bn/bn_mont.c: improve readability of post-condition code.

Reviewed-by: N Rich Salz <rsalz@openssl.org> Reviewed-by: N David Benjamin <davidben@google.com> (Merged from https://github.com/openssl/openssl/pull/6662)

bn/bn_mont.c: improve readability of post-condition code.
Reviewed-by: N Rich Salz <rsalz@openssl.org> Reviewed-by: N David Benjamin <davidben@google.com> (Merged from https://github.com/openssl/openssl/pull/6662)
6c90182a · Andy Polyakov · 3c97e412 · 6c90182a
隐藏空白更改
内联并排

Showing with 5 addition and 6 deletion

crypto/bn/bn_mont.c crypto/bn/bn_mont.c +5 -6

未找到文件。
--- a/crypto/bn/bn_mont.c
+++ b/crypto/bn/bn_mont.c
@@ -130,15 +130,14 @@ static int BN_from_montgomery_word(BIGNUM *ret, BIGNUM *r, BN_MONT_CTX *mont)
     */
    ap = &(r->d[nl]);
+    carry -= bn_sub_words(rp, ap, np, nl);
    /*
-     * |v| is one if |ap| - |np| underflowed or zero if it did not. Note |v|
+     * |carry| is -1 if |ap| - |np| underflowed or zero if it did not. Note
-     * cannot be -1. That would imply the subtraction did not fit in |nl| words,
+     * |carry| cannot be 1. That would imply the subtraction did not fit in
-     * and we know at most one subtraction is needed.
+     * |nl| words, and we know at most one subtraction is needed.
     */
-    v = bn_sub_words(rp, ap, np, nl) - carry;
-    v = 0 - v;
    for (i = 0; i < nl; i++) {
-        rp[i] = (v & ap[i]) | (~v & rp[i]);
+        rp[i] = (carry & ap[i]) | (~carry & rp[i]);
        ap[i] = 0;
    }
    bn_correct_top(r);