RSA blinding on CRT operations to counter timing attacks

commit: 43f9799ce61c6392a014d0a2ea136b4b3a9ee194 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Mon Sep 23 11:23:31 2013 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Mon Sep 23 11:23:31 2013 +0200
tree: df3b646b6c35db528d1902e4de451699ab6e6ef6
parent: 88a2264def143fc9d5b8705bb6aec188ec61061f [diff] [blame]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 1574217..2534379 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -65,12 +65,14 @@
 int (*ssl_hw_record_finish)(ssl_context *ssl) = NULL;
 #endif
 
-static int ssl_rsa_decrypt( void *ctx, int mode, size_t *olen,
+static int ssl_rsa_decrypt( void *ctx,
+                        int (*f_rng)(void *, unsigned char *, size_t),
+                        void *p_rng, int mode, size_t *olen,
                         const unsigned char *input, unsigned char *output,
                         size_t output_max_len )
 {
-    return rsa_pkcs1_decrypt( (rsa_context *) ctx, mode, olen, input, output,
-                              output_max_len );
+    return rsa_pkcs1_decrypt( (rsa_context *) ctx, f_rng, p_rng, mode, olen,
+                              input, output, output_max_len );
 }
 
 static int ssl_rsa_sign( void *ctx,
commit	43f9799ce61c6392a014d0a2ea136b4b3a9ee194	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Mon Sep 23 11:23:31 2013 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Mon Sep 23 11:23:31 2013 +0200
tree	df3b646b6c35db528d1902e4de451699ab6e6ef6
parent	88a2264def143fc9d5b8705bb6aec188ec61061f [diff] [blame]