aboutsummaryrefslogtreecommitdiffstats
path: root/lib/ssl
diff options
context:
space:
mode:
authorIngela Anderton Andin <[email protected]>2015-04-17 12:31:02 +0200
committerIngela Anderton Andin <[email protected]>2015-04-20 08:43:15 +0200
commitc783dce20bbb14e5b5c4797e35ea5090737bb146 (patch)
tree703e6561760e8bc7c5c1d9dc7621e6a3a9f2900e /lib/ssl
parent3bf1096068c3a123a23e6a1499152976a2da131e (diff)
downloadotp-c783dce20bbb14e5b5c4797e35ea5090737bb146.tar.gz
otp-c783dce20bbb14e5b5c4797e35ea5090737bb146.tar.bz2
otp-c783dce20bbb14e5b5c4797e35ea5090737bb146.zip
public_key: Reject bad signatures as early as possible
Erlang bitstring type only uses as many bits as required, and does not use padding to create complete bytes as ASN1 compact_bitstring did. crypto:verify/5 will now fail, for some incorrect signatures as it expects complete bytes which an incorrect signature may not have. Instead of catching the failing crypto function and then returning false we check the input and reject it right away.
Diffstat (limited to 'lib/ssl')
0 files changed, 0 insertions, 0 deletions