG *tmp,
35 maybe_rshift1_words(a, mask, tmp, num);
37 carry &= mask;
42 static BN_ULONG maybe_add_words(BN_ULONG *a, BN_ULONG mask, const BN_ULONG *b,
45 bn_select_words(a, mask, tmp, a, num);
46 return carry & mask;
137 BN_ULONG mask = shift | (gcd->d[0] ^ 1);
139 mask |= gcd->d[i];
[all …]
A Dbytes.cc.inc125 uint8_t mask = 0;
127 mask |= bytes[i];
129 return mask == 0;
/crypto/asn1/
A Da_mbstr.cc50 if (!mask) { in OPENSSL_DECLARE_ERROR_REASON()
51 mask = DIRSTRING_TYPE; in OPENSSL_DECLARE_ERROR_REASON()
106 mask &= ~B_ASN1_PRINTABLESTRING; in OPENSSL_DECLARE_ERROR_REASON()
109 mask &= ~B_ASN1_IA5STRING; in OPENSSL_DECLARE_ERROR_REASON()
112 mask &= ~B_ASN1_T61STRING; in OPENSSL_DECLARE_ERROR_REASON()
115 mask &= ~B_ASN1_BMPSTRING; in OPENSSL_DECLARE_ERROR_REASON()
117 if (!mask) { in OPENSSL_DECLARE_ERROR_REASON()
142 if (mask & B_ASN1_PRINTABLESTRING) { in OPENSSL_DECLARE_ERROR_REASON()
144 } else if (mask & B_ASN1_IA5STRING) { in OPENSSL_DECLARE_ERROR_REASON()
146 } else if (mask & B_ASN1_T61STRING) { in OPENSSL_DECLARE_ERROR_REASON()
[all …]
A Da_strnid.cc35 void ASN1_STRING_set_default_mask(unsigned long mask) {} in ASN1_STRING_set_default_mask() argument
56 unsigned long mask = tbl->mask; in ASN1_STRING_set_by_NID() local
58 mask &= B_ASN1_UTF8STRING; in ASN1_STRING_set_by_NID()
60 ret = ASN1_mbstring_ncopy(out, in, len, inform, mask, tbl->minsize, in ASN1_STRING_set_by_NID()
150 unsigned long mask, unsigned long flags) { in ASN1_STRING_TABLE_add() argument
186 tbl->mask = mask; in ASN1_STRING_TABLE_add()
A Dasn1_test.cc1531 unsigned long mask; in TEST() member
1621 SCOPED_TRACE(t.mask); in TEST()
1626 t.mask)); in TEST()
1656 t.mask, /*minsize=*/t.num_codepoints, in TEST()
1661 t.mask, /*minsize=*/t.num_codepoints, in TEST()
1675 &str, t.in.data(), t.in.size(), t.format, t.mask, in TEST()
1685 &str, t.in.data(), t.in.size(), t.format, t.mask, in TEST()
1695 unsigned long mask; in TEST() member
1726 SCOPED_TRACE(t.mask); in TEST()
1729 t.format, t.mask)); in TEST()
[all …]
/crypto/poly1305/
A Dpoly1305_arm_asm.S134 # qhasm: reg128 mask
242 # asm 1: vshr.u64 >mask=reg128#7,<mask=reg128#7,#6
243 # asm 2: vshr.u64 >mask=q6,<mask=q6,#6
950 # qhasm: r0 &= mask
985 # qhasm: r1 &= mask
1085 # qhasm: r3 &= mask
1339 # qhasm: r0 &= mask
1369 # qhasm: r1 &= mask
1613 # qhasm: reg128 mask
1709 # asm 1: vshr.u64 >mask=reg128#1,<mask=reg128#1,#6
[all …]
/crypto/fipsmodule/bn/asm/
A Dx86-mont.pl148 $mask="mm7";
151 &movd ($mask,"eax"); # mask 32 lower bits
167 &pand ($acc0,$mask); # inter-register transfers
188 &pand ($acc0,$mask);
206 &pand ($acc0,$mask);
229 &pand ($acc0,$mask);
254 &pand ($acc0,$mask);
274 &pand ($acc0,$mask);
/crypto/fipsmodule/ec/
A Dfelem.cc.inc63 BN_ULONG mask = ec_felem_non_zero_mask(group, a);
69 out->words[i] &= mask;
88 BN_ULONG mask = 0;
90 mask |= a->words[i];
92 return ~constant_time_is_zero_w(mask);
95 void ec_felem_select(const EC_GROUP *group, EC_FELEM *out, BN_ULONG mask,
97 bn_select_words(out->words, mask, a->words, b->words, group->field.N.width);
A Dscalar.cc.inc45 BN_ULONG mask = 0;
47 mask |= a->words[i];
49 return mask == 0;
119 void ec_scalar_select(const EC_GROUP *group, EC_SCALAR *out, BN_ULONG mask,
122 bn_select_words(out->words, mask, a->words, b->words, order->width);
A Dinternal.h139 void ec_scalar_select(const EC_GROUP *group, EC_SCALAR *out, BN_ULONG mask,
192 void ec_felem_select(const EC_GROUP *group, EC_FELEM *out, BN_ULONG mask,
367 void ec_point_select(const EC_GROUP *group, EC_JACOBIAN *out, BN_ULONG mask,
371 void ec_affine_select(const EC_GROUP *group, EC_AFFINE *out, BN_ULONG mask,
375 void ec_precomp_select(const EC_GROUP *group, EC_PRECOMP *out, BN_ULONG mask,
A Dsimple_mul.cc.inc62 BN_ULONG mask = constant_time_eq_w(j, window);
63 ec_point_select(group, &tmp, mask, &precomp[j], &tmp);
117 BN_ULONG mask = constant_time_eq_w(j, digit);
118 ec_point_select(group, out, mask, &precomp[j], out);
A Dec.cc.inc856 void ec_point_select(const EC_GROUP *group, EC_JACOBIAN *out, BN_ULONG mask,
858 ec_felem_select(group, &out->X, mask, &a->X, &b->X);
859 ec_felem_select(group, &out->Y, mask, &a->Y, &b->Y);
860 ec_felem_select(group, &out->Z, mask, &a->Z, &b->Z);
863 void ec_affine_select(const EC_GROUP *group, EC_AFFINE *out, BN_ULONG mask,
865 ec_felem_select(group, &out->X, mask, &a->X, &b->X);
866 ec_felem_select(group, &out->Y, mask, &a->Y, &b->Y);
869 void ec_precomp_select(const EC_GROUP *group, EC_PRECOMP *out, BN_ULONG mask,
874 ec_affine_select(group, &out->comb[i], mask, &a->comb[i], &b->comb[i]);
/crypto/
A Dinternal.h377 static inline crypto_word_t constant_time_select_w(crypto_word_t mask, in constant_time_select_w() argument
385 mask = value_barrier_w(mask); in constant_time_select_w()
386 return (mask & a) | (~mask & b); in constant_time_select_w()
391 static inline uint8_t constant_time_select_8(crypto_word_t mask, uint8_t a, in constant_time_select_8() argument
399 uint8_t m = value_barrier_w(mask); in constant_time_select_8()
405 static inline int constant_time_select_int(crypto_word_t mask, int a, int b) { in constant_time_select_int() argument
406 return (int)(constant_time_select_w(mask, (crypto_word_t)(a), in constant_time_select_int()
415 const crypto_word_t mask) { in constant_time_conditional_memcpy() argument
420 out[i] = constant_time_select_8(mask, in[i], out[i]); in constant_time_conditional_memcpy()
437 v32u8 masks = ((uint8_t)mask - (v32u8){}); // broadcast in constant_time_conditional_memxor()
[all …]
/crypto/kyber/
A Dkyber.cc137 uint16_t mask = 0u - (subtracted >> 15); in reduce_once() local
147 return (mask & x) | (~mask & subtracted); in reduce_once()
348 uint16_t mask = 0u - (value >> 15); in scalar_centered_binomial_distribution_eta_2_with_prf() local
349 out->c[i] = value + (kPrime & mask); in scalar_centered_binomial_distribution_eta_2_with_prf()
355 mask = 0u - (value >> 15); in scalar_centered_binomial_distribution_eta_2_with_prf()
356 out->c[i + 1] = value + (kPrime & mask); in scalar_centered_binomial_distribution_eta_2_with_prf()
764 scalar mask; in decrypt_cpa() local
765 scalar_inner_product(&mask, &priv->s, &u); in decrypt_cpa()
766 scalar_inverse_ntt(&mask); in decrypt_cpa()
767 scalar_sub(&v, &mask); in decrypt_cpa()
[all …]
/crypto/fipsmodule/aes/asm/
A Dbsaes-armv7.pl364 my $mask=pop;
369 vtbl.8 `&Dlo(@x[0])`, {@t[0]}, `&Dlo($mask)`
370 vtbl.8 `&Dhi(@x[0])`, {@t[0]}, `&Dhi($mask)`
373 vtbl.8 `&Dlo(@x[1])`, {@t[1]}, `&Dlo($mask)`
374 vtbl.8 `&Dhi(@x[1])`, {@t[1]}, `&Dhi($mask)`
377 vtbl.8 `&Dlo(@x[2])`, {@t[2]}, `&Dlo($mask)`
666 my ($a,$b,$n,$mask,$t)=@_;
670 vand $t, $t, $mask
677 my ($a0,$b0,$a1,$b1,$n,$mask,$t0,$t1)=@_;
683 vand $t0, $t0, $mask
[all …]
A Daesv8-armx.pl79 my ($zero,$rcon,$mask,$in0,$in1,$tmp,$key)=
130 vld1.32 {$rcon,$mask},[$ptr],#32
138 vtbl.8 $key,{$in0},$mask
156 vtbl.8 $key,{$in0},$mask
170 vtbl.8 $key,{$in0},$mask
193 vsub.i8 $mask,$mask,$key // adjust the mask
196 vtbl.8 $key,{$in1},$mask
231 vtbl.8 $key,{$in1},$mask
/crypto/curve25519/
A Dspake25519.cc334 static void scalar_cmov(scalar *dest, const scalar *src, crypto_word_t mask) { in scalar_cmov() argument
335 bn_select_words(dest->words, mask, src->words, dest->words, in scalar_cmov()
427 ge_p3 mask; in SPAKE2_generate_msg() local
428 x25519_ge_scalarmult_small_precomp(&mask, ctx->password_scalar, in SPAKE2_generate_msg()
435 x25519_ge_p3_to_cached(&mask_cached, &mask); in SPAKE2_generate_msg()
/crypto/trust_token/
A Dpmbtoken.cc553 BN_ULONG mask = ((BN_ULONG)0) - (private_metadata & 1); in dleq_generate() local
556 ec_scalar_select(group, &xb, mask, &priv->x1, &priv->x0); in dleq_generate()
557 ec_scalar_select(group, &yb, mask, &priv->y1, &priv->y0); in dleq_generate()
650 ec_scalar_select(group, &c0, mask, &co, &cb); in dleq_generate()
651 ec_scalar_select(group, &u0, mask, &uo, &ub); in dleq_generate()
652 ec_scalar_select(group, &v0, mask, &vo, &vb); in dleq_generate()
653 ec_scalar_select(group, &c1, mask, &cb, &co); in dleq_generate()
654 ec_scalar_select(group, &u1, mask, &ub, &uo); in dleq_generate()
655 ec_scalar_select(group, &v1, mask, &vb, &vo); in dleq_generate()
825 BN_ULONG mask = ((BN_ULONG)0) - (private_metadata & 1); in pmbtoken_sign() local
[all …]
/crypto/fipsmodule/aes/
A Daes_nohw.cc.inc273 // aes_nohw_delta_swap returns |a| with bits |a & mask| and
274 // |a & (mask << shift)| swapped. |mask| and |mask << shift| may not overlap.
275 static inline aes_word_t aes_nohw_delta_swap(aes_word_t a, aes_word_t mask,
279 aes_word_t b = (a ^ (a >> shift)) & mask;
414 // |*a & (mask << shift)| with the bits in |*b & mask|. |mask| and
415 // |mask << shift| must not overlap. |mask| is specified as a |uint32_t|, but it
425 _mm_set_epi32((mask), (mask), (mask), (mask))); \
432 uint32_t mask, aes_word_t shift) {
434 aes_word_t mask_w = (((uint64_t)mask) << 32) | mask;
436 aes_word_t mask_w = mask;
[all …]
/crypto/fipsmodule/mlkem/
A Dmlkem.cc.inc192 uint16_t mask = 0u - (subtracted >> 15);
202 return (mask & x) | (~mask & subtracted);
413 uint16_t mask = 0u - (value >> 15);
414 out->c[i] = ((value + kPrime) & mask) | (value & ~mask);
420 mask = 0u - (value >> 15);
421 out->c[i + 1] = ((value + kPrime) & mask) | (value & ~mask);
676 scalar mask;
677 scalar_inner_product(&mask, &priv->s, &u);
678 scalar_inverse_ntt(&mask);
679 scalar_sub(&v, &mask);
[all …]
/crypto/hrss/
A Dhrss.cc756 const vec_t mask = vec_broadcast_bit(mask_w) & g_has_constant_term; in poly3_invert_vec() local
764 poly3_vec_cswap(f_s, f_a, g_s, g_a, mask); in poly3_invert_vec()
768 poly3_vec_cswap(v_s, v_a, r_s, r_a, mask); in poly3_invert_vec()
815 const crypto_word_t mask = in HRSS_poly3_invert() local
823 delta = constant_time_select_int(mask, -delta, delta); in HRSS_poly3_invert()
826 poly3_cswap(&f, &g, mask); in HRSS_poly3_invert()
830 poly3_cswap(&v, &r, mask); in HRSS_poly3_invert()
1507 const crypto_word_t mask = in poly_invert_mod2() local
1512 delta = constant_time_select_int(mask, -delta, delta); in poly_invert_mod2()
1515 poly2_cswap(&f, &g, mask); in poly_invert_mod2()
[all …]

Completed in 46 milliseconds

12