Skip to content
Snippets Groups Projects
Commit 8f75480e authored by Matt Johnston's avatar Matt Johnston
Browse files

* move RSA_BLINDING to options.h

--HG--
extra : convert_revision : e3f32a86aafc1d806b2bee9405020368f9706d85
parent 975b94c5
Branches
Tags
No related merge requests found
......@@ -90,6 +90,11 @@ etc) slower (perhaps by 50%). Recommended for most small systems. */
#define DROPBEAR_RSA
#define DROPBEAR_DSS
/* RSA can be vulnerable to timing attacks which use the time required for
* signing to guess the private key. Blinding avoids this attack, though makes
* signing operations slightly slower. */
#define RSA_BLINDING
/* Define DSS_PROTOK to use PuTTY's method of generating the value k for dss,
* rather than just from the random byte source. Undefining this will save you
* ~4k in binary size with static uclibc, but your DSS hostkey could be exposed
......
......@@ -275,7 +275,6 @@ void buf_put_rsa_sign(buffer* buf, rsa_key *key, const unsigned char* data,
/* the actual signing of the padded data */
#define RSA_BLINDING
#ifdef RSA_BLINDING
/* With blinding, s = (r^(-1))((em)*r^e)^d mod n */
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment