bn: catch negative zero as an error

author Geoff Thorpe <geoff@openssl.org>

Thu, 6 Oct 2016 14:02:38 +0000 (09:02 -0500)

committer Richard Levitte <levitte@openssl.org>

Wed, 1 Feb 2017 02:17:37 +0000 (03:17 +0100)
author Geoff Thorpe <geoff@openssl.org>
Thu, 6 Oct 2016 14:02:38 +0000 (09:02 -0500)
committer Richard Levitte <levitte@openssl.org>
Wed, 1 Feb 2017 02:17:37 +0000 (03:17 +0100)
diff --git a/crypto/bn/bn_lcl.h b/crypto/bn/bn_lcl.h

index b5be6fc8148b103087a71fdf0876c33ed7063027..5fb3814554c32127e50a6917cdbb6f7782ef875a 100644 (file)
--- a/crypto/bn/bn_lcl.h
+++ b/crypto/bn/bn_lcl.h
@@ -177,8 +177,8 @@ int RAND_bytes(unsigned char *buf, int num);
          do { \
                  const BIGNUM *_bnum2 = (a); \
                  if (_bnum2 != NULL) { \
-                        OPENSSL_assert((_bnum2->top == 0) || \
-                                (_bnum2->d[_bnum2->top - 1] != 0)); \
+                        OPENSSL_assert(((_bnum2->top == 0) && !_bnum2->neg) || \
+                                (_bnum2->top && (_bnum2->d[_bnum2->top - 1] != 0))); \
                          bn_pollute(_bnum2); \
                  } \
          } while(0)
author	Geoff Thorpe <geoff@openssl.org>
	Thu, 6 Oct 2016 14:02:38 +0000 (09:02 -0500)
committer	Richard Levitte <levitte@openssl.org>
	Wed, 1 Feb 2017 02:17:37 +0000 (03:17 +0100)