Bodo Moeller wrote:
Server: cvs.openssl.org Name: Bodo Moeller Root: /e/openssl/cvs Email: [EMAIL PROTECTED] Module: openssl Date: 19-Mar-2003 19:58:56 Branch: OpenSSL_0_9_7-stable Handle: 2003031918585302
Log:
make sure RSA blinding works when the PRNG is not properly seeded;
disable it automatically only for the built-in engine
[...]patch -p0 <<'@@ .' Index: openssl/crypto/rsa/rsa.h ============================================================================ $ cvs diff -u -r1.36.2.5 -r1.36.2.6 rsa.h --- openssl/crypto/rsa/rsa.h 30 Jan 2003 18:52:52 -0000 1.36.2.5 +++ openssl/crypto/rsa/rsa.h 19 Mar 2003 18:58:55 -0000 1.36.2.6 @@ -158,6 +158,11 @@ #define RSA_FLAG_CACHE_PUBLIC 0x02 #define RSA_FLAG_CACHE_PRIVATE 0x04 #define RSA_FLAG_BLINDING 0x08 +#define RSA_FLAG_NO_BLINDING 0x80 /* new with 0.9.7b; the built-in RSA + * implementation now uses blinding by + * default (ignoring RSA_FLAG_BLINDING), + * but other engines might not need it + */
#define RSA_FLAG_SIGN_VER 0x4 + +#define RSA_FLAG_NO_BLINDING 0x80
??? Why define it two times ?
Bye
Goetz
-- Goetz Babin-Ebell, TC TrustCenter AG, http://www.trustcenter.de Sonninstr. 24-28, 20097 Hamburg, Germany Tel.: +49-(0)40 80 80 26 -0, Fax: +49-(0)40 80 80 26 -126
smime.p7s
Description: S/MIME Cryptographic Signature
