mirror of
https://github.com/isc-projects/bind9.git
synced 2026-02-11 14:53:11 -05:00
2522. [security] Handle -1 from DSA_do_verify().
This commit is contained in:
Mark Andrews
parent
e608f77827
commit
b66053bf08
5 changed files with 12 additions and 8 deletions
4
CHANGES
4
CHANGES
|
|
@ -1,3 +1,7 @@
|
|||
--- 9.3.6-P1 released ---
|
||||
|
||||
2522. [security] Handle -1 from DSA_do_verify().
|
||||
|
||||
2498. [bug] Removed a bogus function argument used with
|
||||
ISC_SOCKET_USE_POLLWATCH: it could cause compiler
|
||||
warning or crash named with the debug 1 level
|
||||
|
|
|
|||
|
|
@ -1,3 +1,3 @@
|
|||
LIBINTERFACE = 26
|
||||
LIBREVISION = 1
|
||||
LIBREVISION = 2
|
||||
LIBAGE = 0
|
||||
|
|
|
|||
|
|
@ -16,7 +16,7 @@
|
|||
* IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
||||
*/
|
||||
|
||||
/* $Id: openssldsa_link.c,v 1.1.4.7 2007/08/28 07:19:13 tbox Exp $ */
|
||||
/* $Id: openssldsa_link.c,v 1.1.4.8 2008/12/24 00:21:45 marka Exp $ */
|
||||
|
||||
#ifdef OPENSSL
|
||||
|
||||
|
|
@ -133,7 +133,7 @@ openssldsa_verify(dst_context_t *dctx, const isc_region_t *sig) {
|
|||
|
||||
status = DSA_do_verify(digest, ISC_SHA1_DIGESTLENGTH, dsasig, dsa);
|
||||
DSA_SIG_free(dsasig);
|
||||
if (status == 0)
|
||||
if (status != 1)
|
||||
return (dst__openssl_toresult(DST_R_VERIFYFAILURE));
|
||||
|
||||
return (ISC_R_SUCCESS);
|
||||
|
|
|
|||
|
|
@ -17,7 +17,7 @@
|
|||
|
||||
/*
|
||||
* Principal Author: Brian Wellington
|
||||
* $Id: opensslrsa_link.c,v 1.1.4.9 2006/11/07 21:28:40 marka Exp $
|
||||
* $Id: opensslrsa_link.c,v 1.1.4.10 2008/12/24 00:21:45 marka Exp $
|
||||
*/
|
||||
#ifdef OPENSSL
|
||||
|
||||
|
|
@ -246,7 +246,7 @@ opensslrsa_verify(dst_context_t *dctx, const isc_region_t *sig) {
|
|||
|
||||
status = RSA_verify(type, digest, digestlen, sig->base,
|
||||
RSA_size(rsa), rsa);
|
||||
if (status == 0)
|
||||
if (status != 1)
|
||||
return (dst__openssl_toresult(DST_R_VERIFYFAILURE));
|
||||
|
||||
return (ISC_R_SUCCESS);
|
||||
|
|
|
|||
6
version
6
version
|
|
@ -1,4 +1,4 @@
|
|||
# $Id: version,v 1.26.2.17.2.34 2008/11/12 04:04:56 marka Exp $
|
||||
# $Id: version,v 1.26.2.17.2.35 2008/12/24 00:21:45 marka Exp $
|
||||
#
|
||||
# This file must follow /bin/sh rules. It is imported directly via
|
||||
# configure.
|
||||
|
|
@ -6,5 +6,5 @@
|
|||
MAJORVER=9
|
||||
MINORVER=3
|
||||
PATCHVER=6
|
||||
RELEASETYPE=
|
||||
RELEASEVER=
|
||||
RELEASETYPE=-P
|
||||
RELEASEVER=1
|
||||
|
|
|
|||
Loading…
Reference in a new issue