[openssl-dev] [openssl.org #3661] BUG: errstr cannot decode a failed signature verification when using EVP_DigestVerifyFinal

noloader@gmail.com via RT rt at openssl.org
Thu Jan 15 17:42:45 UTC 2015


When using EVP_DigestSign and EVP_DigestVerify functions, errstr
cannot decode a failed verification error under RSA.

To duplicate, create a signature with EVP_DigestSign. Tamper with the
signature: sig[0] ^= 0x1. Then run it through EVP_DigestVerify.

In the case of OpenSSL 1.0.1:

$ ./t-rsa.exe
Testing RSA functions with EVP_DigestSign and EVP_DigestVerify
Signature: 9023EF59A4ED046E...
Tampering with signature...
EVP_DigestVerifyFinal failed, return code 0, error 0x407006ad

$ openssl errstr 0x407006ad
error:407006AD:lib(64):func(1792):reason(1709)
$ /usr/local/ssl/darwin/bin/openssl errstr 0x407006ad
error:407006AD:lib(64):func(1792):reason(1709)




More information about the openssl-dev mailing list