diff options
author | Ingela Anderton Andin <[email protected]> | 2015-04-17 12:31:02 +0200 |
---|---|---|
committer | Ingela Anderton Andin <[email protected]> | 2015-04-20 08:43:15 +0200 |
commit | c783dce20bbb14e5b5c4797e35ea5090737bb146 (patch) | |
tree | 703e6561760e8bc7c5c1d9dc7621e6a3a9f2900e /lib/ssl | |
parent | 3bf1096068c3a123a23e6a1499152976a2da131e (diff) | |
download | otp-c783dce20bbb14e5b5c4797e35ea5090737bb146.tar.gz otp-c783dce20bbb14e5b5c4797e35ea5090737bb146.tar.bz2 otp-c783dce20bbb14e5b5c4797e35ea5090737bb146.zip |
public_key: Reject bad signatures as early as possible
Erlang bitstring type only uses as many bits as required, and
does not use padding to create complete bytes as ASN1 compact_bitstring
did. crypto:verify/5 will now fail, for some incorrect signatures
as it expects complete bytes which an incorrect signature may not have.
Instead of catching the failing crypto function and then returning
false we check the input and reject it right away.
Diffstat (limited to 'lib/ssl')
0 files changed, 0 insertions, 0 deletions