References: crypto/subtle.ConstantTimeCompare

func crypto/subtle.ConstantTimeCompare

26 uses

	crypto/subtle (current package)
		constant_time.go#L12: func ConstantTimeCompare(x, y []byte) int {

	crypto/aes
		aes_gcm.go#L185: 	if subtle.ConstantTimeCompare(expectedTag[:g.tagSize], tag) != 1 {

	crypto/cipher
		gcm.go#L231: 	if subtle.ConstantTimeCompare(expectedTag[:g.tagSize], tag) != 1 {

	crypto/ed25519/internal/edwards25519
		scalar.go#L159: 	return subtle.ConstantTimeCompare(s.s[:], t.s[:])

	crypto/ed25519/internal/edwards25519/field
		fe.go#L250: 	return subtle.ConstantTimeCompare(sa, sv)

	crypto/elliptic/internal/fiat
		p224.go#L37: 	return subtle.ConstantTimeCompare(eBytes, tBytes)
		p224.go#L45: 	return subtle.ConstantTimeCompare(eBytes, p224ZeroEncoding)
		p384.go#L37: 	return subtle.ConstantTimeCompare(eBytes, tBytes)
		p384.go#L45: 	return subtle.ConstantTimeCompare(eBytes, p384ZeroEncoding)
		p521.go#L37: 	return subtle.ConstantTimeCompare(eBytes, tBytes)
		p521.go#L45: 	return subtle.ConstantTimeCompare(eBytes, p521ZeroEncoding)

	crypto/hmac
		hmac.go#L171: 	return subtle.ConstantTimeCompare(mac1, mac2) == 1

	crypto/rsa
		pkcs1v15.go#L292: 	ok &= subtle.ConstantTimeCompare(em[k-hashLen:k], hashed)
		pkcs1v15.go#L293: 	ok &= subtle.ConstantTimeCompare(em[k-tLen:k-hashLen], prefix)
		rsa.go#L635: 	lHash2Good := subtle.ConstantTimeCompare(lHash, lHash2)

	crypto/tls
		conn.go#L444: 		macAndPaddingGood := subtle.ConstantTimeCompare(localMAC, remoteMAC) & int(paddingGood)
		handshake_client.go#L786: 		subtle.ConstantTimeCompare(verify, serverFinished.verifyData) != 1 {
		handshake_server.go#L722: 		subtle.ConstantTimeCompare(verify, clientFinished.verifyData) != 1 {
		ticket.go#L173: 	if subtle.ConstantTimeCompare(macBytes, expected) != 1 {

	go.pact.im/x/basicauth
		static.go#L52: 		cmp += subtle.ConstantTimeCompare(h.UserHash, userHash[:])
		static.go#L53: 		cmp += subtle.ConstantTimeCompare(h.PassHash, passHash[:])

	vendor/golang.org/x/crypto/curve25519
		curve25519.go#L98: 	if subtle.ConstantTimeCompare(Basepoint, []byte{
		curve25519.go#L140: 		if subtle.ConstantTimeCompare(dst[:], zero[:]) == 1 {

	vendor/golang.org/x/crypto/curve25519/internal/field
		fe.go#L250: 	return subtle.ConstantTimeCompare(sa, sv)

	vendor/golang.org/x/crypto/internal/poly1305
		poly1305.go#L38: 	return subtle.ConstantTimeCompare(tmp[:], mac[:]) == 1
		poly1305.go#L98: 	return subtle.ConstantTimeCompare(expected, mac[:]) == 1

The pages are generated with Golds v0.4.9. (GOOS=linux GOARCH=amd64)