| /mbedtls/library/ |
| A D | constant_time_impl.h | 207 mbedtls_ct_int_t y = (-xo) | -(xo >> 1); in mbedtls_ct_bool()
210 y = (((mbedtls_ct_uint_t) y) >> (MBEDTLS_CT_SIZE - 1)); in mbedtls_ct_bool()
213 return (mbedtls_ct_condition_t) (-y); in mbedtls_ct_bool()
300 [y] "r" (y) in mbedtls_ct_uint_lt()
323 [y] "+&l" (y) in mbedtls_ct_uint_lt()
342 [y] "+&S" (y) in mbedtls_ct_uint_lt()
360 [y] "+&c" (y) in mbedtls_ct_uint_lt()
507 return ~mbedtls_ct_uint_ne(x, y); in mbedtls_ct_uint_eq()
513 return mbedtls_ct_uint_lt(y, x); in mbedtls_ct_uint_gt()
519 return ~mbedtls_ct_uint_lt(x, y); in mbedtls_ct_uint_ge()
[all …]
|
| A D | ccm.c | 152 memset(ctx->y, 0, 16); in mbedtls_ccm_clear_state()
197 ctx->y[0] |= ctx->q - 1; in ccm_calculate_first_block_if_ready()
210 ret = mbedtls_block_cipher_encrypt(&ctx->block_cipher_ctx, ctx->y, ctx->y); in ccm_calculate_first_block_if_ready()
212 ret = mbedtls_cipher_update(&ctx->cipher_ctx, ctx->y, 16, ctx->y, &olen); in ccm_calculate_first_block_if_ready()
330 mbedtls_xor(ctx->y + offset, ctx->y + offset, add, use_len); in mbedtls_ccm_update_ad()
340 ret = mbedtls_cipher_update(&ctx->cipher_ctx, ctx->y, 16, ctx->y, &olen); in mbedtls_ccm_update_ad()
403 mbedtls_xor(ctx->y + offset, ctx->y + offset, input, use_len); in mbedtls_ccm_update()
409 ret = mbedtls_cipher_update(&ctx->cipher_ctx, ctx->y, 16, ctx->y, &olen); in mbedtls_ccm_update()
436 mbedtls_xor(ctx->y + offset, ctx->y + offset, local_output, use_len); in mbedtls_ccm_update()
444 ret = mbedtls_cipher_update(&ctx->cipher_ctx, ctx->y, 16, ctx->y, &olen); in mbedtls_ccm_update()
[all …]
|
| A D | constant_time_internal.h | 112 static inline mbedtls_ct_condition_t mbedtls_ct_uint_ne(mbedtls_ct_uint_t x, mbedtls_ct_uint_t y);
126 mbedtls_ct_uint_t y);
139 static inline mbedtls_ct_condition_t mbedtls_ct_uint_lt(mbedtls_ct_uint_t x, mbedtls_ct_uint_t y);
153 mbedtls_ct_uint_t y);
168 mbedtls_ct_uint_t y);
183 mbedtls_ct_uint_t y);
201 mbedtls_ct_condition_t y);
216 mbedtls_ct_condition_t y);
231 mbedtls_ct_condition_t y);
|
| A D | gcm.c | 396 memset(ctx->y, 0x00, sizeof(ctx->y)); in mbedtls_gcm_starts()
404 memcpy(ctx->y, iv, iv_len); in mbedtls_gcm_starts()
405 ctx->y[15] = 1; in mbedtls_gcm_starts()
420 mbedtls_xor(ctx->y, ctx->y, p, use_len); in mbedtls_gcm_starts()
426 gcm_mult(ctx, ctx->y, ctx->y); in mbedtls_gcm_starts()
432 mbedtls_xor(ctx->y, ctx->y, work_buf, 16); in mbedtls_gcm_starts()
434 gcm_mult(ctx, ctx->y, ctx->y); in mbedtls_gcm_starts()
525 static void gcm_incr(unsigned char y[16]) in gcm_incr()
529 MBEDTLS_PUT_UINT32_BE(x, y, 12); in gcm_incr()
627 gcm_incr(ctx->y); in mbedtls_gcm_update()
[all …]
|
| A D | constant_time.c | 86 uint32_t y = mbedtls_get_unaligned_volatile_uint32(B + i); in mbedtls_ct_memcmp() local
87 diff |= x ^ y; in mbedtls_ct_memcmp()
95 unsigned char x = A[i], y = B[i]; in mbedtls_ct_memcmp() local
96 diff |= x ^ y; in mbedtls_ct_memcmp()
135 unsigned char x = A[i], y = B[i]; in mbedtls_ct_memcmp_partial() local
136 unsigned int d = x ^ y; in mbedtls_ct_memcmp_partial()
|
| A D | md5.c | 103 #define F(x, y, z) ((z) ^ ((x) & ((y) ^ (z)))) in mbedtls_internal_md5_process() argument
124 #define F(x, y, z) ((y) ^ ((z) & ((x) ^ (y)))) in mbedtls_internal_md5_process() argument
145 #define F(x, y, z) ((x) ^ (y) ^ (z)) in mbedtls_internal_md5_process() argument
166 #define F(x, y, z) ((y) ^ ((x) | ~(z))) in mbedtls_internal_md5_process() argument
|
| A D | sha512.c | 359 static inline uint64x2_t vsha512su0q_u64(uint64x2_t x, uint64x2_t y) in vsha512su0q_u64() argument
361 asm ("sha512su0 %0.2D,%1.2D" : "+w" (x) : "w" (y)); in vsha512su0q_u64()
364 static inline uint64x2_t vsha512su1q_u64(uint64x2_t x, uint64x2_t y, uint64x2_t z) in vsha512su1q_u64() argument
366 asm ("sha512su1 %0.2D,%1.2D,%2.2D" : "+w" (x) : "w" (y), "w" (z)); in vsha512su1q_u64()
369 static inline uint64x2_t vsha512hq_u64(uint64x2_t x, uint64x2_t y, uint64x2_t z) in vsha512hq_u64() argument
371 asm ("sha512h %0,%1,%2.2D" : "+w" (x) : "w" (y), "w" (z)); in vsha512hq_u64()
374 static inline uint64x2_t vsha512h2q_u64(uint64x2_t x, uint64x2_t y, uint64x2_t z) in vsha512h2q_u64() argument
376 asm ("sha512h2 %0,%1,%2.2D" : "+w" (x) : "w" (y), "w" (z)); in vsha512h2q_u64()
619 #define F0(x, y, z) (((x) & (y)) | ((z) & ((x) | (y)))) in mbedtls_internal_sha512_process_c() argument
620 #define F1(x, y, z) ((z) ^ ((x) & ((y) ^ (z)))) in mbedtls_internal_sha512_process_c() argument
|
| A D | ripemd160.c | 99 #define F1(x, y, z) ((x) ^ (y) ^ (z)) in mbedtls_internal_ripemd160_process() argument
100 #define F2(x, y, z) (((x) & (y)) | (~(x) & (z))) in mbedtls_internal_ripemd160_process() argument
101 #define F3(x, y, z) (((x) | ~(y)) ^ (z)) in mbedtls_internal_ripemd160_process() argument
102 #define F4(x, y, z) (((x) & (z)) | ((y) & ~(z))) in mbedtls_internal_ripemd160_process() argument
103 #define F5(x, y, z) ((x) ^ ((y) | ~(z))) in mbedtls_internal_ripemd160_process() argument
|
| A D | aes.c | 371 #define MUL(x, y) (((x) && (y)) ? pow[(log[(x)]+log[(y)]) % 255] : 0) argument
378 uint8_t x, y, z; in aes_gen_tables() local
410 y = x; y = (y << 1) | (y >> 7); in aes_gen_tables()
411 x ^= y; y = (y << 1) | (y >> 7); in aes_gen_tables()
412 x ^= y; y = (y << 1) | (y >> 7); in aes_gen_tables()
413 x ^= y; y = (y << 1) | (y >> 7); in aes_gen_tables()
414 x ^= y ^ 0x63; in aes_gen_tables()
427 y = XTIME(x); in aes_gen_tables()
428 z = y ^ x; in aes_gen_tables()
430 FT0[i] = ((uint32_t) y) ^ in aes_gen_tables()
|
| A D | sha1.c | 113 #define F(x, y, z) ((z) ^ ((x) & ((y) ^ (z)))) in mbedtls_internal_sha1_process() argument
140 #define F(x, y, z) ((x) ^ (y) ^ (z)) in mbedtls_internal_sha1_process() argument
167 #define F(x, y, z) (((x) & (y)) | ((z) & ((x) | (y)))) in mbedtls_internal_sha1_process() argument
194 #define F(x, y, z) ((x) ^ (y) ^ (z)) in mbedtls_internal_sha1_process() argument
|
| A D | sha3.c | 94 #define ROTR64(x, y) (((x) << (64U - (y))) | ((x) >> (y))) // 64-bit rotate right argument
98 #define SWAP(x, y) do { uint64_t tmp = (x); (x) = (y); (y) = tmp; } while (0) argument
|
| A D | bignum.c | 1562 mbedtls_mpi_uint x, y, z; in mbedtls_mpi_mod_int() local
1588 for (i = A->n, y = 0; i > 0; i--) { in mbedtls_mpi_mod_int()
1590 y = (y << biH) | (x >> biH); in mbedtls_mpi_mod_int()
1591 z = y / b; in mbedtls_mpi_mod_int()
1592 y -= z * b; in mbedtls_mpi_mod_int()
1595 y = (y << biH) | (x >> biH); in mbedtls_mpi_mod_int()
1596 z = y / b; in mbedtls_mpi_mod_int()
1597 y -= z * b; in mbedtls_mpi_mod_int()
1604 if (A->s < 0 && y != 0) { in mbedtls_mpi_mod_int()
1605 y = b - y; in mbedtls_mpi_mod_int()
[all …]
|
| A D | sha256.c | 464 #define F0(x, y, z) (((x) & (y)) | ((z) & ((x) | (y)))) argument
465 #define F1(x, y, z) ((z) ^ ((x) & ((y) ^ (z)))) argument
|
| /mbedtls/3rdparty/p256-m/p256-m/ |
| A D | p256-m.c | 223 : [x] "l" (x), [y] "l" (y) in u32_muladd64()
271 : [x] "+l" (x), [y] "+l" (y), in u32_muladd64()
288 : [x] "+l" (x), [y] "+l" (y), [u] "=&l" (tmp1) in u32_muladd64()
828 m256_mul_p(lhs, y, y); in point_check()
860 m256_mul_p(y, y, t); /* y = y * z^-3 */ in point_to_affine()
886 m256_mul_p(u, y, y); in point_double()
901 m256_mul_p(z, y, z); in point_double()
906 m256_mul_p(y, y, m); in point_double()
907 m256_sub_p(y, y, u); in point_double()
1204 CT_UNPOISON(y, 32); in scalar_gen_with_pub()
[all …]
|
| /mbedtls/tests/suites/ |
| A D | test_suite_bignum_core.misc.data | 176 mbedtls_mpi_core_lt_ct: x>y (64 bit x, y=x-1)
179 mbedtls_mpi_core_lt_ct: x<y (64 bit y, x=y-1)
182 mbedtls_mpi_core_lt_ct: x>y (64 bit x, y=1)
185 mbedtls_mpi_core_lt_ct: x<y (64 bit y, x=1)
188 mbedtls_mpi_core_lt_ct: x>y (64 bit x, y=0)
191 mbedtls_mpi_core_lt_ct: x<y (64 bit y, x=0)
209 mbedtls_mpi_core_lt_ct: x<y (32 bit y, x=y-1)
212 mbedtls_mpi_core_lt_ct: x>y (32 bit x, y=1)
215 mbedtls_mpi_core_lt_ct: x<y (32 bit y, x=1)
218 mbedtls_mpi_core_lt_ct: x>y (32 bit x, y=0)
[all …]
|
| A D | test_suite_constant_time.function | 51 mbedtls_ct_uint_t y = strtoull(y_str, NULL, 0);
54 mbedtls_ct_uint_t y1 = y;
57 TEST_CF_SECRET(&y, sizeof(y));
63 TEST_EQUAL(mbedtls_ct_uint_ne(x, y), expected);
66 TEST_EQUAL(mbedtls_ct_uint_eq(x, y), expected);
69 TEST_EQUAL(mbedtls_ct_uint_gt(x, y), expected);
72 TEST_EQUAL(mbedtls_ct_uint_lt(x, y), expected);
75 TEST_EQUAL(mbedtls_ct_uint_ge(x, y), expected);
78 TEST_EQUAL(mbedtls_ct_uint_le(x, y), expected);
81 TEST_EQUAL(mbedtls_ct_bool_ne(mbedtls_ct_bool(x), mbedtls_ct_bool(y)), expected);
[all …]
|
| /mbedtls/3rdparty/everest/library/kremlib/ |
| A D | FStar_UInt64_FStar_UInt32_FStar_UInt16_FStar_UInt8.c | 25 uint64_t y = b; in FStar_UInt64_gte_mask() local
26 uint64_t x_xor_y = x ^ y; in FStar_UInt64_gte_mask()
27 uint64_t x_sub_y = x - y; in FStar_UInt64_gte_mask()
47 uint32_t y = b; in FStar_UInt32_gte_mask() local
48 uint32_t x_xor_y = x ^ y; in FStar_UInt32_gte_mask()
49 uint32_t x_sub_y = x - y; in FStar_UInt32_gte_mask()
69 uint16_t y = b; in FStar_UInt16_gte_mask() local
70 uint16_t x_xor_y = x ^ y; in FStar_UInt16_gte_mask()
91 uint8_t y = b; in FStar_UInt8_gte_mask() local
92 uint8_t x_xor_y = x ^ y; in FStar_UInt8_gte_mask()
[all …]
|
| A D | FStar_UInt128_extracted.c | 341 FStar_UInt128_uint128 FStar_UInt128_mul32(uint64_t x, uint32_t y) in FStar_UInt128_mul32() argument
347 * (uint64_t)y in FStar_UInt128_mul32()
348 + (FStar_UInt128_u64_mod_32(x) * (uint64_t)y >> FStar_UInt128_u32_32), in FStar_UInt128_mul32()
349 FStar_UInt128_u64_mod_32(FStar_UInt128_u64_mod_32(x) * (uint64_t)y)), in FStar_UInt128_mul32()
351 * (uint64_t)y in FStar_UInt128_mul32()
352 + (FStar_UInt128_u64_mod_32(x) * (uint64_t)y >> FStar_UInt128_u32_32)) in FStar_UInt128_mul32()
368 FStar_UInt128_mul_wide_impl_t_(uint64_t x, uint64_t y) in FStar_UInt128_mul_wide_impl_t_() argument
378 * FStar_UInt128_u64_mod_32(y) in FStar_UInt128_mul_wide_impl_t_()
402 * (y >> FStar_UInt128_u32_32) in FStar_UInt128_mul_wide_impl()
409 FStar_UInt128_uint128 FStar_UInt128_mul_wide(uint64_t x, uint64_t y) in FStar_UInt128_mul_wide() argument
[all …]
|
| /mbedtls/tests/include/test/ |
| A D | macros.h | 239 #define MIN(x, y) ((x) < (y) ? (x) : (y)) argument
248 #define MAX(x, y) ((x) > (y) ? (x) : (y)) argument
|
| /mbedtls/ |
| A D | BRANCHES.md | 35 code that's working and secure with Mbed TLS x.y.z and does not rely on
37 modification with any later release x.y'.z' with the same major version
75 of Mbed TLS (for example, all Mbed TLS 3.y versions will be able to read
76 keys written under any Mbed TLS 3.x with x <= y).
79 LTS, but future major version upgrades (for example from 2.28.x/3.x to 4.y)
|
| /mbedtls/3rdparty/everest/include/everest/kremlib/ |
| A D | FStar_UInt128.h | 119 FStar_UInt128_uint128 FStar_UInt128_mul32(uint64_t x, uint32_t y);
121 FStar_UInt128_uint128 FStar_UInt128_mul_wide(uint64_t x, uint64_t y);
|
| /mbedtls/tests/docker/bionic/ |
| A D | Dockerfile | 23 && apt-get -y install software-properties-common \
26 RUN add-apt-repository -y ppa:team-gcc-arm-embedded/ppa
29 && apt-get -y install \
|
| /mbedtls/tests/data_files/dir4/ |
| A D | cert13.crt | 14 94lwaYCfCBtXQYwiuVFYdK8ztWEStPg6BecMLPB2K9gO/talxUoVDumsmR83p+2y
|
| /mbedtls/tests/data_files/ |
| A D | rsa_pkcs8_pbes2_pbkdf2_1024_3des_sha384.pem | 11 jVl6psDscX4VfX1zkEIyTF2P77luZ1gvXuFDw3+y+HpUAAE11vvFH1hmj7RR7uH+
|
| A D | rsa_multiple_san_uri.key | 15 y+lhXo6xUAqYsKvB9m4njERFWMTCVSVU30Klhic/s4R/1abKlvkax1SiQFIRStqC
|