bn_mul_recursive doesn't handle all cases correctly, which results in

BN_mul failures at certain key-length mixes. PR: 1427

bn_mul_recursive doesn't handle all cases correctly, which results in
BN_mul failures at certain key-length mixes. PR: 1427
35295bdb · Andy Polyakov · aa8d6f3e · 35295bdb
隐藏空白更改
内联并排

Showing with 4 addition and 4 deletion

crypto/bn/bn_mul.c crypto/bn/bn_mul.c +4 -4

未找到文件。
--- a/crypto/bn/bn_mul.c
+++ b/crypto/bn/bn_mul.c
@@ -655,16 +655,16 @@ void bn_mul_part_recursive(BN_ULONG *r, BN_ULONG *a, BN_ULONG *b, int n,
 				for (;;)
 					{
 					i/=2;
-					if (i < tna && i < tnb)
+					if (i <= tna && tna == tnb)
 						{
-						bn_mul_part_recursive(&(r[n2]),
+						bn_mul_recursive(&(r[n2]),
 							&(a[n]),&(b[n]),
 							i,tna-i,tnb-i,p);
 						break;
 						}
-					else if (i <= tna && i <= tnb)
+					else if (i < tna || i < tnb)
 						{
-						bn_mul_recursive(&(r[n2]),
+						bn_mul_part_recursive(&(r[n2]),
 							&(a[n]),&(b[n]),
 							i,tna-i,tnb-i,p);
 						break;