Size res in BN_div correctly We allocated two more words than were needed. Sizing it more than the width is suspicious and with the confusing pointer indirection removed, it becomes clear that, throughout the entire function, we only ever write to indices 0 through loop-2. That is, it should be sized for loop-1. Bug: 358687140 Change-Id: I9e33ce7d2c4e5b6fae9ec59bdee34b2d3480addc Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/70177 Commit-Queue: David Benjamin <davidben@google.com> Reviewed-by: Bob Beck <bbe@google.com>

commit: 08a232f5766a5bd575eab5939578f6aaf5c414d3 [log] [tgz]
author: David Benjamin <davidben@google.com> Mon Aug 12 17:46:08 2024 -0400
committer: Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com> Wed Aug 14 20:11:59 2024 +0000
tree: c8b5364f38676fb658695e1588279b453844f014
parent: 9eb843a3d084a73db46965e69c60a0073dd25f5f [diff]
diff --git a/crypto/fipsmodule/bn/div.c b/crypto/fipsmodule/bn/div.c
index d05b747..a4c0ded 100644
--- a/crypto/fipsmodule/bn/div.c
+++ b/crypto/fipsmodule/bn/div.c

@@ -267,7 +267,7 @@
   // for later.
   const int numerator_neg = numerator->neg;
   res->neg = (numerator_neg ^ divisor->neg);
-  if (!bn_wexpand(res, loop + 1)) {
+  if (!bn_wexpand(res, loop - 1)) {
     goto err;
   }
   res->width = loop - 1;
commit	08a232f5766a5bd575eab5939578f6aaf5c414d3	[log] [tgz]
author	David Benjamin <davidben@google.com>	Mon Aug 12 17:46:08 2024 -0400
committer	Boringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>	Wed Aug 14 20:11:59 2024 +0000
tree	c8b5364f38676fb658695e1588279b453844f014
parent	9eb843a3d084a73db46965e69c60a0073dd25f5f [diff]