If you're going to check for negative, use an signed integer! Coverity ID 122.
authorBen Laurie <ben@openssl.org>
Thu, 5 Apr 2007 17:31:29 +0000 (17:31 +0000)
committerBen Laurie <ben@openssl.org>
Thu, 5 Apr 2007 17:31:29 +0000 (17:31 +0000)
crypto/pkcs7/pk7_doit.c

index 7eb053a..451de84 100644 (file)
@@ -1024,7 +1024,8 @@ int PKCS7_signatureVerify(BIO *bio, PKCS7 *p7, PKCS7_SIGNER_INFO *si,
        if ((sk != NULL) && (sk_X509_ATTRIBUTE_num(sk) != 0))
                {
                unsigned char md_dat[EVP_MAX_MD_SIZE], *abuf = NULL;
-                unsigned int md_len, alen;
+                unsigned int md_len;
+               int alen;
                ASN1_OCTET_STRING *message_digest;
 
                EVP_DigestFinal_ex(&mdc_tmp,md_dat,&md_len);