projects / openssl.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
bignum: fix boundary condition in montgomery logic
[openssl.git] / crypto / bn / bn_exp.c
diff --git a/crypto/bn/bn_exp.c b/crypto/bn/bn_exp.c
index 5adb441870235a3d72bed617aa9965c288b09840..3fa8cda8428f20a87b1de55b9ee2f443d7520c52 100644 (file)
--- a/crypto/bn/bn_exp.c
+++ b/crypto/bn/bn_exp.c
@@ -493,6 +493,9 @@ int BN_mod_exp_mont(BIGNUM *rr, const BIGNUM *a, const BIGNUM *p,
                r->d[0] = (0-m->d[0])&BN_MASK2;
                for(i=1;i<j;i++) r->d[i] = (~m->d[i])&BN_MASK2;
                r->top = j;
+               /* Upper words will be zero if the corresponding words of 'm'
+                * were 0xfff[...], so decrement r->top accordingly. */
+               bn_correct_top(r);
                }
        else
 #endif
Unnamed repository; edit this file 'description' to name the repository.