diff options
author | Maxence Lange <maxence@artificial-owl.com> | 2019-01-04 10:14:30 -0100 |
---|---|---|
committer | Maxence Lange <maxence@artificial-owl.com> | 2019-01-04 10:14:30 -0100 |
commit | 89cd8fa88c6fbafa75e69535911f713e9c56c946 (patch) | |
tree | bb13fee9b251159545f64517cd7f7b2ccc803066 | |
parent | 23ea6b663d9bed8b82af85839f8d62c9c740ff72 (diff) |
only valid base64
Signed-off-by: Maxence Lange <maxence@artificial-owl.com>
-rw-r--r-- | lib/Model/LinkedDataSignature.php | 9 |
1 files changed, 5 insertions, 4 deletions
diff --git a/lib/Model/LinkedDataSignature.php b/lib/Model/LinkedDataSignature.php index 0244e6ba..abf4406d 100644 --- a/lib/Model/LinkedDataSignature.php +++ b/lib/Model/LinkedDataSignature.php @@ -273,10 +273,11 @@ class LinkedDataSignature implements JsonSerializable { $algo = OPENSSL_ALGO_SHA256; } - if (openssl_verify( - $hashHeader . $hashObject, base64_decode($this->getSignatureValue()), - $this->getPublicKey(), $algo - ) === 1) { + $signed = base64_decode($this->getSignatureValue()); + if ($signed !== false + && openssl_verify( + $hashHeader . $hashObject, $signed, $this->getPublicKey(), $algo + ) === 1) { return true; } |