You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@santuario.apache.org by bl...@apache.org on 2005/01/15 12:21:30 UTC

cvs commit: xml-security/c/src/enc/OpenSSL OpenSSLCryptoKeyRSA.cpp

blautenb    2005/01/15 03:21:30

  Modified:    c/src/enc/OpenSSL OpenSSLCryptoKeyRSA.cpp
  Log:
  Don't throw an exception when an RSA decrypt fails during sig validation - this is a failed validate, not an error
  
  Revision  Changes    Path
  1.15      +5 -3      xml-security/c/src/enc/OpenSSL/OpenSSLCryptoKeyRSA.cpp
  
  Index: OpenSSLCryptoKeyRSA.cpp
  ===================================================================
  RCS file: /home/cvs/xml-security/c/src/enc/OpenSSL/OpenSSLCryptoKeyRSA.cpp,v
  retrieving revision 1.14
  retrieving revision 1.15
  diff -u -r1.14 -r1.15
  --- OpenSSLCryptoKeyRSA.cpp	2 Oct 2004 23:14:23 -0000	1.14
  +++ OpenSSLCryptoKeyRSA.cpp	15 Jan 2005 11:21:30 -0000	1.15
  @@ -249,8 +249,10 @@
   
   	if (decryptSize < 0) {
   
  -		throw XSECCryptoException(XSECCryptoException::RSAError,
  -			"OpenSSL:RSA::verify() - Error decrypting signature");
  +/*		throw XSECCryptoException(XSECCryptoException::RSAError,
  +			"OpenSSL:RSA::verify() - Error decrypting signature"); */
  +		// Really - this is a failed signature check, not an exception!
  +		return false;
   	}
   
   	if (decryptSize != (int) (sha1OIDLen + hashLen)) {