src/crypto/rsa/rsa_test.go · f79b50b8d5bc159561c1dcf7c17e2a0db96a9a11 · go / golang

crypto/rsa: check CRT result. · 40ac3690

Adam Langley authored Dec 16, 2015

This change adds a check after computing an RSA signature that the
signature is correct. This prevents an error in the CRT computation from
leaking the private key. See references in the linked bug.

benchmark                  old ns/op     new ns/op     delta
BenchmarkRSA2048Sign-3     5713305       6225215       +8.96%

Fixes #12453

Change-Id: I1f24e0b542f7c9a3f7e7ad4e971db3dc440ed3c1
Reviewed-on: https://go-review.googlesource.com/17862Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Reviewed-by: Robert Griesemer <gri@golang.org>
Reviewed-by: Russ Cox <rsc@golang.org>

40ac3690

rsa_test.go 17.8 KB

Replace rsa_test.go