An error occurred while fetching folder content.
digsig: add hash size comparision on signature verification
Dmitry Kasatkin authored
When pkcs_1_v1_5_decode_emsa() returns without error and hash sizes do
not match, hash comparision is not done and digsig_verify_rsa() returns
no error.  This is a bug and this patch fixes it.

The bug was introduced in v3.3 by commit b35e286a

 ("lib/digsig:
pkcs_1_v1_5_decode_emsa cleanup").

Cc: stable@vger.kernel.org
Signed-off-by: default avatarDmitry Kasatkin <dmitry.kasatkin@intel.com>
Signed-off-by: default avatarLinus Torvalds <torvalds@linux-foundation.org>
bc01637a
Name Last commit Last update
..
lzo lib: add support for LZO-compressed kernels
mpi Remove unused code from MPI library
raid6 lib/raid6: fix sparse warnings in recovery functions
reed_solomon lib: Remove unnecessary inclusions of asm/semaphore.h
xz XZ: Fix incorrect XZ_BUF_ERROR
zlib_deflate zlib: slim down zlib_deflate() workspace when possible
zlib_inflate inflate_fast: sout is already a short so ptr arith was off by one.
.gitignore Add some basic .gitignore files
Kconfig Merge branch 'akpm' (Andrew's patch-bomb)
Kconfig.debug powerpc: pSeries reconfig notifier error injection module
Kconfig.kgdb mips,kgdb: kdb low level trap catch and stack trace
Kconfig.kmemcheck kmemcheck: depend on HAVE_ARCH_KMEMCHECK
Makefile Merge tag 'writeback-proportions' of git://git.kernel.org/pub/scm/linux/kernel/git/wfg/linux
argv_split.c lib: reduce the use of module.h wherever possible
atomic64.c lib: reduce the use of module.h wherever possible
atomic64_test.c atomic64_test: simplify the #ifdef for atomic64_dec_if_positive() test
audit.c audit: support the "standard" <asm-generic/unistd.h>
average.c lib: reduce the use of module.h wherever possible
bcd.c lib: reduce the use of module.h wherever possible
bch.c lib: add shared BCH ECC library
bitmap.c lib/bitmap.c: fix documentation for scnprintf() functions
bitrev.c lib: export bitrev16
bsearch.c lib: reduce the use of module.h wherever possible
btree.c btree: catch NULL value before it does harm
bug.c bugs, x86: Fix printk levels for panic, softlockups and stack dumps
bust_spinlocks.c
check_signature.c
checksum.c
clz_tab.c
cmdline.c
cordic.c
cpu-notifier-error-inject.c
cpu_rmap.c
cpumask.c
crc-ccitt.c
crc-itu-t.c
crc-t10dif.c
crc16.c
crc32.c
crc32defs.h
crc7.c
crc8.c
ctype.c
debug_locks.c
debugobjects.c
dec_and_lock.c
decompress.c
decompress_bunzip2.c
decompress_inflate.c
decompress_unlzma.c
decompress_unlzo.c
decompress_unxz.c
devres.c
digsig.c
div64.c
dma-debug.c
dump_stack.c
dynamic_debug.c
dynamic_queue_limits.c
extable.c
fault-inject.c
fdt.c
fdt_ro.c
fdt_rw.c
fdt_strerror.c
fdt_sw.c
fdt_wip.c
find_last_bit.c
find_next_bit.c
flex_array.c
flex_proportions.c
gcd.c
gen_crc32table.c
genalloc.c
halfmd4.c
hexdump.c
hweight.c
idr.c
inflate.c
int_sqrt.c
iomap.c
iomap_copy.c
iommu-helper.c
ioremap.c
irq_regs.c
is_single_threaded.c
jedec_ddr_data.c
kasprintf.c
klist.c
kobject.c
kobject_uevent.c
kstrtox.c
kstrtox.h
lcm.c
libcrc32c.c
list_debug.c
list_sort.c
llist.c
locking-selftest-hardirq.h
locking-selftest-mutex.h