RSA blinding on CRT operations to counter timing attacks

commit: 43f9799ce61c6392a014d0a2ea136b4b3a9ee194 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Mon Sep 23 11:23:31 2013 +0200
committer: Paul Bakker <p.j.bakker@polarssl.org> Mon Sep 23 11:23:31 2013 +0200
tree: df3b646b6c35db528d1902e4de451699ab6e6ef6
parent: 88a2264def143fc9d5b8705bb6aec188ec61061f [diff] [blame]
diff --git a/programs/pkey/dh_server.c b/programs/pkey/dh_server.c
index 9ea2a78..54d6e36 100644
--- a/programs/pkey/dh_server.c
+++ b/programs/pkey/dh_server.c

@@ -197,8 +197,8 @@
     buf[n    ] = (unsigned char)( rsa.len >> 8 );
     buf[n + 1] = (unsigned char)( rsa.len      );
 
-    if( ( ret = rsa_pkcs1_sign( &rsa, NULL, NULL, RSA_PRIVATE, SIG_RSA_SHA1,
-                                0, hash, buf + n + 2 ) ) != 0 )
+    if( ( ret = rsa_pkcs1_sign( &rsa, ctr_drbg_random, &ctr_drbg, RSA_PRIVATE,
+                                SIG_RSA_SHA1, 0, hash, buf + n + 2 ) ) != 0 )
     {
         printf( " failed\n  ! rsa_pkcs1_sign returned %d\n\n", ret );
         goto exit;
commit	43f9799ce61c6392a014d0a2ea136b4b3a9ee194	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Mon Sep 23 11:23:31 2013 +0200
committer	Paul Bakker <p.j.bakker@polarssl.org>	Mon Sep 23 11:23:31 2013 +0200
tree	df3b646b6c35db528d1902e4de451699ab6e6ef6
parent	88a2264def143fc9d5b8705bb6aec188ec61061f [diff] [blame]