From 3fa5293aec01ac54a6b9d2b804ddffbd1c4f3615 Mon Sep 17 00:00:00 2001
From: Aris Adamantiadis <aris@0xbadc0de.be>
Date: Sat, 24 Sep 2011 00:25:44 +0200
Subject: pki: DO actually verify signatures

Would have been an embarrassing bug...
---
 src/pki_crypto.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/pki_crypto.c b/src/pki_crypto.c
index fa476ca..130b5e5 100644
--- a/src/pki_crypto.c
+++ b/src/pki_crypto.c
@@ -763,7 +763,7 @@ int pki_signature_verify(ssh_session session,
                                hlen,
                                sig->dsa_sig,
                                key->dsa);
-            if (rc < 0) {
+            if (rc <= 0) {
                 ssh_set_error(session,
                               SSH_FATAL,
                               "DSA error: %s",
@@ -779,7 +779,7 @@ int pki_signature_verify(ssh_session session,
                             ssh_string_data(sig->rsa_sig),
                             ssh_string_len(sig->rsa_sig),
                             key->rsa);
-            if (rc < 0) {
+            if (rc <= 0) {
                 ssh_set_error(session,
                               SSH_FATAL,
                               "RSA error: %s",
-- 
cgit