- djm@cvs.openbsd.org 2013/07/20 22:20:42

[krl.c] fix verification error in (as-yet usused) KRL signature checking path
author: Damien Miller <djm@mindrot.org> 2013-07-25 11:52:48 +1000
committer: Damien Miller <djm@mindrot.org> 2013-07-25 11:52:48 +1000
commit: c8669a8cd24952b3f16a44eac63d2b6ce8a6343a (patch)
tree: a1e55e3b089be0c8796b343bc5c0f3948d69b7b7
parent: 63ddc899d28cf60045b560891894b9fbf6f822e9 (diff)
2 files changed, 8 insertions, 2 deletions
diff --git a/ChangeLog b/ChangeLog
index dc2f73bd..f6dcc0c0 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,9 @@
+20130725
+ - (djm) OpenBSD CVS Sync
+   - djm@cvs.openbsd.org 2013/07/20 22:20:42
+     [krl.c]
+     fix verification error in (as-yet usused) KRL signature checking path
+
 20130720
  - (djm) OpenBSD CVS Sync
    - markus@cvs.openbsd.org 2013/07/19 07:37:48
diff --git a/krl.c b/krl.c
index bd6d3780..b2d0354f 100644
--- a/krl.c
+++ b/krl.c
@@ -14,7 +14,7 @@
  * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
  */
 
-/* $OpenBSD: krl.c,v 1.12 2013/06/20 19:15:06 markus Exp $ */
+/* $OpenBSD: krl.c,v 1.13 2013/07/20 22:20:42 djm Exp $ */
 
 #include "includes.h"
 
@@ -973,7 +973,7 @@ ssh_krl_from_blob(Buffer *buf, struct ssh_krl **krlp,
 		}
 		/* Check signature over entire KRL up to this point */
 		if (key_verify(key, blob, blen,
-		    buffer_ptr(buf), buffer_len(buf) - sig_off) == -1) {
+		    buffer_ptr(buf), buffer_len(buf) - sig_off) != 1) {
 			error("bad signaure on KRL");
 			goto out;
 		}
author	Damien Miller <djm@mindrot.org>	2013-07-25 11:52:48 +1000
committer	Damien Miller <djm@mindrot.org>	2013-07-25 11:52:48 +1000
commit	c8669a8cd24952b3f16a44eac63d2b6ce8a6343a (patch)
tree	a1e55e3b089be0c8796b343bc5c0f3948d69b7b7
parent	63ddc899d28cf60045b560891894b9fbf6f822e9 (diff)