Run util/openssl-format-source on the Curve448 code

[openssl.git] / crypto / ec / curve448 / constant_time.h
diff --git a/crypto/ec/curve448/constant_time.h b/crypto/ec/curve448/constant_time.h

index 25b6a49fe4e08f485975b24807effc5af585ee05..e6b055cc8fff8d33a087d5e536b86ad1f87552cc 100644 (file)
--- a/crypto/ec/curve448/constant_time.h
+++ b/crypto/ec/curve448/constant_time.h
@@ -11,10 +11,10 @@
   */
  
  #ifndef __CONSTANT_TIME_H__
   */
  
  #ifndef __CONSTANT_TIME_H__
-#define __CONSTANT_TIME_H__ 1
+# define __CONSTANT_TIME_H__ 1
  
  
-#include "word.h"
-#include <string.h>
+# include "word.h"
+# include <string.h>
  
  /*
   * Constant-time operations on hopefully-compile-time-sized memory
  
  /*
   * Constant-time operations on hopefully-compile-time-sized memory
@@ -36,20 +36,19 @@
   * Instead, we're putting our trust in the loop unroller and unswitcher.
   */
  
   * Instead, we're putting our trust in the loop unroller and unswitcher.
   */
  
-
  /**
   * Unaligned big (vector?) register.
   */
  typedef struct {
      big_register_t unaligned;
  /**
   * Unaligned big (vector?) register.
   */
  typedef struct {
      big_register_t unaligned;
-} __attribute__((packed)) unaligned_br_t;
+} __attribute__ ((packed)) unaligned_br_t;
  
  /**
   * Unaligned word register, for architectures where that matters.
   */
  typedef struct {
      word_t unaligned;
  
  /**
   * Unaligned word register, for architectures where that matters.
   */
  typedef struct {
      word_t unaligned;
-} __attribute__((packed)) unaligned_word_t;
+} __attribute__ ((packed)) unaligned_word_t;
  
  /**
   * @brief Constant-time conditional swap.
  
  /**
   * @brief Constant-time conditional swap.
@@ -60,62 +59,58 @@ typedef struct {
   * as their sizes, if the CPU cares about that sort of thing.
   */
  static __inline__ void
   * as their sizes, if the CPU cares about that sort of thing.
   */
  static __inline__ void
-__attribute__((unused,always_inline))
-constant_time_cond_swap (
-    void *__restrict__ a_,
-    void *__restrict__ b_,
-    word_t elem_bytes,
-    mask_t doswap
-) {
+    __attribute__ ((unused, always_inline))
+    constant_time_cond_swap(void *__restrict__ a_,
+                        void *__restrict__ b_, word_t elem_bytes, mask_t doswap)
+{
      word_t k;
      unsigned char *a = (unsigned char *)a_;
      unsigned char *b = (unsigned char *)b_;
      word_t k;
      unsigned char *a = (unsigned char *)a_;
      unsigned char *b = (unsigned char *)b_;
-    
+
      big_register_t br_mask = br_set_to_mask(doswap);
      big_register_t br_mask = br_set_to_mask(doswap);
-    for (k=0; k<=elem_bytes-sizeof(big_register_t); k+=sizeof(big_register_t)) {
+    for (k = 0; k <= elem_bytes - sizeof(big_register_t);
+         k += sizeof(big_register_t)) {
          if (elem_bytes % sizeof(big_register_t)) {
              /* unaligned */
              big_register_t xor =
          if (elem_bytes % sizeof(big_register_t)) {
              /* unaligned */
              big_register_t xor =
-                ((unaligned_br_t*)(&a[k]))->unaligned
-              ^ ((unaligned_br_t*)(&b[k]))->unaligned;
+                ((unaligned_br_t *) (&a[k]))->unaligned
+                ^ ((unaligned_br_t *) (&b[k]))->unaligned;
              xor &= br_mask;
              xor &= br_mask;
-            ((unaligned_br_t*)(&a[k]))->unaligned ^= xor;
-            ((unaligned_br_t*)(&b[k]))->unaligned ^= xor;
+            ((unaligned_br_t *) (&a[k]))->unaligned ^= xor;
+            ((unaligned_br_t *) (&b[k]))->unaligned ^= xor;
          } else {
              /* aligned */
          } else {
              /* aligned */
-            big_register_t xor =
-                *((big_register_t*)(&a[k]))
-              ^ *((big_register_t*)(&b[k]));
+            big_register_t xor = *((big_register_t *) (&a[k]))
+                ^ *((big_register_t *) (&b[k]));
              xor &= br_mask;
              xor &= br_mask;
-            *((big_register_t*)(&a[k])) ^= xor;
-            *((big_register_t*)(&b[k])) ^= xor;
+            *((big_register_t *) (&a[k])) ^= xor;
+            *((big_register_t *) (&b[k])) ^= xor;
          }
      }
  
      if (elem_bytes % sizeof(big_register_t) >= sizeof(word_t)) {
          }
      }
  
      if (elem_bytes % sizeof(big_register_t) >= sizeof(word_t)) {
-        for (; k<=elem_bytes-sizeof(word_t); k+=sizeof(word_t)) {
+        for (; k <= elem_bytes - sizeof(word_t); k += sizeof(word_t)) {
              if (elem_bytes % sizeof(word_t)) {
                  /* unaligned */
                  word_t xor =
              if (elem_bytes % sizeof(word_t)) {
                  /* unaligned */
                  word_t xor =
-                    ((unaligned_word_t*)(&a[k]))->unaligned
-                  ^ ((unaligned_word_t*)(&b[k]))->unaligned;
+                    ((unaligned_word_t *) (&a[k]))->unaligned
+                    ^ ((unaligned_word_t *) (&b[k]))->unaligned;
                  xor &= doswap;
                  xor &= doswap;
-                ((unaligned_word_t*)(&a[k]))->unaligned ^= xor;
-                ((unaligned_word_t*)(&b[k]))->unaligned ^= xor;
+                ((unaligned_word_t *) (&a[k]))->unaligned ^= xor;
+                ((unaligned_word_t *) (&b[k]))->unaligned ^= xor;
              } else {
                  /* aligned */
              } else {
                  /* aligned */
-                word_t xor =
-                    *((word_t*)(&a[k]))
-                  ^ *((word_t*)(&b[k]));
+                word_t xor = *((word_t *) (&a[k]))
+                    ^ *((word_t *) (&b[k]));
                  xor &= doswap;
                  xor &= doswap;
-                *((word_t*)(&a[k])) ^= xor;
-                *((word_t*)(&b[k])) ^= xor;
+                *((word_t *) (&a[k])) ^= xor;
+                *((word_t *) (&b[k])) ^= xor;
              }
          }
      }
              }
          }
      }
-    
+
      if (elem_bytes % sizeof(word_t)) {
      if (elem_bytes % sizeof(word_t)) {
-        for (; k<elem_bytes; k+=1) {
+        for (; k < elem_bytes; k += 1) {
              unsigned char xor = a[k] ^ b[k];
              xor &= doswap;
              a[k] ^= xor;
              unsigned char xor = a[k] ^ b[k];
              xor &= doswap;
              a[k] ^= xor;
@@ -133,53 +128,60 @@ constant_time_cond_swap (
   * The table and output must not alias.
   */
  static __inline__ void
   * The table and output must not alias.
   */
  static __inline__ void
-__attribute__((unused,always_inline))
-constant_time_lookup (
-    void *__restrict__ out_,
-    const void *table_,
-    word_t elem_bytes,
-    word_t n_table,
-    word_t idx
-) {
+    __attribute__ ((unused, always_inline))
+    constant_time_lookup(void *__restrict__ out_,
+                     const void *table_,
+                     word_t elem_bytes, word_t n_table, word_t idx)
+{
      big_register_t big_one = br_set_to_mask(1), big_i = br_set_to_mask(idx);
      big_register_t big_one = br_set_to_mask(1), big_i = br_set_to_mask(idx);
-    
+
      /* Can't do pointer arithmetic on void* */
      unsigned char *out = (unsigned char *)out_;
      const unsigned char *table = (const unsigned char *)table_;
      /* Can't do pointer arithmetic on void* */
      unsigned char *out = (unsigned char *)out_;
      const unsigned char *table = (const unsigned char *)table_;
-    word_t j,k;
-    
+    word_t j, k;
+
      memset(out, 0, elem_bytes);
      memset(out, 0, elem_bytes);
-    for (j=0; j<n_table; j++, big_i-=big_one) {        
+    for (j = 0; j < n_table; j++, big_i -= big_one) {
          big_register_t br_mask = br_is_zero(big_i);
          word_t mask;
  
          big_register_t br_mask = br_is_zero(big_i);
          word_t mask;
  
-        for (k=0; k<=elem_bytes-sizeof(big_register_t); k+=sizeof(big_register_t)) {
+        for (k = 0; k <= elem_bytes - sizeof(big_register_t);
+             k += sizeof(big_register_t)) {
              if (elem_bytes % sizeof(big_register_t)) {
                  /* unaligned */
              if (elem_bytes % sizeof(big_register_t)) {
                  /* unaligned */
-                ((unaligned_br_t *)(out+k))->unaligned
-                       |= br_mask & ((const unaligned_br_t*)(&table[k+j*elem_bytes]))->unaligned;
+                ((unaligned_br_t *) (out + k))->unaligned
+                    |=
+                    br_mask &
+                    ((const unaligned_br_t
+                      *)(&table[k + j * elem_bytes]))->unaligned;
              } else {
                  /* aligned */
              } else {
                  /* aligned */
-                *(big_register_t *)(out+k) |= br_mask & *(const big_register_t*)(&table[k+j*elem_bytes]);
+                *(big_register_t *) (out + k) |=
+                    br_mask & *(const big_register_t
+                                *)(&table[k + j * elem_bytes]);
              }
          }
  
              }
          }
  
-        mask = word_is_zero(idx^j);
+        mask = word_is_zero(idx ^ j);
          if (elem_bytes % sizeof(big_register_t) >= sizeof(word_t)) {
          if (elem_bytes % sizeof(big_register_t) >= sizeof(word_t)) {
-            for (; k<=elem_bytes-sizeof(word_t); k+=sizeof(word_t)) {
+            for (; k <= elem_bytes - sizeof(word_t); k += sizeof(word_t)) {
                  if (elem_bytes % sizeof(word_t)) {
                      /* input unaligned, output aligned */
                  if (elem_bytes % sizeof(word_t)) {
                      /* input unaligned, output aligned */
-                    *(word_t *)(out+k) |= mask & ((const unaligned_word_t*)(&table[k+j*elem_bytes]))->unaligned;
+                    *(word_t *) (out + k) |=
+                        mask &
+                        ((const unaligned_word_t
+                          *)(&table[k + j * elem_bytes]))->unaligned;
                  } else {
                      /* aligned */
                  } else {
                      /* aligned */
-                    *(word_t *)(out+k) |= mask & *(const word_t*)(&table[k+j*elem_bytes]);
+                    *(word_t *) (out + k) |=
+                        mask & *(const word_t *)(&table[k + j * elem_bytes]);
                  }
              }
          }
                  }
              }
          }
-        
+
          if (elem_bytes % sizeof(word_t)) {
          if (elem_bytes % sizeof(word_t)) {
-            for (; k<elem_bytes; k+=1) {
-                out[k] |= mask & table[k+j*elem_bytes];
+            for (; k < elem_bytes; k += 1) {
+                out[k] |= mask & table[k + j * elem_bytes];
              }
          }
      }
              }
          }
      }
@@ -195,58 +197,57 @@ constant_time_lookup (
   * input, it must be equal and not partially overlap.
   */
  static __inline__ void
   * input, it must be equal and not partially overlap.
   */
  static __inline__ void
-__attribute__((unused,always_inline))
-constant_time_select (
-    void *a_,
-    const void *bFalse_,
-    const void *bTrue_,
-    word_t elem_bytes,
-    mask_t mask,
-    size_t alignment_bytes
-) {
+    __attribute__ ((unused, always_inline))
+    constant_time_select(void *a_,
+                     const void *bFalse_,
+                     const void *bTrue_,
+                     word_t elem_bytes, mask_t mask, size_t alignment_bytes)
+{
      unsigned char *a = (unsigned char *)a_;
      const unsigned char *bTrue = (const unsigned char *)bTrue_;
      const unsigned char *bFalse = (const unsigned char *)bFalse_;
      word_t k;
      big_register_t br_mask = br_set_to_mask(mask);
      unsigned char *a = (unsigned char *)a_;
      const unsigned char *bTrue = (const unsigned char *)bTrue_;
      const unsigned char *bFalse = (const unsigned char *)bFalse_;
      word_t k;
      big_register_t br_mask = br_set_to_mask(mask);
-    
+
      alignment_bytes |= elem_bytes;
  
      alignment_bytes |= elem_bytes;
  
-    for (k=0; k<=elem_bytes-sizeof(big_register_t); k+=sizeof(big_register_t)) {
+    for (k = 0; k <= elem_bytes - sizeof(big_register_t);
+         k += sizeof(big_register_t)) {
          if (alignment_bytes % sizeof(big_register_t)) {
              /* unaligned */
          if (alignment_bytes % sizeof(big_register_t)) {
              /* unaligned */
-            ((unaligned_br_t*)(&a[k]))->unaligned =
-                 ( br_mask & ((const unaligned_br_t*)(&bTrue [k]))->unaligned)
-               | (~br_mask & ((const unaligned_br_t*)(&bFalse[k]))->unaligned);
+            ((unaligned_br_t *) (&a[k]))->unaligned =
+                (br_mask & ((const unaligned_br_t *)(&bTrue[k]))->unaligned)
+                | (~br_mask &
+                   ((const unaligned_br_t *)(&bFalse[k]))->unaligned);
          } else {
              /* aligned */
          } else {
              /* aligned */
-            *(big_register_t *)(a+k) =
-                 ( br_mask & *(const big_register_t*)(&bTrue [k]))
-               | (~br_mask & *(const big_register_t*)(&bFalse[k]));
+            *(big_register_t *) (a + k) =
+                (br_mask & *(const big_register_t *)(&bTrue[k]))
+                | (~br_mask & *(const big_register_t *)(&bFalse[k]));
          }
      }
  
      if (elem_bytes % sizeof(big_register_t) >= sizeof(word_t)) {
          }
      }
  
      if (elem_bytes % sizeof(big_register_t) >= sizeof(word_t)) {
-        for (; k<=elem_bytes-sizeof(word_t); k+=sizeof(word_t)) {
+        for (; k <= elem_bytes - sizeof(word_t); k += sizeof(word_t)) {
              if (alignment_bytes % sizeof(word_t)) {
                  /* unaligned */
              if (alignment_bytes % sizeof(word_t)) {
                  /* unaligned */
-                ((unaligned_word_t*)(&a[k]))->unaligned =
-                   ( mask & ((const unaligned_word_t*)(&bTrue [k]))->unaligned)
-                 | (~mask & ((const unaligned_word_t*)(&bFalse[k]))->unaligned);
+                ((unaligned_word_t *) (&a[k]))->unaligned =
+                    (mask & ((const unaligned_word_t *)(&bTrue[k]))->unaligned)
+                    | (~mask &
+                       ((const unaligned_word_t *)(&bFalse[k]))->unaligned);
              } else {
                  /* aligned */
              } else {
                  /* aligned */
-                *(word_t *)(a+k) =
-                   ( mask & *(const word_t*)(&bTrue [k]))
-                 | (~mask & *(const word_t*)(&bFalse[k]));
+                *(word_t *) (a + k) = (mask & *(const word_t *)(&bTrue[k]))
+                    | (~mask & *(const word_t *)(&bFalse[k]));
              }
          }
      }
              }
          }
      }
-    
+
      if (elem_bytes % sizeof(word_t)) {
      if (elem_bytes % sizeof(word_t)) {
-        for (; k<elem_bytes; k+=1) {
-            a[k] = ( mask & bTrue[k]) | (~mask & bFalse[k]);
+        for (; k < elem_bytes; k += 1) {
+            a[k] = (mask & bTrue[k]) | (~mask & bFalse[k]);
          }
      }
  }
  
          }
      }
  }
  
-#endif /* __CONSTANT_TIME_H__ */
+#endif                          /* __CONSTANT_TIME_H__ */