Commit 5361af81 authored by Kurt Roeckx's avatar Kurt Roeckx
Browse files

Revert "Don't check RSA_FLAG_SIGN_VER." 



This reverts commit 6656ba71.

This broke existing engines that didn't properly implement the sign and verify
functions.

Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>

MR: #2077
parent 578b956f

crypto/rsa/rsa_sign.c

+2 −2
Original line number Diff line number Diff line
@@ -84,7 +84,7 @@ int RSA_sign(int type, const unsigned char *m, unsigned int m_len, 
        return 0;

    }

#endif

    if (rsa->meth->rsa_sign) {

    if ((rsa->flags & RSA_FLAG_SIGN_VER) && rsa->meth->rsa_sign) {

        return rsa->meth->rsa_sign(type, m, m_len, sigret, siglen, rsa);

    }

    /* Special case: SSL signature, just check the length */
@@ -293,7 +293,7 @@ int RSA_verify(int dtype, const unsigned char *m, unsigned int m_len, 
               const unsigned char *sigbuf, unsigned int siglen, RSA *rsa)

{



    if (rsa->meth->rsa_verify) {

    if ((rsa->flags & RSA_FLAG_SIGN_VER) && rsa->meth->rsa_verify) {

        return rsa->meth->rsa_verify(dtype, m, m_len, sigbuf, siglen, rsa);

    }