Make the random generator of _Rsa and RsaPublic configurable.

roberthdevries · roberthdevries · commit 193d3276bb01 · 2026-04-09T19:41:42.000+02:00
This was the only class that has hardcoded the random number generator
in the implementation.
diff --git a/wolfcrypt/ciphers.py b/wolfcrypt/ciphers.py
@@ -650,13 +650,13 @@ class _Rsa(object):  # pylint: disable=too-few-public-methods
         _mgf = None
         _hash_type = None
 
-        def __init__(self):
+        def __init__(self, rng=Random()):
             self.native_object = _ffi.new("RsaKey *")
             ret = _lib.wc_InitRsaKey(self.native_object, _ffi.NULL)
             if ret < 0:  # pragma: no cover
                 raise WolfCryptError("Invalid key error (%d)" % ret)
 
-            self._random = Random()
+            self._random = rng
             if _lib.RSA_BLINDING_ENABLED:
                 ret = _lib.wc_RsaSetRNG(self.native_object,
                         self._random.native_object)
@@ -690,12 +690,14 @@ def _get_mgf(self):
 
 
     class RsaPublic(_Rsa):
-        def __init__(self, key=None, hash_type=None):
+        def __init__(self, key=None, hash_type=None, rng=None):
             if key is not None:
                 key = t2b(key)
             self._hash_type = hash_type
+            if rng is None:
+                rng = Random()
 
-            _Rsa.__init__(self)
+            _Rsa.__init__(self, rng)
 
             idx = _ffi.new("word32*")
             idx[0] = 0
