Loading CHANGES +6 −0 Original line number Diff line number Diff line Loading @@ -12,6 +12,12 @@ *) applies to 0.9.6a/0.9.6b/0.9.6c and 0.9.7 +) applies to 0.9.7 only *) Fix BN_rand_range bug pointed out by Dominikus Scherkl <Dominikus.Scherkl@biodata.com>. (The previous implementation worked incorrectly for those cases where range = 10..._2 and 3*range is two bits longer than range.) [Bodo Moeller] *) Only add signing time to PKCS7 structures if it is not already present. [Steve Henson] Loading crypto/bn/bn_rand.c +13 −11 Original line number Diff line number Diff line Loading @@ -239,22 +239,15 @@ static int bn_rand_range(int pseudo, BIGNUM *r, BIGNUM *range) n = BN_num_bits(range); /* n > 0 */ /* BN_is_bit_set(range, n - 1) always holds */ if (n == 1) { if (!BN_zero(r)) return 0; } else if (BN_is_bit_set(range, n - 2)) { do { /* range = 11..._2, so each iteration succeeds with probability >= .75 */ if (!bn_rand(r, n, -1, 0)) return 0; } while (BN_cmp(r, range) >= 0); } else else if (!BN_is_bit_set(range, n - 2) && !BN_is_bit_set(range, n - 3)) { /* range = 10..._2, /* range = 100..._2, * so 3*range (= 11..._2) is exactly one bit longer than range */ do { Loading @@ -273,6 +266,15 @@ static int bn_rand_range(int pseudo, BIGNUM *r, BIGNUM *range) } while (BN_cmp(r, range) >= 0); } else { do { /* range = 11..._2 or range = 101..._2 */ if (!bn_rand(r, n, -1, 0)) return 0; } while (BN_cmp(r, range) >= 0); } return 1; } Loading Loading
CHANGES +6 −0 Original line number Diff line number Diff line Loading @@ -12,6 +12,12 @@ *) applies to 0.9.6a/0.9.6b/0.9.6c and 0.9.7 +) applies to 0.9.7 only *) Fix BN_rand_range bug pointed out by Dominikus Scherkl <Dominikus.Scherkl@biodata.com>. (The previous implementation worked incorrectly for those cases where range = 10..._2 and 3*range is two bits longer than range.) [Bodo Moeller] *) Only add signing time to PKCS7 structures if it is not already present. [Steve Henson] Loading
crypto/bn/bn_rand.c +13 −11 Original line number Diff line number Diff line Loading @@ -239,22 +239,15 @@ static int bn_rand_range(int pseudo, BIGNUM *r, BIGNUM *range) n = BN_num_bits(range); /* n > 0 */ /* BN_is_bit_set(range, n - 1) always holds */ if (n == 1) { if (!BN_zero(r)) return 0; } else if (BN_is_bit_set(range, n - 2)) { do { /* range = 11..._2, so each iteration succeeds with probability >= .75 */ if (!bn_rand(r, n, -1, 0)) return 0; } while (BN_cmp(r, range) >= 0); } else else if (!BN_is_bit_set(range, n - 2) && !BN_is_bit_set(range, n - 3)) { /* range = 10..._2, /* range = 100..._2, * so 3*range (= 11..._2) is exactly one bit longer than range */ do { Loading @@ -273,6 +266,15 @@ static int bn_rand_range(int pseudo, BIGNUM *r, BIGNUM *range) } while (BN_cmp(r, range) >= 0); } else { do { /* range = 11..._2 or range = 101..._2 */ if (!bn_rand(r, n, -1, 0)) return 0; } while (BN_cmp(r, range) >= 0); } return 1; } Loading
