From e301a69d6c8bfd7329220de7d31c067bd4f95bc3 Mon Sep 17 00:00:00 2001
From: Martin Willi <martin@strongswan.org>
Date: Fri, 31 Oct 2008 17:07:04 +0000
Subject: removed 0-byte truncation, fixes random Openssl RSA signature
 verification failures

---
 src/libstrongswan/plugins/openssl/openssl_rsa_public_key.c | 7 -------
 1 file changed, 7 deletions(-)

(limited to 'src/libstrongswan/plugins/openssl/openssl_rsa_public_key.c')

diff --git a/src/libstrongswan/plugins/openssl/openssl_rsa_public_key.c b/src/libstrongswan/plugins/openssl/openssl_rsa_public_key.c
index 756a033bd..107404fa2 100644
--- a/src/libstrongswan/plugins/openssl/openssl_rsa_public_key.c
+++ b/src/libstrongswan/plugins/openssl/openssl_rsa_public_key.c
@@ -90,13 +90,6 @@ static bool verify_emsa_pkcs1_signature(private_openssl_rsa_public_key_t *this,
 		goto error;
 	}
 	
-	/* remove any preceding 0-bytes from signature */
-	while (signature.len && *(signature.ptr) == 0x00)
-	{
-		signature.len -= 1;
-		signature.ptr++;
-	}
-	
 	valid = (EVP_VerifyFinal(ctx, signature.ptr, signature.len, key) == 1);
 	
 error:
-- 
cgit v1.2.3