NAME¶

RSA_blinding_on, RSA_blinding_off — protect the RSA operation from timing attacks

SYNOPSIS¶

#include <openssl/rsa.h>

int
RSA_blinding_on(RSA *rsa, BN_CTX *ctx);

void
RSA_blinding_off(RSA *rsa);

DESCRIPTION¶

RSA is vulnerable to timing attacks. In a setup where attackers can measure the time of RSA decryption or signature operations, blinding must be used to protect the RSA operation from that attack.

RSA_blinding_on() turns blinding on for key rsa and generates a random blinding factor. ctx is NULL or a pre-allocated and initialized BN_CTX.

RSA_blinding_off() turns blinding off and frees the memory used for the blinding factor.

RETURN VALUES¶

RSA_blinding_on() returns 1 on success, and 0 if an error occurred.

HISTORY¶

RSA_blinding_on() and RSA_blinding_off() first appeared in SSLeay 0.9.0 and have been available since OpenBSD 2.4.

July 26, 2023

Linux 5.14.21-150500.55.52-default

Source file:	RSA_blinding_off.3ssl.en.gz (from libressl-devel-doc 3.9.1-1.1)
Source last updated:	2024-03-30T17:56:48Z
Converted to HTML:	2024-05-03T00:52:31Z

NAME¶

SYNOPSIS¶

DESCRIPTION¶

RETURN VALUES¶

SEE ALSO¶

HISTORY¶