Symbols

loading (2/5)...

Files

loading (4/5)...

Summary Syntax Arguments Examples References Call Tree Data Use

SourceVuESP-IDF Framework and ExamplesmbedTLSmbedtls_ct_memcmp()

mbedtls_ct_memcmp() function

Constant-time buffer comparison without branches. This is equivalent to the standard memcmp function, but is likely to be compiled to code using bitwise operations rather than a branch, such that the time taken is constant w.r.t. the data pointed to by \p a and \p b, and w.r.t. whether \p a and \p b are equal or not. It is not constant-time w.r.t. \p n . This function can be used to write constant-time code by replacing branches with bit operations using masks.

Syntax

Show:

Summary

Declaration

Definition

from constant_time.h:32

int mbedtls_ct_memcmp(const void *a, const void *b, size_t n);

Implemented in constant_time.c:68

Arguments

Argument

Description

a

Pointer to the first buffer, containing at least \p n bytes. May not be NULL.

b

Pointer to the second buffer, containing at least \p n bytes. May not be NULL.

n

The number of bytes to compare.

Return value

Zero if the contents of the two buffers are the same, otherwise non-zero.

Examples

mbedtls_ct_memcmp() is referenced by 1 libraries and example projects:

References

from 0/1 examples

Code

Location

Referrer

int mbedtls_ct_memcmp(const void *a,

constant_time.c:68

int mbedtls_ct_memcmp(const void *a,

constant_time.h:32

int diff = mbedtls_ct_memcmp(tag1, tag2, tag_len);

mbedtls_ccm_compare_tags()

if (mbedtls_ct_memcmp(tag, check_tag, tag_len) != 0) {

mbedtls_cipher_check_tag()

diff = mbedtls_ct_memcmp(tag, check_tag, tag_len);

mbedtls_gcm_auth_decrypt_soft()

if (mbedtls_ct_memcmp(hash, actual_hash, actual_hash_length) != 0) {

psa_crypto.c:2443

psa_hash_verify()

if (mbedtls_ct_memcmp(hash, actual_hash, actual_hash_length) != 0) {

psa_crypto.c:2513

psa_hash_compare()

if (mbedtls_ct_memcmp(mac, actual_mac, actual_mac_length) != 0) {

psa_crypto.c:2928

psa_mac_verify()

mbedtls_ct_memcmp( tag, check_tag, tag_length )

psa_crypto_driver_wrappers.h:2133

psa_driver_wrapper_aead_verify()

if (mbedtls_ct_memcmp(mac, actual_mac, mac_length) != 0) {

psa_crypto_mac.c:445

mbedtls_psa_mac_verify_finish()

bad = mbedtls_ct_bool_or(bad, mbedtls_ct_bool(mbedtls_ct_memcmp(lhash, p, hlen)));

mbedtls_rsa_rsaes_oaep_decrypt()

if (mbedtls_ct_memcmp(verif, sig, ctx->len) != 0) {

mbedtls_rsa_rsassa_pkcs1_v15_sign()

if ((ret = mbedtls_ct_memcmp(encoded, encoded_expected,

mbedtls_rsa_rsassa_pkcs1_v15_verify()

if (mbedtls_ct_memcmp(cookie + 4, ref_hmac, sizeof(ref_hmac)) != 0) {

ssl_cookie.c:354

mbedtls_ssl_cookie_check()

if (mbedtls_ct_memcmp(data + rec->data_len, mac_expect,

mbedtls_ssl_decrypt_buf()

if (mbedtls_ct_memcmp(mac_peer, mac_expect,

mbedtls_ssl_decrypt_buf()

if (mbedtls_ct_memcmp(ssl->in_msg + mbedtls_ssl_hs_hdr_len(ssl),

mbedtls_ssl_parse_finished()

mbedtls_ct_memcmp(buf + 1,

ssl_tls12_client.c:626

ssl_parse_renegotiation_info()

mbedtls_ct_memcmp(buf + 1 + ssl->verify_data_len,

ssl_tls12_client.c:628

ssl_parse_renegotiation_info()

mbedtls_ct_memcmp(buf + 1, ssl->peer_verify_data,

ssl_tls12_server.c:116

ssl_parse_renegotiation_info()

mbedtls_ct_memcmp(ssl->conf->psk_identity, *p, n) != 0) {

ssl_tls12_server.c:3645

ssl_parse_client_psk_identity()

Call Tree

from 0/1 examples

mbedtls_ct_memcmp() is called by 18 functions:

mbedtls_ccm_compare_tags()

mbedtls_cipher_check_tag()

mbedtls_gcm_auth_decrypt_soft()

mbedtls_gcm_auth_decrypt()

psa_hash_verify()

psa_hash_compare()

psa_mac_verify()

psa_driver_wrapper_aead_verify()

mbedtls_psa_mac_verify_finish()

mbedtls_rsa_rsaes_oaep_decrypt()

mbedtls_rsa_rsassa_pkcs1_v15_sign()

mbedtls_rsa_rsassa_pkcs1_v15_verify()

mbedtls_ssl_cookie_check()

mbedtls_ssl_decrypt_buf()

mbedtls_ssl_parse_finished()

ssl_parse_renegotiation_info()

ssl_parse_renegotiation_info()

ssl_parse_client_psk_identity()

mbedtls_ct_memcmp()

Data Use

from 0/1 examples

mbedtls_ct_memcmp():

mbedtls_ct_memcmp()

Class Tree

from 0/1 examples

All items filtered out

All items filtered out

Override Tree

from 0/1 examples

All items filtered out

All items filtered out

Implementations

from 0/1 examples

All items filtered out

All items filtered out

Instances

from 0/1 examples

Lifecycle

from 0/1 examples

All items filtered out

All items filtered out