commit c76227d8084f5da857670e8294e054d60a5ba01f
author gabor-mezei-arm <gabor.mezei@arm.com> Mon Sep 27 11:53:54 2021 +0200
committer gabor-mezei-arm <gabor.mezei@arm.com> Tue Sep 28 16:16:14 2021 +0200
tree 4514aa2b2dbf90ffc4ec4e9aeaa868aee3a35f98
parent 3733bf805a49381223ce6249063be59baca96f84

Move mbedtls_cf_size_mask_lt function to the constant-time module

Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>

library/constant_time.c

diff --git a/library/constant_time.c b/library/constant_time.c
index 604859f..928b9b7 100644
--- a/library/constant_time.c
+++ b/library/constant_time.c
@@ -136,3 +136,28 @@
 #pragma warning( pop )
 #endif
 }
+
+/*
+ * Constant-flow mask generation for "less than" comparison:
+ * - if x < y,  return all bits 1, that is (size_t) -1
+ * - otherwise, return all bits 0, that is 0
+ *
+ * This function can be used to write constant-time code by replacing branches
+ * with bit operations using masks.
+ *
+ * This function is implemented without using comparison operators, as those
+ * might be translated to branches by some compilers on some platforms.
+ */
+size_t mbedtls_cf_size_mask_lt( size_t x, size_t y )
+{
+    /* This has the most significant bit set if and only if x < y */
+    const size_t sub = x - y;
+
+    /* sub1 = (x < y) ? 1 : 0 */
+    const size_t sub1 = sub >> ( sizeof( sub ) * 8 - 1 );
+
+    /* mask = (x < y) ? 0xff... : 0x00... */
+    const size_t mask = mbedtls_cf_size_mask( sub1 );
+
+    return( mask );
+}

library/constant_time.h

diff --git a/library/constant_time.h b/library/constant_time.h
index 3cbabe1..0b75900 100644
--- a/library/constant_time.h
+++ b/library/constant_time.h
@@ -33,3 +33,5 @@
 unsigned mbedtls_cf_uint_mask( unsigned value );
 
 size_t mbedtls_cf_size_mask( size_t bit );
+
+size_t mbedtls_cf_size_mask_lt( size_t x, size_t y );

library/ssl_msg.c

diff --git a/library/ssl_msg.c b/library/ssl_msg.c
index df57cb0..94f263d 100644
--- a/library/ssl_msg.c
+++ b/library/ssl_msg.c
@@ -940,31 +940,6 @@
 
 #if defined(MBEDTLS_SSL_SOME_SUITES_USE_TLS_CBC)
 /*
- * Constant-flow mask generation for "less than" comparison:
- * - if x < y,  return all bits 1, that is (size_t) -1
- * - otherwise, return all bits 0, that is 0
- *
- * This function can be used to write constant-time code by replacing branches
- * with bit operations using masks.
- *
- * This function is implemented without using comparison operators, as those
- * might be translated to branches by some compilers on some platforms.
- */
-static size_t mbedtls_cf_size_mask_lt( size_t x, size_t y )
-{
-    /* This has the most significant bit set if and only if x < y */
-    const size_t sub = x - y;
-
-    /* sub1 = (x < y) ? 1 : 0 */
-    const size_t sub1 = sub >> ( sizeof( sub ) * 8 - 1 );
-
-    /* mask = (x < y) ? 0xff... : 0x00... */
-    const size_t mask = mbedtls_cf_size_mask( sub1 );
-
-    return( mask );
-}
-
-/*
  * Constant-flow mask generation for "greater or equal" comparison:
  * - if x >= y, return all bits 1, that is (size_t) -1
  * - otherwise, return all bits 0, that is 0