diff options
author | Matt Caswell <matt@openssl.org> | 2019-08-29 17:15:16 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2019-08-30 09:42:17 +0100 |
commit | 5ffc33244cd4d66e47dfa66ce89cb38d0f3074cc (patch) | |
tree | 5f848692d02628fa50b71f939f4e0e9440a9f6f9 /apps | |
parent | 280cc0180862ae6664b88d5ea12cb5f599000d36 (diff) |
Fix pkeyutl -verifyrecover
When performing a pkeyutl -verifyrecover operation the input file is not
a hash - it is the signature itself. Therefore don't do the check to make
sure it looks like a hash.
Fixes #9658
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/9731)
Diffstat (limited to 'apps')
-rw-r--r-- | apps/pkeyutl.c | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/apps/pkeyutl.c b/apps/pkeyutl.c index c8cac0d676..6b012211e4 100644 --- a/apps/pkeyutl.c +++ b/apps/pkeyutl.c @@ -398,8 +398,7 @@ int pkeyutl_main(int argc, char **argv) if (!rawin && buf_inlen > EVP_MAX_MD_SIZE && (pkey_op == EVP_PKEY_OP_SIGN - || pkey_op == EVP_PKEY_OP_VERIFY - || pkey_op == EVP_PKEY_OP_VERIFYRECOVER)) { + || pkey_op == EVP_PKEY_OP_VERIFY)) { BIO_printf(bio_err, "Error: The input data looks too long to be a hash\n"); goto end; |