Closed Bug 1354488 Opened 7 years ago Closed 7 years ago

RSA_CheckSign() doesn't set proper error values

Tracking

(Not tracked)

Status:

RESOLVED FIXED

Milestone:

3.31

People

(Reporter: ttaubert, Assigned: ttaubert)

Details

Tim Taubert [:ttaubert] (inactive)

Assignee

Description

•

7 years ago

RSA_CheckSign(), unlike e.g. RSA_CheckSignPSS() and emsa_pss_verify(), does not set the correct error values. It properly checks whether a signature is valid but doesn't tell you whether verification failed because we're OOM, the given signature is too short, etc.

We need to adjust the tests added by https://nss-review.dev.mozaws.net/D283 when fixing this.

Tim Taubert [:ttaubert] (inactive)

Assignee

Updated

•

7 years ago

Assignee: nobody → ttaubert

Status: NEW → ASSIGNED

Tim Taubert [:ttaubert] (inactive)

Assignee

Comment 1

•

7 years ago

https://nss-review.dev.mozaws.net/D302

Tim Taubert [:ttaubert] (inactive)

Assignee

Comment 2

•

7 years ago

https://treeherder.mozilla.org/#/jobs?repo=nss-try&revision=1fc742931062720f95e7355093ea929d82beaee9

Tim Taubert [:ttaubert] (inactive)

Assignee

Comment 3

•

7 years ago

https://hg.mozilla.org/projects/nss/rev/9cb13ed4a678

Status: ASSIGNED → RESOLVED

Closed: 7 years ago

Resolution: --- → FIXED

Target Milestone: --- → 3.31

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

RSA_CheckSign() doesn't set proper error values

Categories

(NSS :: Libraries, enhancement)

Tracking

(Not tracked)

People

(Reporter: ttaubert, Assigned: ttaubert)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Comment 2

Comment 3