You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by bl...@apache.org on 2005/01/15 12:21:30 UTC
cvs commit: xml-security/c/src/enc/OpenSSL OpenSSLCryptoKeyRSA.cpp
blautenb 2005/01/15 03:21:30
Modified: c/src/enc/OpenSSL OpenSSLCryptoKeyRSA.cpp
Log:
Don't throw an exception when an RSA decrypt fails during sig validation - this is a failed validate, not an error
Revision Changes Path
1.15 +5 -3 xml-security/c/src/enc/OpenSSL/OpenSSLCryptoKeyRSA.cpp
Index: OpenSSLCryptoKeyRSA.cpp
===================================================================
RCS file: /home/cvs/xml-security/c/src/enc/OpenSSL/OpenSSLCryptoKeyRSA.cpp,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -r1.14 -r1.15
--- OpenSSLCryptoKeyRSA.cpp 2 Oct 2004 23:14:23 -0000 1.14
+++ OpenSSLCryptoKeyRSA.cpp 15 Jan 2005 11:21:30 -0000 1.15
@@ -249,8 +249,10 @@
if (decryptSize < 0) {
- throw XSECCryptoException(XSECCryptoException::RSAError,
- "OpenSSL:RSA::verify() - Error decrypting signature");
+/* throw XSECCryptoException(XSECCryptoException::RSAError,
+ "OpenSSL:RSA::verify() - Error decrypting signature"); */
+ // Really - this is a failed signature check, not an exception!
+ return false;
}
if (decryptSize != (int) (sha1OIDLen + hashLen)) {