Skip to content
Snippets Groups Projects

Compare revisions

Changes are shown as if the source revision was being merged into the target revision. Learn more about comparing revisions.

Source

Select target project
No results found
Select Git revision
  • aead-api
  • aes-reorg
  • aes-struct-layout
  • api-opaque-fix
  • attribute-deprecated
  • block16-refactor
  • chacha96
  • cmac-layout
  • cmac-support
  • cmac64
  • ctr-opt
  • curve25519
  • curve448
  • delete-des-compat
  • delete-old-aes
  • delete-rsa_blind
  • dsa-reorg
  • ecc-params-tweak
  • ecc-sqrt
  • ecc-support
  • ed448
  • experimental-20050201
  • fat-library
  • gcm-ctr-opt
  • gost28147
  • gosthash94cp
  • hkdf-support
  • lsh-1.4.2
  • master
  • master-updates
  • merge-pss
  • nettle-2.7-fixes
  • openssl-benchmark-update
  • poly1305
  • release-3.4-fixes
  • rename-data-symbols
  • rsa-crt-hardening
  • set_key-changes
  • shake256
  • siv-mode
  • size_t-changes
  • skein
  • streebog
  • struct-layout
  • versioned-symbols
  • x86_64-sha_ni-sha1
  • x86_64-sha_ni-sha256
  • after_experimental_merge_20060516
  • before_experimental_branch_20050201
  • branch_before_experimental_merge_20060516
  • camellia_32bit_20100720
  • converted-master-branch-to-git
  • des_and_blowfish_compiles_19981216
  • head_before_experimental_merge_20060516
  • integrated_crypto_toolkit_19980903
  • moving_files_to_src_now
  • nettle_1.0_release_20010925
  • nettle_1.10_release_20040305
  • nettle_1.11_release_20041026
  • nettle_1.12_release_20041104
  • nettle_1.13_release_20051006
  • nettle_1.14_release_20051205
  • nettle_1.15_release_20061128
  • nettle_1.5_release_20020131
  • nettle_1.6_release_20021003
  • nettle_1.7_release_20030311
  • nettle_1.8_release_20040110
  • nettle_1.9_release_20040207
  • nettle_2.0_release_20090608
  • nettle_2.1_release_20100725
  • nettle_2.2_release_20110711
  • nettle_2.3_release_20110902
  • nettle_2.4_release_20110903
  • nettle_2.5_release_20120707
  • nettle_2.6_release_20130116
  • nettle_2.7.1_release_20130528
  • nettle_2.7_release_20130424
  • nettle_3.0_release_20140607
  • nettle_3.1.1_release_20150424
  • nettle_3.1_release_20150407
  • nettle_3.1rc1
  • nettle_3.1rc2
  • nettle_3.1rc3
  • nettle_3.2_release_20160128
  • nettle_3.3_release_20161001
  • nettle_3.4.1_release_20181204
  • nettle_3.4.1rc1
  • nettle_3.4_release_20171119
  • nettle_3.4rc1
  • nettle_3.4rc2
  • nettle_3.5.1_release_20190627
  • nettle_3.5_release_20190626
  • nettle_3.5rc1
  • release_nettle_0.2.20010617
94 results

Target

Select target project
  • briansmith/nettle
  • justus/nettle
  • nettle/nettle
  • michaelweiser/nettle
  • aberaud/nettle
  • npocs/nettle
  • ajlawrence/nettle
  • mhoffmann/nettle
  • lumag/nettle
  • mamonet/nettle
  • devnexen/nettle
  • babelouest/nettle
  • ueno/nettle
  • rth/nettle
  • wiml/nettle
15 results
Select Git revision
  • add-drbg-ctr-aes256
  • add-sha3_256_shake_output
  • aead-api
  • aead-tests
  • aes-cbc
  • aes-noreverse-decrypt-subkeys
  • aes-reorg
  • aes-struct-layout
  • api-opaque-fix
  • arm-salsa20-chacha-vsra
  • arm64
  • arm64-ecc
  • arm64-poly1305
  • arm64-sha1
  • attribute-deprecated
  • balloon
  • bcrypt
  • block16-refactor
  • bswap-header
  • chacha-3core-neon
  • chacha96
  • check-fat-emulate
  • ci-debug-dir
  • ci-native-template
  • ci-nettle-build-images
  • ci-sparc64
  • cleanup-hmac-tests
  • cmac-layout
  • cmac-support
  • cmac64
  • ctr-opt
  • curve25519
  • curve448
  • default-m4-quote-char
  • delete-1-way-neon
  • delete-arcfour-asm
  • delete-des-compat
  • delete-digest_func-size
  • delete-ecc-g
  • delete-internal-name-mangling
  • delete-md5-asm
  • delete-md5-compat
  • delete-old-aes
  • delete-openpgp
  • delete-rsa_blind
  • delete-sparc32
  • dsa-reorg
  • ecc-gost
  • ecc-params-tweak
  • ecc-sqrt
  • ecc-support
  • ecdsa-duplication-fix
  • ecdsa-weierstrass-only
  • ed448
  • experimental-20050201
  • export-sha256_compress
  • fat-build-by-default
  • fat-library
  • fix-bcrypt-warning
  • fix-chacha-counter
  • fix-gitlab-ci
  • fix-x86_64-ghash-alignment
  • gcm-ctr-opt
  • getopt-prototype
  • ghash-refactor
  • ghash-sidechannel-silent
  • gosthash94cp
  • hkdf-support
  • invert-with-redc
  • lsh-1.4.2
  • master
  • master-updates
  • merge-pss
  • move-nettle_mac
  • nettle-2.7-fixes
  • nettle-arm64-chacha
  • nettle-ppc-test-power9
  • new-mod-inv
  • ocb-merge
  • ocb-mode
  • openssl-benchmark-update
  • optimize-ecc-invert
  • poly1305
  • poly1305-radix32
  • power-asm-wip
  • ppc-aes-macros
  • ppc-chacha-2core
  • ppc-chacha-4core
  • ppc-chacha-core
  • ppc-gcm
  • ppc-ghash-macros
  • ppc-rework-bswap
  • ppc-secp256-tweaks
  • ppc64-aes-invert
  • ppc64-aes-registers
  • ppc64-efv2-check
  • ppc64-gcm-aes
  • ppc64-gcm-aes-rebased
  • ppc64-sha256
  • ppc64-sha512
  • after_experimental_merge_20060516
  • before_experimental_branch_20050201
  • branch_before_experimental_merge_20060516
  • camellia_32bit_20100720
  • converted-master-branch-to-git
  • des_and_blowfish_compiles_19981216
  • head_before_experimental_merge_20060516
  • integrated_crypto_toolkit_19980903
  • moving_files_to_src_now
  • nettle_1.0_release_20010925
  • nettle_1.10_release_20040305
  • nettle_1.11_release_20041026
  • nettle_1.12_release_20041104
  • nettle_1.13_release_20051006
  • nettle_1.14_release_20051205
  • nettle_1.15_release_20061128
  • nettle_1.5_release_20020131
  • nettle_1.6_release_20021003
  • nettle_1.7_release_20030311
  • nettle_1.8_release_20040110
  • nettle_1.9_release_20040207
  • nettle_2.0_release_20090608
  • nettle_2.1_release_20100725
  • nettle_2.2_release_20110711
  • nettle_2.3_release_20110902
  • nettle_2.4_release_20110903
  • nettle_2.5_release_20120707
  • nettle_2.6_release_20130116
  • nettle_2.7.1_release_20130528
  • nettle_2.7_release_20130424
  • nettle_3.0_release_20140607
  • nettle_3.1.1_release_20150424
  • nettle_3.10.1_release_20241230
  • nettle_3.10.2_release_20250626
  • nettle_3.10_release_20240616
  • nettle_3.10rc1
  • nettle_3.10rc2
  • nettle_3.1_release_20150407
  • nettle_3.1rc1
  • nettle_3.1rc2
  • nettle_3.1rc3
  • nettle_3.2_release_20160128
  • nettle_3.3_release_20161001
  • nettle_3.4.1_release_20181204
  • nettle_3.4.1rc1
  • nettle_3.4_release_20171119
  • nettle_3.4rc1
  • nettle_3.4rc2
  • nettle_3.5.1_release_20190627
  • nettle_3.5_release_20190626
  • nettle_3.5rc1
  • nettle_3.6_release_20200429
  • nettle_3.6rc1
  • nettle_3.6rc2
  • nettle_3.6rc3
  • nettle_3.7.1_release_20210217
  • nettle_3.7.2_release_20210321
  • nettle_3.7.3_release_20210606
  • nettle_3.7_release_20210104
  • nettle_3.7rc1
  • nettle_3.8.1_release_20220727
  • nettle_3.8_release_20220602
  • nettle_3.9.1_release_20230601
  • nettle_3.9_release_20230514
  • release_nettle_0.2.20010617
165 results
Show changes
Commits on Source (1)
2019-05-12 Niels Möller <nisse@lysator.liu.se>
* rsa-blind.c (_rsa_blind, _rsa_unblind): Delete file and
functions. RSA blinding is done differently, in rsa-sign-tr.c.
* rsa-internal.h: Delete declarations.
* Makefile.in (hogweed_SOURCES): Delete rsa-blind.c.
2019-05-11 Niels Möller <nisse@lysator.liu.se>
* NEWS: More updates for Nettle-3.5.
......
......@@ -158,8 +158,7 @@ hogweed_SOURCES = sexp.c sexp-format.c \
rsa-pss-sha512-sign-tr.c rsa-pss-sha512-verify.c \
rsa-encrypt.c rsa-decrypt.c \
rsa-sec-decrypt.c rsa-decrypt-tr.c \
rsa-keygen.c rsa-blind.c \
rsa2sexp.c sexp2rsa.c \
rsa-keygen.c rsa2sexp.c sexp2rsa.c \
dsa.c dsa-compat.c dsa-compat-keygen.c dsa-gen-params.c \
dsa-sign.c dsa-verify.c dsa-keygen.c dsa-hash.c \
dsa-sha1-sign.c dsa-sha1-verify.c \
......
/* rsa-blind.c
RSA blinding. Used for resistance to timing-attacks.
Copyright (C) 2001, 2012 Niels Möller, Nikos Mavrogiannopoulos
This file is part of GNU Nettle.
GNU Nettle is free software: you can redistribute it and/or
modify it under the terms of either:
* the GNU Lesser General Public License as published by the Free
Software Foundation; either version 3 of the License, or (at your
option) any later version.
or
* the GNU General Public License as published by the Free
Software Foundation; either version 2 of the License, or (at your
option) any later version.
or both in parallel, as here.
GNU Nettle is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
General Public License for more details.
You should have received copies of the GNU General Public License and
the GNU Lesser General Public License along with this program. If
not, see http://www.gnu.org/licenses/.
*/
#if HAVE_CONFIG_H
# include "config.h"
#endif
#include "rsa.h"
#include "rsa-internal.h"
#include "bignum.h"
/* Blinds the c, by computing c *= r^e (mod n), for a random r. Also
returns the inverse (ri), for use by rsa_unblind. */
void
_rsa_blind (const struct rsa_public_key *pub,
void *random_ctx, nettle_random_func *random,
mpz_t c, mpz_t ri)
{
mpz_t r;
mpz_init(r);
/* c = c*(r^e)
* ri = r^(-1)
*/
do
{
nettle_mpz_random(r, random_ctx, random, pub->n);
/* invert r */
}
while (!mpz_invert (ri, r, pub->n));
/* c = c*(r^e) mod n */
mpz_powm_sec(r, r, pub->e, pub->n);
mpz_mul(c, c, r);
mpz_fdiv_r(c, c, pub->n);
mpz_clear(r);
}
/* c *= ri mod n */
void
_rsa_unblind (const struct rsa_public_key *pub, mpz_t c, const mpz_t ri)
{
mpz_mul(c, c, ri);
mpz_fdiv_r(c, c, pub->n);
}
......@@ -59,16 +59,6 @@ _rsa_verify_recover(const struct rsa_public_key *key,
size_t
_rsa_check_size(mpz_t n);
/* _rsa_blind and _rsa_unblind are deprecated, unused in the library,
and will likely be removed with the next ABI break. */
void
_rsa_blind (const struct rsa_public_key *pub,
void *random_ctx, nettle_random_func *random,
mpz_t c, mpz_t ri) _NETTLE_ATTRIBUTE_DEPRECATED;
void
_rsa_unblind (const struct rsa_public_key *pub, mpz_t c, const mpz_t ri)
_NETTLE_ATTRIBUTE_DEPRECATED;
/* side-channel silent root computation */
mp_size_t
_rsa_sec_compute_root_itch(const struct rsa_private_key *key);
......