Avoid reading an unused byte after the buffer

Other curves don't have this problem. Reviewed-by: Kurt Roeckx <kurt@roeckx.be> Reviewed-by: Emilia Käsper <emilia@openssl.org>
2015-02-21 13:51:56 +01:00 · 2015-02-21 13:51:56 +01:00 · 9fbbdd73c5
commit 9fbbdd73c5
parent 8b37e5c14f
1 changed files with 1 additions and 1 deletions
--- a/crypto/ec/ecp_nistp224.c
+++ b/crypto/ec/ecp_nistp224.c
@ -316,7 +316,7 @@ static void bin28_to_felem(felem out, const u8 in[28])
    out[0] = *((const uint64_t *)(in)) & 0x00ffffffffffffff;
    out[1] = (*((const uint64_t *)(in + 7))) & 0x00ffffffffffffff;
    out[2] = (*((const uint64_t *)(in + 14))) & 0x00ffffffffffffff;
-    out[3] = (*((const uint64_t *)(in + 21))) & 0x00ffffffffffffff;
+    out[3] = (*((const uint64_t *)(in+20))) >> 8;
 }

 static void felem_to_bin28(u8 out[28], const felem in)