diff options
| author | Hakan Olsson <ho@cvs.openbsd.org> | 2003-03-13 13:24:49 +0000 |
|---|---|---|
| committer | Hakan Olsson <ho@cvs.openbsd.org> | 2003-03-13 13:24:49 +0000 |
| commit | 187fdfce37f8f26e844ff5f6768c6383a5586656 (patch) | |
| tree | d6257b19c14dd1aa6c2f98749778cf4d0f94c09c | |
| parent | 3c6b708cda6873c991ccb29232a3621aa274d138 (diff) | |
Might as well do blinding here too.
| -rw-r--r-- | sbin/isakmpd/ike_auth.c | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/sbin/isakmpd/ike_auth.c b/sbin/isakmpd/ike_auth.c index dae38180ce9..a195b515d74 100644 --- a/sbin/isakmpd/ike_auth.c +++ b/sbin/isakmpd/ike_auth.c @@ -1,4 +1,4 @@ -/* $OpenBSD: ike_auth.c,v 1.67 2003/01/22 15:13:11 ho Exp $ */ +/* $OpenBSD: ike_auth.c,v 1.68 2003/03/13 13:24:48 ho Exp $ */ /* $EOM: ike_auth.c,v 1.59 2000/11/21 00:21:31 angelos Exp $ */ /* @@ -1093,6 +1093,13 @@ rsa_sig_encode_hash (struct message *msg) exchange->sent_keytype = ISAKMP_KEY_RSA; } + /* Enable RSA blinding. */ + if (RSA_blinding_on (exchange->sent_key, NULL) != 1) + { + log_error ("rsa_sig_encode_hash: RSA_blinding_on () failed."); + return -1; + } + /* XXX hashsize is not necessarily prf->blocksize. */ buf = malloc (hashsize); if (!buf) |