Return an error from BN_mod_inverse if n is 1 (or -1) (b1860d6c) · Commits · CYBER - Cyber Security / TS 103 523 MSP / ETS / ETS OpenSSL

crypto/bn/bn_gcd.c

+8 −1

Original line number	Diff line number	Diff line
		@@ -140,7 +140,14 @@ BIGNUM int_bn_mod_inverse(BIGNUM in,
		BIGNUM *ret = NULL;
		int sign;

		if (pnoinv)
		/* This is invalid input so we don't worry about constant time here */
		if (BN_abs_is_word(n, 1) \|\| BN_is_zero(n)) {
		if (pnoinv != NULL)
		*pnoinv = 1;
		return NULL;
		}

		if (pnoinv != NULL)
		*pnoinv = 0;

		if ((BN_get_flags(a, BN_FLG_CONSTTIME) != 0)

+6 −2

Original line number	Diff line number	Diff line
		@@ -281,7 +281,9 @@ int BN_MONT_CTX_set(BN_MONT_CTX mont, const BIGNUM mod, BN_CTX *ctx)
		if ((buf[1] = mod->top > 1 ? mod->d[1] : 0))
		tmod.top = 2;

		if ((BN_mod_inverse(Ri, R, &tmod, ctx)) == NULL)
		if (BN_is_one(&tmod))
		BN_zero(Ri);
		else if ((BN_mod_inverse(Ri, R, &tmod, ctx)) == NULL)
		goto err;
		if (!BN_lshift(Ri, Ri, 2 * BN_BITS2))
		goto err; /* RRi /
		@@ -314,7 +316,9 @@ int BN_MONT_CTX_set(BN_MONT_CTX mont, const BIGNUM mod, BN_CTX *ctx)
		buf[1] = 0;
		tmod.top = buf[0] != 0 ? 1 : 0;
		/* Ri = R^-1 mod N */
		if ((BN_mod_inverse(Ri, R, &tmod, ctx)) == NULL)
		if (BN_is_one(&tmod))
		BN_zero(Ri);
		else if ((BN_mod_inverse(Ri, R, &tmod, ctx)) == NULL)
		goto err;
		if (!BN_lshift(Ri, Ri, BN_BITS2))
		goto err; /* RRi /