projects
/
openssl.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
a801bf2
)
Revert "Don't check RSA_FLAG_SIGN_VER."
author
Kurt Roeckx
<kurt@roeckx.be>
Sat, 27 Feb 2016 12:38:01 +0000
(13:38 +0100)
committer
Kurt Roeckx
<kurt@roeckx.be>
Sat, 27 Feb 2016 12:38:01 +0000
(13:38 +0100)
This reverts commit
23a58779f53a9060c823d00d76b3070cad61d9a3
.
This broke existing engines that didn't properly implement the sign and verify
functions.
Reviewed-by: Richard Levitte <levitte@openssl.org>
MR: #2077
crypto/rsa/rsa_sign.c
patch
|
blob
|
history
diff --git
a/crypto/rsa/rsa_sign.c
b/crypto/rsa/rsa_sign.c
index cf4c026c4f637d33f9ead40e837e9afa7c4570b3..41c827f45313787a0b374e8ab1ef23ab09f7dbc2 100644
(file)
--- a/
crypto/rsa/rsa_sign.c
+++ b/
crypto/rsa/rsa_sign.c
@@
-84,7
+84,7
@@
int RSA_sign(int type, const unsigned char *m, unsigned int m_len,
return 0;
}
#endif
- if (rsa->meth->rsa_sign) {
+ if (
(rsa->flags & RSA_FLAG_SIGN_VER) &&
rsa->meth->rsa_sign) {
return rsa->meth->rsa_sign(type, m, m_len, sigret, siglen, rsa);
}
/* Special case: SSL signature, just check the length */
@@
-304,7
+304,7
@@
int RSA_verify(int dtype, const unsigned char *m, unsigned int m_len,
const unsigned char *sigbuf, unsigned int siglen, RSA *rsa)
{
- if (rsa->meth->rsa_verify) {
+ if (
(rsa->flags & RSA_FLAG_SIGN_VER) &&
rsa->meth->rsa_verify) {
return rsa->meth->rsa_verify(dtype, m, m_len, sigbuf, siglen, rsa);
}
projects / openssl.git / commitdiff