Add constant time tests to mbedtls_mpi_core_montmul()

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
2025-11-21 12:40:51 +03:00 · 2024-05-29 17:11:28 +00:00
parent fe9129d14d
commit 122ae06ca9
2 changed files with 44 additions and 6 deletions
--- a/library/bignum_core.h
+++ b/library/bignum_core.h
@@ -462,6 +462,10 @@ mbedtls_mpi_uint mbedtls_mpi_core_montmul_init(const mbedtls_mpi_uint *N);
 * \p A and \p B may alias each other, if \p AN_limbs == \p B_limbs. They may
 * not alias \p N (since they must be in canonical form, they cannot == \p N).
 *
+ * This function operates in constant time with respect
+ * to the values of \p A, \p B and \p N.
+ *
+ *
 * \param[out]    X         The destination MPI, as a little-endian array of
 *                          length \p AN_limbs.
 *                          On successful completion, X contains the result of