diff --git a/ChangeLog b/ChangeLog
index b79cf26c6fe5baf5bb01afe3923414cdc13804c0..f938b2cb4f37f31c4f61525edf53aa1bd9d973ae 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,16 @@
 2018-11-08  Simo Sorce	  <simo@redhat.com>
 
+	* rsa-sign-tr.c (rsa_sec_compute_root_tr): New function that uses
+	_rsa_sec_compute_root, as well as side-channel silent RSA
+	blinding.
+	(rsa_compute_root_tr) Rewritten as a wrapper around
+	rsa_sec_compute_root_tr.
+	(rsa_sec_blind, rsa_sec_unblind, sec_equal, rsa_sec_check_root)
+	(cnd_mpn_zero): New helper functions.
+	(rsa_sec_compute_root_tr) [NETTLE_USE_MINI_GMP]: Defined as a not
+	side-channel silent wrapper around rsa_compute_root_tr, and the
+	latter function left unchanged.
+
 	* rsa-sec-compute-root.c (_rsa_sec_compute_root_itch)
 	(_rsa_sec_compute_root): New file, new private functions.
 	Side-channel silent version of rsa_compute_root.
diff --git a/rsa-sign-tr.c b/rsa-sign-tr.c
index a51e3ea4a227c493bbde89cb550d794f0011dfe3..524abb5a8fa06e404b29fe99b151220b08f8ced1 100644
--- a/rsa-sign-tr.c
+++ b/rsa-sign-tr.c
@@ -4,6 +4,7 @@
 
    Copyright (C) 2001, 2015 Niels Möller
    Copyright (C) 2012 Nikos Mavrogiannopoulos
+   Copyright (C) 2018 Red Hat Inc.
 
    This file is part of GNU Nettle.
 
@@ -145,7 +146,7 @@ rsa_sec_compute_root_tr(const struct rsa_public_key *pub,
   res = rsa_compute_root_tr(pub, key, random_ctx, random, xz, mz);
 
   if (res)
-      mpz_limbs_copy(x, xz, mpz_size(pub->n));
+    mpz_limbs_copy(x, xz, mpz_size(pub->n));
 
   mpz_clear(mz);
   mpz_clear(xz);