Skip to content
  1. Oct 18, 2015
  2. Oct 17, 2015
  3. Oct 16, 2015
  4. Oct 15, 2015
  5. Oct 14, 2015
  6. Oct 13, 2015
  7. Oct 12, 2015
  8. Oct 11, 2015
  9. Oct 10, 2015
  10. Oct 09, 2015
  11. Oct 08, 2015
    • Emilia Kasper's avatar
      32942870
    • Matt Caswell's avatar
      Fix no-ripemd on Windows · 28dc5d19
      Matt Caswell authored
      
      
      mkdef.pl was getting confused by:
      
       # ifdef OPENSSL_NO_RMD160
       #  error RIPEMD is disabled.
       # endif
      
      Changing RIPEMD to RMD160 solves it. Fix suggested by Steve Henson.
      
      Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
      28dc5d19
    • Matt Caswell's avatar
      Don't treat a bare OCTETSTRING as DigestInfo in int_rsa_verify · dffe5109
      Matt Caswell authored
      
      
      The function int_rsa_verify is an internal function used for verifying an
      RSA signature. It takes an argument |dtype| which indicates the digest type
      that was used. Dependant on that digest type the processing of the
      signature data will vary. In particular if |dtype == NID_mdc2| and the
      signature data is a bare OCTETSTRING then it is treated differently to the
      default case where the signature data is treated as a DigestInfo (X509_SIG).
      
      Due to a missing "else" keyword the logic actually correctly processes the
      OCTETSTRING format signature first, and then attempts to continue and
      process it as DigestInfo. This will invariably fail because we already know
      that it is a bare OCTETSTRING.
      
      This failure doesn't actualy make a real difference because it ends up at
      the |err| label regardless and still returns a "success" result. This patch
      just cleans things up to make it look a bit more sane.
      
      RT#4076
      
      Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
      dffe5109