clean up the CRT notes

2025-09-02 00:23:38 -04:00
parent ce2081c811
commit 84838ce0c6
3 changed files with 16 additions and 3 deletions
--- a/_ref/rsa/private/v1/plain.adoc
+++ b/_ref/rsa/private/v1/plain.adoc
@@ -43,7 +43,7 @@ Since plaintext/unencrypted keys do not have a cipher or KDF (as there's no encr
        4.0.1.5 uint32 allocator for 4.0.1.5.0 (4 bytes)
            4.0.1.5.0 private exponent ('d')
        4.0.1.6 uint32 allocator for 4.0.1.6.0 (4 bytes)
-            4.0.1.6.0 CRT (Chinese Remainder Theorem) helper value ('q^(-1) % p')
+            4.0.1.6.0 CRT
        4.0.1.7 uint32 allocator for 4.0.1.7.0 (4 bytes)
            4.0.1.7.0 prime #1 ('p')
        4.0.1.8 uint32 allocator for 4.0.1.8.0 (4 bytes)
@@ -59,8 +59,13 @@ Since plaintext/unencrypted keys do not have a cipher or KDF (as there's no encr

 *Chunk 4.0:* This is technically currently unused; upstream hardcodes to 1 (left zero-padded 0x01).

+*Chunk 4.0.0.1.0, 4.0.1.4.0:* This is almost always `65537` for a couple reasons. It's the https://en.wikipedia.org/wiki/Fermat_number["Fermat Prime"^] __F~4~__.
+
 *Chunk 4.0.0.1.0, 4.0.0.2.0, 4.0.1.3.0, 4.0.1.4.0:* Note that the ordering of `e`/`n` in *4.0.0* is changed to `n`/`e` in *4.0.1*.

+*Chunk 4.0.1.6.0:* The CRT coefficient, or https://en.wikipedia.org/wiki/Chinese_remainder_theorem[Chinese Remainder Theorem^], is a helper used during decryption and signing. It's commonly referred to as `qnlv` or _inverse coefficient_.
+The value for this chunk is the result of `q^(-1) % p`.
+
 *Chunk 4.0.1.10:* The padding used aligns the private key (*4.0.1.0* to *4.0.1.9.0*) to the cipher blocksize. For plaintext keys, a blocksize of 8 is used.
 ====