lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-07-30 22:43:08 +03:00
Code Activity

Bignum core: break mbedtls_mpi_core_random out of mbedtls_mpi_random

Browse Source 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine
2022-09-21 15:46:04 +02:00
parent 4a8c5cdfbf
commit 78cf3bbf22
1 changed files with 17 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
library/bignum.c
View File

@ -1978,11 +1978,20 @@ int mbedtls_mpi_random( mbedtls_mpi *X,
if( ret != 0 ) if( ret != 0 )
return( ret ); return( ret );
unsigned ge_lower = 1, lt_upper = 0; return( mbedtls_mpi_core_random( X->p, min, N->p, X->n, f_rng, p_rng ) );
size_t n_bits = mbedtls_mpi_bitlen( N ); }
size_t n_bytes = ( n_bits + 7 ) / 8;
ret = MBEDTLS_ERR_MPI_BAD_INPUT_DATA; int mbedtls_mpi_core_random( mbedtls_mpi_uint *X,
mbedtls_mpi_uint min,
const mbedtls_mpi_uint *N,
size_t limbs,
int (*f_rng)(void *, unsigned char *, size_t),
void *p_rng )
{
unsigned ge_lower = 1, lt_upper = 0;
size_t n_bits = mbedtls_mpi_core_bitlen( N, limbs );
size_t n_bytes = ( n_bits + 7 ) / 8;
int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
/* /*
* When min == 0, each try has at worst a probability 1/2 of failing * When min == 0, each try has at worst a probability 1/2 of failing
@ -2013,10 +2022,10 @@ int mbedtls_mpi_random( mbedtls_mpi *X,
*/ */
do do
{ {
MBEDTLS_MPI_CHK( mbedtls_mpi_core_fill_random( X->p, X->n, MBEDTLS_MPI_CHK( mbedtls_mpi_core_fill_random( X, limbs,
n_bytes, n_bytes,
f_rng, p_rng ) ); f_rng, p_rng ) );
MBEDTLS_MPI_CHK( mbedtls_mpi_shift_r( X, 8 * n_bytes - n_bits ) ); mbedtls_mpi_core_shift_r( X, limbs, 8 * n_bytes - n_bits );
if( --count == 0 ) if( --count == 0 )
{ {
@ -2024,8 +2033,8 @@ int mbedtls_mpi_random( mbedtls_mpi *X,
goto cleanup; goto cleanup;
} }
ge_lower = mbedtls_mpi_core_uint_le_mpi( min, X->p, X->n ); ge_lower = mbedtls_mpi_core_uint_le_mpi( min, X, limbs );
lt_upper = mbedtls_mpi_core_lt_ct( X->p, N->p, N->n ); lt_upper = mbedtls_mpi_core_lt_ct( X, N, limbs );
} }
while( ge_lower == 0 || lt_upper == 0 ); while( ge_lower == 0 || lt_upper == 0 );