func crypto/subtle.ConstantTimeCompare

17 uses

	crypto/subtle (current package)
		constant_time.go#L15: func ConstantTimeCompare(x, y []byte) int {

	crypto/cipher
		gcm.go#L308: 	if subtle.ConstantTimeCompare(expectedTag[:g.tagSize], tag) != 1 {

	crypto/ecdh
		ecdh.go#L88: 		subtle.ConstantTimeCompare(k.publicKey, xx.publicKey) == 1
		ecdh.go#L147: 		subtle.ConstantTimeCompare(k.privateKey, xx.privateKey) == 1

	crypto/ecdsa
		ecdsa.go#L133: 	return subtle.ConstantTimeCompare(a.Bytes(), b.Bytes()) == 1

	crypto/ed25519
		ed25519.go#L52: 	return subtle.ConstantTimeCompare(pub, xx) == 1
		ed25519.go#L71: 	return subtle.ConstantTimeCompare(priv, xx) == 1

	crypto/hmac
		hmac.go#L64: 	return subtle.ConstantTimeCompare(mac1, mac2) == 1

	crypto/rsa
		rsa.go#L147: 	return subtle.ConstantTimeCompare(a.Bytes(), b.Bytes()) == 1

	crypto/tls
		conn.go#L454: 		macAndPaddingGood := subtle.ConstantTimeCompare(localMAC, remoteMAC) & int(paddingGood)
		handshake_client.go#L990: 		subtle.ConstantTimeCompare(verify, serverFinished.verifyData) != 1 {
		handshake_client_tls13.go#L99: 		if subtle.ConstantTimeCompare(acceptConfirmation, hs.serverHello.random[len(hs.serverHello.random)-8:]) == 1 {
		handshake_client_tls13.go#L273: 			if subtle.ConstantTimeCompare(acceptConfirmation, hs.serverHello.encryptedClientHello) == 1 {
		handshake_server.go#L826: 		subtle.ConstantTimeCompare(verify, clientFinished.verifyData) != 1 {
		ticket.go#L380: 		if subtle.ConstantTimeCompare(macBytes, expected) != 1 {

	vendor/golang.org/x/crypto/internal/poly1305
		poly1305.go#L38: 	return subtle.ConstantTimeCompare(tmp[:], mac[:]) == 1
		poly1305.go#L98: 	return subtle.ConstantTimeCompare(expected, mac[:]) == 1

The pages are generated with Golds v0.7.6. (GOOS=linux GOARCH=amd64)