aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorNIIBE Yutaka <[email protected]>2017-07-07 12:51:42 +0000
committerNIIBE Yutaka <[email protected]>2017-07-07 12:51:42 +0000
commit1b1f44846b5f21a80ed101f2284ce5f6e8849ee7 (patch)
tree65cd617a39c2c7e1eccde7c3974d532736ad449d
parentrsa: Allow different build directory. (diff)
downloadgnupg-1b1f44846b5f21a80ed101f2284ce5f6e8849ee7.tar.gz
gnupg-1b1f44846b5f21a80ed101f2284ce5f6e8849ee7.zip
rsa: Reduce secmem pressure.
* cipher/rsa.c (secret): Don't keep secmem. Signed-off-by: NIIBE Yutaka <[email protected]>
Diffstat
-rw-r--r--cipher/rsa.c9
1 files changed, 8 insertions, 1 deletions
diff --git a/cipher/rsa.c b/cipher/rsa.c
index 84a1af0e5..51b76404f 100644
--- a/cipher/rsa.c
+++ b/cipher/rsa.c
@@ -341,22 +341,29 @@ secret(MPI output, MPI input, RSA_secret_key *skey )
mpi_set_highbit (rr, rr_nbits - 1);
mpi_sub_ui( h, skey->p, 1 );
mpi_mul ( D_blind, h, rr );
+ mpi_free ( rr );
mpi_fdiv_r( h, skey->d, h );
mpi_add ( D_blind, D_blind, h );
+ mpi_free ( h );
mpi_powm ( m1, input, D_blind, skey->p );
+ h = mpi_alloc_secure (nlimbs);
+ rr = mpi_alloc_secure ( (rr_nbits + BITS_PER_MPI_LIMB-1)/BITS_PER_MPI_LIMB );
+
/* d_blind = (d mod (q-1)) + (q-1) * r */
/* m2 = c ^ d_blind mod q */
randomize_mpi (rr, rr_nbits, 0);
mpi_set_highbit (rr, rr_nbits - 1);
mpi_sub_ui( h, skey->q, 1 );
mpi_mul ( D_blind, h, rr );
+ mpi_free ( rr );
mpi_fdiv_r( h, skey->d, h );
mpi_add ( D_blind, D_blind, h );
+ mpi_free ( h );
mpi_powm ( m2, input, D_blind, skey->q );
- mpi_free ( rr );
mpi_free ( D_blind );
+ h = mpi_alloc_secure (nlimbs);
/* h = u * ( m2 - m1 ) mod q */
mpi_sub( h, m2, m1 );
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-27 08:14:16 +0000