commit 5a85442604b3b749aca50e0459bcbafd8e6830e3
author gabor-mezei-arm <gabor.mezei@arm.com> Mon Sep 27 12:25:07 2021 +0200
committer gabor-mezei-arm <gabor.mezei@arm.com> Tue Sep 28 16:21:09 2021 +0200
tree dfc63fbc6a8a751fc239486ee85b71a3674eb5ad
parent 8d1d5fd204087234656f85ca969d6b90311bbbc5

Move mbedtls_cf_size_gt function to the constant-time module

Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>

library/constant_time.c

diff --git a/library/constant_time.c b/library/constant_time.c
index d73f4fe..7da4046 100644
--- a/library/constant_time.c
+++ b/library/constant_time.c
@@ -213,3 +213,19 @@
 
     return( 1 ^ diff1 );
 }
+
+/** Check whether a size is out of bounds, without branches.
+ *
+ * This is equivalent to `size > max`, but is likely to be compiled to
+ * to code using bitwise operation rather than a branch.
+ *
+ * \param size      Size to check.
+ * \param max       Maximum desired value for \p size.
+ * \return          \c 0 if `size <= max`.
+ * \return          \c 1 if `size > max`.
+ */
+unsigned mbedtls_cf_size_gt( size_t size, size_t max )
+{
+    /* Return the sign bit (1 for negative) of (max - size). */
+    return( ( max - size ) >> ( sizeof( size_t ) * 8 - 1 ) );
+}