RT3192: spurious error in DSA verify

This is funny; Ben commented in the source, Matt opend a ticket, and Rich is doing the submit. Need more code-review? :) Reviewed-by: N Dr. Stephen Henson <steve@openssl.org>

RT3192: spurious error in DSA verify
This is funny; Ben commented in the source, Matt opend a ticket, and Rich is doing the submit. Need more code-review? :) Reviewed-by: N Dr. Stephen Henson <steve@openssl.org>
eb63bce0 · Matt Caswell · Rich Salz · c939cca1 · eb63bce0
隐藏空白更改
内联并排

Showing with 1 addition and 3 deletion

crypto/dsa/dsa_ossl.c crypto/dsa/dsa_ossl.c +1 -3

未找到文件。
--- a/crypto/dsa/dsa_ossl.c
+++ b/crypto/dsa/dsa_ossl.c
@@ -449,9 +449,7 @@ static int dsa_do_verify(const unsigned char *dgst, int dgst_len, DSA_SIG *sig,
 	ret=(BN_ucmp(&u1, sig->r) == 0);

 	err:
-	/* XXX: surely this is wrong - if ret is 0, it just didn't verify;
-	   there is no error in BN. Test should be ret == -1 (Ben) */
-	if (ret != 1) DSAerr(DSA_F_DSA_DO_VERIFY,ERR_R_BN_LIB);
+	if (ret < 0) DSAerr(DSA_F_DSA_DO_VERIFY,ERR_R_BN_LIB);
 	if (ctx != NULL) BN_CTX_free(ctx);
 	BN_free(&u1);
 	BN_free(&u2);