From: Niels Möller Date: Fri, 17 May 2013 11:47:43 +0000 (+0200) Subject: Fix rotation macros to portably support zero rotation count. X-Git-Tag: nettle_3.0_release_20140607~231 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=982961a54280f9ff791bccc50f5b6a3e169de402;p=thirdparty%2Fnettle.git Fix rotation macros to portably support zero rotation count. --- diff --git a/ChangeLog b/ChangeLog index 06ae8ff5..958a85e3 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,5 +1,9 @@ 2013-05-17 Niels Möller + * macros.h (ROTL32, ROTL64): Avoid undefined behaviour for zero + rotation count. Unfortunately makes CAST128 a bit slower with + gcc-4.6.3. + * ecc-j-to-a.c (ecc_j_to_a): Fixed ecc_modp_mul call, to avoid invalid overlap of arguments to mpn_mul_n. Problem tracked down by Magnus Holmgren. diff --git a/macros.h b/macros.h index 38b9e219..5dbe29d3 100644 --- a/macros.h +++ b/macros.h @@ -141,9 +141,11 @@ do { \ (dst) += (blocksize), \ (src) += (blocksize)) ) -#define ROTL32(n,x) (((x)<<(n)) | ((x)>>(32-(n)))) - -#define ROTL64(n,x) (((x)<<(n)) | ((x)>>(64-(n)))) +/* The masking of the right shift is needed to allow n == 0 (using + just 32 - n and 64 - n results in undefined behaviour). */ +#define ROTL32(n,x) (((x)<<(n)) | ((x)>>((-(n)&31)))) + +#define ROTL64(n,x) (((x)<<(n)) | ((x)>>((-(n))&63))) /* Requires that size > 0 */ #define INCREMENT(size, ctr) \