Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / b57beb2a5f6d9f36c0f278218445c5e93e45c9f5
commitb57beb2a5f6d9f36c0f278218445c5e93e45c9f5[log] [tgz]
authorDmitry Kasatkin <dmitry.kasatkin@intel.com>Wed Sep 12 13:26:55 2012 +0300
committerchrmhoffmann <chrmhoffmann@gmail.com>Sun Apr 05 10:16:09 2020 +0200
tree823dfb417ec3ec74a07a05b7254db1be105766b3
parente647f7b82dd12cbcb99f69cf3c332830cdd33142 [diff]
digsig: add hash size comparision on signature verification

commit bc01637a80f5b670bd70a0279d3f93fa8de1c96d upstream.

When pkcs_1_v1_5_decode_emsa() returns without error and hash sizes do
not match, hash comparision is not done and digsig_verify_rsa() returns
no error.  This is a bug and this patch fixes it.

The bug was introduced in v3.3 by commit b35e286a640f ("lib/digsig:
pkcs_1_v1_5_decode_emsa cleanup").

Signed-off-by: Dmitry Kasatkin <dmitry.kasatkin@intel.com>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
1 file changed
tree: 823dfb417ec3ec74a07a05b7254db1be105766b3
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. AndroidKernel.mk
  25. COPYING
  26. CREDITS
  27. Kbuild
  28. Kconfig
  29. MAINTAINERS
  30. Makefile
  31. README
  32. REPORTING-BUGS