commit c11cac9f1ba1ef34492a651cd486c81f02da5541
author gabor-mezei-arm <gabor.mezei@arm.com> Mon Sep 27 11:40:03 2021 +0200
committer Gabor Mezei <gabor.mezei@arm.com> Thu Nov 11 10:00:17 2021 +0100
tree 80ac328ccf65477d2997cfef9ad107dc26a7189b
parent 944c107744fd89bcc40c3ebef4400f863350607c

Move mbedtls_cf_uint_mask function to the constant-time module

Signed-off-by: Gabor Mezei <gabor.mezei@arm.com>

library/constant_time.c

diff --git a/library/constant_time.c b/library/constant_time.c
index cb156bc..0c5c04c 100644
--- a/library/constant_time.c
+++ b/library/constant_time.c
@@ -92,3 +92,22 @@
 
     return( diff );
 }
+
+/** Turn zero-or-nonzero into zero-or-all-bits-one, without branches.
+ *
+ * \param value     The value to analyze.
+ * \return          Zero if \p value is zero, otherwise all-bits-one.
+ */
+unsigned mbedtls_cf_uint_mask( unsigned value )
+{
+    /* MSVC has a warning about unary minus on unsigned, but this is
+     * well-defined and precisely what we want to do here */
+#if defined(_MSC_VER)
+#pragma warning( push )
+#pragma warning( disable : 4146 )
+#endif
+    return( - ( ( value | - value ) >> ( sizeof( value ) * 8 - 1 ) ) );
+#if defined(_MSC_VER)
+#pragma warning( pop )
+#endif
+}

library/constant_time.h

diff --git a/library/constant_time.h b/library/constant_time.h
index e14232b..0d6c0fd 100644
--- a/library/constant_time.h
+++ b/library/constant_time.h
@@ -28,3 +28,6 @@
 unsigned char mbedtls_nist_kw_safer_memcmp( const void *a, const void *b, size_t n );
 
 int mbedtls_safer_memcmp( const void *a, const void *b, size_t n );
+
+
+unsigned mbedtls_cf_uint_mask( unsigned value );

library/rsa.c

diff --git a/library/rsa.c b/library/rsa.c
index 06653a5..d5151a5 100644
--- a/library/rsa.c
+++ b/library/rsa.c
@@ -1479,25 +1479,6 @@
 #endif /* MBEDTLS_PKCS1_V21 */
 
 #if defined(MBEDTLS_PKCS1_V15)
-/** Turn zero-or-nonzero into zero-or-all-bits-one, without branches.
- *
- * \param value     The value to analyze.
- * \return          Zero if \p value is zero, otherwise all-bits-one.
- */
-static unsigned mbedtls_cf_uint_mask( unsigned value )
-{
-    /* MSVC has a warning about unary minus on unsigned, but this is
-     * well-defined and precisely what we want to do here */
-#if defined(_MSC_VER)
-#pragma warning( push )
-#pragma warning( disable : 4146 )
-#endif
-    return( - ( ( value | - value ) >> ( sizeof( value ) * 8 - 1 ) ) );
-#if defined(_MSC_VER)
-#pragma warning( pop )
-#endif
-}
-
 /** Check whether a size is out of bounds, without branches.
  *
  * This is equivalent to `size > max`, but is likely to be compiled to