This fixes a couple of cases where an inconsistent BIGNUM could be passed as

author Geoff Thorpe <geoff@openssl.org>

Thu, 30 Oct 2003 01:03:31 +0000 (01:03 +0000)

committer Geoff Thorpe <geoff@openssl.org>

Thu, 30 Oct 2003 01:03:31 +0000 (01:03 +0000)
author Geoff Thorpe <geoff@openssl.org>
Thu, 30 Oct 2003 01:03:31 +0000 (01:03 +0000)
committer Geoff Thorpe <geoff@openssl.org>
Thu, 30 Oct 2003 01:03:31 +0000 (01:03 +0000)
diff --git a/crypto/bn/bn_div.c b/crypto/bn/bn_div.c

index 580d1201bc253f7257f0abdd0be5497dac45922e..b2efe5bb53206cd09c8f96c1ed050373d63e62f3 100644 (file)
--- a/crypto/bn/bn_div.c
+++ b/crypto/bn/bn_div.c
@@ -348,11 +348,16 @@ X) -> 0x%08X\n",
                 l0=bn_mul_words(tmp->d,sdiv->d,div_n,q);
                 wnum.d--; wnum.top++;
                 tmp->d[div_n]=l0;
+               /* XXX: Couldn't we replace this with;
+                *    tmp->top = div_n;
+                *    bn_fix_top(tmp);
+                */
                 for (j=div_n+1; j>0; j--)
                         if (tmp->d[j-1]) break;
                 tmp->top=j;
  
                 j=wnum.top;
+               bn_fix_top(&wnum);
                 if (!BN_sub(&wnum,&wnum,tmp)) goto err;
  
                 snum->top=snum->top+wnum.top-j;
@@ -373,6 +378,7 @@ X) -> 0x%08X\n",
                  * BN_rshift() will overwrite it.
                  */
                 int neg = num->neg;
+               bn_fix_top(snum);
                 BN_rshift(rm,snum,norm_shift);
                 if (!BN_is_zero(rm))
                         rm->neg = neg;
author	Geoff Thorpe <geoff@openssl.org>
	Thu, 30 Oct 2003 01:03:31 +0000 (01:03 +0000)
committer	Geoff Thorpe <geoff@openssl.org>
	Thu, 30 Oct 2003 01:03:31 +0000 (01:03 +0000)