RSA: Fix signature verification for shorter signatures
authorDavid Howells <dhowells@redhat.com>
Fri, 21 Sep 2012 22:28:05 +0000 (23:28 +0100)
committerRusty Russell <rusty@rustcorp.com.au>
Mon, 8 Oct 2012 03:20:17 +0000 (13:20 +1030)
commit0b1568a4536ff287a87908d7fc35c05bd7736a53
tree2e2eab236c2fa23d568e0ee7179fbfdc5cf2b3ba
parent612e0fe99965a4028359cd1da5af56b7f6caf7f6
RSA: Fix signature verification for shorter signatures

gpg can produce a signature file where length of signature is less than the
modulus size because the amount of space an MPI takes up is kept as low as
possible by discarding leading zeros.  This regularly happens for several
modules during the build.

Fix it by relaxing check in RSA verification code.

Thanks to Tomas Mraz and Miloslav Trmac for help.

Signed-off-by: Milan Broz <mbroz@redhat.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
crypto/asymmetric_keys/rsa.c