Ensure mbedtls_ct_memcpy behaves correctly with 16-bit int

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2025-03-01 13:13:28 +00:00 · 2023-09-11 19:05:51 +01:00 · 2023-09-11 19:05:51 +01:00 · 4f26770291
commit 4f26770291
parent 140d5c77d0
1 changed files with 7 additions and 0 deletions
--- a/library/constant_time.c
+++ b/library/constant_time.c
@ -22,6 +22,7 @@
 * might be translated to branches by some compilers on some platforms.
 */

+#include <stdint.h>
 #include <limits.h>

 #include "common.h"
@ -120,7 +121,13 @@ int mbedtls_ct_memcmp(const void *a,
        diff |= x ^ y;
    }

+#if UINT_MAX < UINT32_MAX
+    /* In case the only bits set are in the top 16-bits, and would be lost
+     * by the conversion to 16-bit int (the smallest possible size for int). */
+    return (int) (diff | (diff >> 16))
+#else
    return (int) diff;
+#endif
 }

 #if defined(MBEDTLS_PKCS1_V15) && defined(MBEDTLS_RSA_C) && !defined(MBEDTLS_RSA_ALT)