[SCM] GNU gnutls branch, master, updated. gnutls_2_9

gnutls-commit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[SCM] GNU gnutls branch, master, updated. gnutls_2_9_10-307-g5b9c9b5

From:	Nikos Mavrogiannopoulos
Subject:	[SCM] GNU gnutls branch, master, updated. gnutls_2_9_10-307-g5b9c9b5
Date:	Sat, 17 Jul 2010 15:52:39 +0000

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU gnutls".

http://git.savannah.gnu.org/cgit/gnutls.git/commit/?id=5b9c9b55e8947aebd607d072f620d84b3c98a19c

The branch, master has been updated
       via  5b9c9b55e8947aebd607d072f620d84b3c98a19c (commit)
      from  f4092ad7c129b801b7f61ec1e721c52076fd2661 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 5b9c9b55e8947aebd607d072f620d84b3c98a19c
Author: Nikos Mavrogiannopoulos <address@hidden>
Date:   Sat Jul 17 17:51:52 2010 +0200

    Added blinding to RSA decryption AND signing. Will stay there until it is 
moved to nettle itself.

-----------------------------------------------------------------------

Summary of changes:
 lib/nettle/pk.c |   21 +++++++++++++++++----
 1 files changed, 17 insertions(+), 4 deletions(-)

diff --git a/lib/nettle/pk.c b/lib/nettle/pk.c
index 95cba4f..4681fca 100644
--- a/lib/nettle/pk.c
+++ b/lib/nettle/pk.c
@@ -275,7 +275,7 @@ _wrap_nettle_pk_sign(gnutls_pk_algorithm_t algo,
        }
        case GNUTLS_PK_RSA: {
                struct rsa_private_key priv;
-               bigint_t hash;
+               bigint_t hash, nc, ri;
                
                if (_gnutls_mpi_scan_nz(&hash, vdata->data, vdata->size) != 0) {
                        gnutls_assert();
@@ -285,12 +285,25 @@ _wrap_nettle_pk_sign(gnutls_pk_algorithm_t algo,
                rsa_private_key_init(&priv);
                _rsa_params_to_privkey(pk_params, &priv);
 
-               rsa_compute_root(&priv, TOMPZ(hash), TOMPZ(hash));
+               nc = rsa_blind(hash, pk_params->params[1]/*e*/,
+                       pk_params->params[0]/*m*/, &ri);
 
-               ret = _gnutls_mpi_dprint(hash, signature);
                _gnutls_mpi_release(&hash);
 
-               if (ret < 0) {
+               if (nc == NULL) {
+                       gnutls_assert();
+                       return GNUTLS_E_MEMORY_ERROR;
+               }
+
+               rsa_compute_root(&priv, TOMPZ(nc), TOMPZ(nc));
+
+               rsa_unblind(nc, ri, pk_params->params[0]/*m*/);
+
+               ret = _gnutls_mpi_dprint(nc, signature);
+               _gnutls_mpi_release(&nc);
+               _gnutls_mpi_release(&ri);
+
+               if (ret < 0) {
                        gnutls_assert();
                        goto cleanup;
                }


hooks/post-receive
-- 
GNU gnutls

[Prev in Thread]

Current Thread

[Next in Thread]

[SCM] GNU gnutls branch, master, updated. gnutls_2_9_10-307-g5b9c9b5, Nikos Mavrogiannopoulos <=

Prev by Date: [SCM] GNU gnutls branch, finston_0, updated. gnutls_2_9_10-340-gf6f2110
Next by Date: [SCM] GNU gnutls branch, master, updated. gnutls_2_9_10-308-g5a6fc6f
Previous by thread: [SCM] GNU gnutls branch, finston_0, updated. gnutls_2_9_10-340-gf6f2110
Next by thread: [SCM] GNU gnutls branch, master, updated. gnutls_2_9_10-308-g5a6fc6f
Index(es):
- Date
- Thread