yogsototh/hs-tls
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

use a CPRG when signing with RSA.

Browse source
This commit is contained in:
Vincent Hanquez 2012-12-05 08:19:40 +00:00
parent bd2883683b
commit 68e45d829f
2 changed files with 6 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
core/Network/TLS/Crypto.hs
View file

@ -118,6 +118,6 @@ kxVerify (PubRSA pk) (hashF, hashASN1) msg sign =
-- Sign the given message using the private key. -- Sign the given message using the private key.
-- --
kxSign :: PrivateKey -> (ByteString -> ByteString, ByteString) -> ByteString -> Either KxError ByteString kxSign :: CPRG g => g -> PrivateKey -> (ByteString -> ByteString, ByteString) -> ByteString -> (Either KxError ByteString, g)
kxSign (PrivRSA pk) (hashF, hashASN1) msg = kxSign g (PrivRSA pk) (hashF, hashASN1) msg =
generalizeRSAError $ RSA.sign hashF hashASN1 pk msg (generalizeRSAError $ RSA.sign hashF hashASN1 pk msg, g)

4
core/Network/TLS/Sending.hs
View file

@ -94,7 +94,9 @@ signRSA :: (ByteString -> ByteString, ByteString) -> ByteString -> TLSSt ByteStr
signRSA hsh content = do signRSA hsh content = do
st <- get st <- get
let rsakey = fromJust "rsa client private key" $ hstRSAClientPrivateKey $ fromJust "handshake" $ stHandshake st let rsakey = fromJust "rsa client private key" $ hstRSAClientPrivateKey $ fromJust "handshake" $ stHandshake st
case kxSign rsakey hsh content of let (r, rng') = withTLSRNG (stRandomGen st) (\g -> kxSign g rsakey hsh content)
put (st { stRandomGen = rng' })
case r of
Left err -> fail ("rsa sign failed: " ++ show err) Left err -> fail ("rsa sign failed: " ++ show err)
Right econtent -> return econtent Right econtent -> return econtent