зеркало из https://github.com/mozilla/pjs.git
Fix for 281761 - VFY_CreateContext passes wrong key object; and other cleanup. r=nelson
This commit is contained in:
julien.pierre.bugs%sun.com
Родитель
fa36dd418e
Коммит
2cb2aba3f6
|
|
@ -37,7 +37,7 @@
|
|||
* the terms of any one of the MPL, the GPL or the LGPL.
|
||||
*
|
||||
* ***** END LICENSE BLOCK ***** */
|
||||
/* $Id: secvfy.c,v 1.12 2004-04-27 23:04:35 gerv%gerv.net Exp $ */
|
||||
/* $Id: secvfy.c,v 1.13 2005-02-10 08:05:54 julien.pierre.bugs%sun.com Exp $ */
|
||||
|
||||
#include <stdio.h>
|
||||
#include "cryptohi.h"
|
||||
|
|
@ -54,11 +54,10 @@
|
|||
** XXX this is assuming that the signature algorithm has WITH_RSA_ENCRYPTION
|
||||
*/
|
||||
static SECStatus
|
||||
DecryptSigBlock(int *tagp, unsigned char *digest, SECKEYPublicKey *key,
|
||||
DecryptSigBlock(SECOidTag *tagp, unsigned char *digest, SECKEYPublicKey *key,
|
||||
SECItem *sig, char *wincx)
|
||||
{
|
||||
SGNDigestInfo *di = NULL;
|
||||
unsigned char *dsig = NULL;
|
||||
unsigned char *buf = NULL;
|
||||
SECStatus rv;
|
||||
SECOidTag tag;
|
||||
|
|
@ -71,10 +70,6 @@ DecryptSigBlock(int *tagp, unsigned char *digest, SECKEYPublicKey *key,
|
|||
it.data = buf = (unsigned char *)PORT_Alloc(it.len);
|
||||
if (!buf) goto loser;
|
||||
|
||||
/* Decrypt signature block */
|
||||
dsig = (unsigned char*) PORT_Alloc(sig->len);
|
||||
if (dsig == NULL) goto loser;
|
||||
|
||||
/* decrypt the block */
|
||||
rv = PK11_VerifyRecover(key, sig, &it, wincx);
|
||||
if (rv != SECSuccess) goto loser;
|
||||
|
|
@ -104,7 +99,6 @@ DecryptSigBlock(int *tagp, unsigned char *digest, SECKEYPublicKey *key,
|
|||
|
||||
done:
|
||||
if (di != NULL) SGN_DestroyDigestInfo(di);
|
||||
if (dsig != NULL) PORT_Free(dsig);
|
||||
if (buf != NULL) PORT_Free(buf);
|
||||
|
||||
return rv;
|
||||
|
|
@ -251,9 +245,9 @@ VFY_CreateContext(SECKEYPublicKey *key, SECItem *sig, SECOidTag algid,
|
|||
cx->type = VFY_RSA;
|
||||
cx->key = SECKEY_CopyPublicKey(key); /* extra safety precautions */
|
||||
if (sig) {
|
||||
int hashid;
|
||||
SECOidTag hashid = SEC_OID_UNKNOWN;
|
||||
rv = DecryptSigBlock(&hashid, &cx->digest[0],
|
||||
key, sig, (char*)wincx);
|
||||
cx->key, sig, (char*)wincx);
|
||||
cx->alg = hashid;
|
||||
} else {
|
||||
rv = decodeSigAlg(algid,&cx->alg);
|
||||
|
|
@ -398,7 +392,7 @@ VFY_EndWithSignature(VFYContext *cx, SECItem *sig)
|
|||
break;
|
||||
case VFY_RSA:
|
||||
if (sig) {
|
||||
int hashid;
|
||||
SECOidTag hashid = SEC_OID_UNKNOWN;
|
||||
rv = DecryptSigBlock(&hashid, &cx->digest[0],
|
||||
cx->key, sig, (char*)cx->wincx);
|
||||
if ((rv != SECSuccess) || (hashid != cx->alg)) {
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче