]> git.karo-electronics.de Git - karo-tx-linux.git/commit
digsig: add hash size comparision on signature verification
authorDmitry Kasatkin <dmitry.kasatkin@intel.com>
Wed, 12 Sep 2012 10:26:55 +0000 (13:26 +0300)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Tue, 2 Oct 2012 17:29:55 +0000 (10:29 -0700)
commitdd8121960467e40388876403758334fa91516db2
tree77174d90183bdd6a1940490ef46da3c67c5b253f
parente3c9398035cbf79a2ab75c2f43de999fc9a726f4
digsig: add hash size comparision on signature verification

commit bc01637a80f5b670bd70a0279d3f93fa8de1c96d upstream.

When pkcs_1_v1_5_decode_emsa() returns without error and hash sizes do
not match, hash comparision is not done and digsig_verify_rsa() returns
no error.  This is a bug and this patch fixes it.

The bug was introduced in v3.3 by commit b35e286a640f ("lib/digsig:
pkcs_1_v1_5_decode_emsa cleanup").

Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
lib/digsig.c