Merged in changes from OpenSSL 0.9.8d

svn path=/openssl/trunk/CHANGES; revision=377
author: Rob Austein <sra@hactrn.net> 2006-10-09 16:47:10 +0000
committer: Rob Austein <sra@hactrn.net> 2006-10-09 16:47:10 +0000
commit: 4043d7db4e466d15193c3bad3b204048fc13b785 (patch)
tree: 8156ce31a6e4a155fc240551f48c23b5a42a6e5e /openssl/trunk/crypto/rsa/rsa_sign.c
parent: aba277548b76071e75fc9478002a6fc2145f64f1 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/openssl/trunk/crypto/rsa/rsa_sign.c b/openssl/trunk/crypto/rsa/rsa_sign.c
index 230ec6d7..71aabeea 100644
--- a/openssl/trunk/crypto/rsa/rsa_sign.c
+++ b/openssl/trunk/crypto/rsa/rsa_sign.c
@@ -185,6 +185,23 @@ int RSA_verify(int dtype, const unsigned char *m, unsigned int m_len,
 		sig=d2i_X509_SIG(NULL,&p,(long)i);
 
 		if (sig == NULL) goto err;
+
+		/* Excess data can be used to create forgeries */
+		if(p != s+i)
+			{
+			RSAerr(RSA_F_RSA_VERIFY,RSA_R_BAD_SIGNATURE);
+			goto err;
+			}
+
+		/* Parameters to the signature algorithm can also be used to
+		   create forgeries */
+		if(sig->algor->parameter
+		   && ASN1_TYPE_get(sig->algor->parameter) != V_ASN1_NULL)
+			{
+			RSAerr(RSA_F_RSA_VERIFY,RSA_R_BAD_SIGNATURE);
+			goto err;
+			}
+
 		sigtype=OBJ_obj2nid(sig->algor->algorithm);
author	Rob Austein <sra@hactrn.net>	2006-10-09 16:47:10 +0000
committer	Rob Austein <sra@hactrn.net>	2006-10-09 16:47:10 +0000
commit	4043d7db4e466d15193c3bad3b204048fc13b785 (patch)
tree	8156ce31a6e4a155fc240551f48c23b5a42a6e5e /openssl/trunk/crypto/rsa/rsa_sign.c
parent	aba277548b76071e75fc9478002a6fc2145f64f1 (diff)