Return an error from BN_mod_inverse if n is 1 (or -1)#6119
Closed
mattcaswell wants to merge 1 commit intoopenssl:masterfrom
Closed
Return an error from BN_mod_inverse if n is 1 (or -1)#6119mattcaswell wants to merge 1 commit intoopenssl:masterfrom
mattcaswell wants to merge 1 commit intoopenssl:masterfrom
Conversation
Calculating BN_mod_inverse where n is 1 (or -1) doesn't make sense. We should return an error in that case. Instead we were returning a valid result with value 0. Fixes openssl#6004
Member
Author
|
Ping @openssl/committers. Thoughts please! |
Contributor
|
Fix it. It's a math error. |
mattcaswell
changed the title
Member
Author
|
Taken out of WIP. |
richsalz
approved these changes
May 2, 2018
mattcaswell
added
branch: master
Member
Author
|
Forgot to add target branch labels. @richsalz are you ok for backport to 1.1.0? It cherry-picks cleanly. |
Contributor
|
Yes, I am fine with merging to other branches. |
richsalz
added
the
approval: done
levitte
pushed a commit
that referenced
this pull request
May 3, 2018
Calculating BN_mod_inverse where n is 1 (or -1) doesn't make sense. We should return an error in that case. Instead we were returning a valid result with value 0. Fixes #6004 Reviewed-by: Rich Salz <[email protected]> (Merged from #6119)
levitte
pushed a commit
that referenced
this pull request
May 3, 2018
Calculating BN_mod_inverse where n is 1 (or -1) doesn't make sense. We should return an error in that case. Instead we were returning a valid result with value 0. Fixes #6004 Reviewed-by: Rich Salz <[email protected]> (Merged from #6119) (cherry picked from commit b1860d6)
Member
Author
|
Pushed to master and 1.1.0. Thanks. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Calculating BN_mod_inverse where n is 1 (or -1) doesn't make sense. We
should return an error in that case. Instead we were returning a valid
result with value 0.
Fixes #6004
I've marked this as WIP because I'd like some feedback on this. It turns out that, even though it doesn't make any sense to ask for BN_mod_inverse() with n set to 1 we were doing it anyway - and rely on the fact that the result is 0. I have fixed the instance where that occurred, but it made me worry that if we are doing it, are there other applications doing it too (which we would break)?
The alternative to fixing it is to just document the quirk.
Should we fix it or document it?