mirror of
https://github.com/henrydcase/pqc.git
synced 2024-12-02 12:21:23 +00:00
56a3715ddc
* Replaced round-1 Kyber code with round-2 Kyber code (not yet cleaned/namespaced) * Namespacing for Kyber * Some more work on round-2 Kyber (more namespacing) * Added missing files * Round-2 Kyber768 now passing all tests under Linux * Various small tweaks to make MS compiler happy * Two more tweaks for MS compiler * Added Kyber512 and Kyber1024 (round-2 versions) * Making MS compiler happy * More fixes for MS compiler * Replaced round-1 Kyber code with round-2 Kyber code (not yet cleaned/namespaced) * Namespacing for Kyber * Some more work on round-2 Kyber (more namespacing) * Added missing files * Round-2 Kyber768 now passing all tests under Linux * Various small tweaks to make MS compiler happy * Two more tweaks for MS compiler * Added Kyber512 and Kyber1024 (round-2 versions) * Making MS compiler happy * More fixes for MS compiler * Started more cleanup work on Kyber768 * Replaced round-1 Kyber code with round-2 Kyber code (not yet cleaned/namespaced) * Namespacing for Kyber * Some more work on round-2 Kyber (more namespacing) * Added missing files * Round-2 Kyber768 now passing all tests under Linux * Various small tweaks to make MS compiler happy * Two more tweaks for MS compiler * Added Kyber512 and Kyber1024 (round-2 versions) * Replaced round-1 Kyber code with round-2 Kyber code (not yet cleaned/namespaced) * Namespacing for Kyber * Some more work on round-2 Kyber (more namespacing) * Added missing files * Round-2 Kyber768 now passing all tests under Linux * Various small tweaks to make MS compiler happy * Two more tweaks for MS compiler * Added Kyber512 and Kyber1024 (round-2 versions) * Making MS compiler happy * Making MS compiler happy * More fixes for MS compiler * More fixes for MS compiler * Started more cleanup work on Kyber768 * Kyber768 passing all tests locally * Kyber512 passes all tests locally * Kyber1024 now also passing all tests locally * Now passing all tests with -Wmissing-prototypes * Local tests (on Linux) passing again
52 lines
1.6 KiB
C
52 lines
1.6 KiB
C
#include "verify.h"
|
|
|
|
#include <stdint.h>
|
|
#include <stdlib.h>
|
|
|
|
/*************************************************
|
|
* Name: verify
|
|
*
|
|
* Description: Compare two arrays for equality in constant time.
|
|
*
|
|
* Arguments: const unsigned char *a: pointer to first byte array
|
|
* const unsigned char *b: pointer to second byte array
|
|
* size_t len: length of the byte arrays
|
|
*
|
|
* Returns 0 if the byte arrays are equal, 1 otherwise
|
|
**************************************************/
|
|
unsigned char PQCLEAN_KYBER768_CLEAN_verify(const unsigned char *a, const unsigned char *b, size_t len) {
|
|
uint64_t r;
|
|
size_t i;
|
|
|
|
r = 0;
|
|
for (i = 0; i < len; i++) {
|
|
r |= a[i] ^ b[i];
|
|
}
|
|
|
|
r = (~r + 1); // Two's complement
|
|
r >>= 63;
|
|
return (unsigned char)r;
|
|
}
|
|
|
|
/*************************************************
|
|
* Name: cmov
|
|
*
|
|
* Description: Copy len bytes from x to r if b is 1;
|
|
* don't modify x if b is 0. Requires b to be in {0,1};
|
|
* assumes two's complement representation of negative integers.
|
|
* Runs in constant time.
|
|
*
|
|
* Arguments: unsigned char *r: pointer to output byte array
|
|
* const unsigned char *x: pointer to input byte array
|
|
* size_t len: Amount of bytes to be copied
|
|
* unsigned char b: Condition bit; has to be in {0,1}
|
|
**************************************************/
|
|
void PQCLEAN_KYBER768_CLEAN_cmov(unsigned char *r, const unsigned char *x, size_t len, unsigned char b) {
|
|
size_t i;
|
|
|
|
b = -b;
|
|
for (i = 0; i < len; i++) {
|
|
r[i] ^= b & (x[i] ^ r[i]);
|
|
}
|
|
}
|