added additional checks to signature verification

git-svn-id: http://svn.code.sf.net/p/retroshare/code/trunk@7353 b45a01b8-16f6-495d-af2f-9b41ad6348cc
2025-07-21 21:59:02 -04:00 · 2014-05-08 09:20:25 +00:00 · 2014-05-08 09:20:25 +00:00 · a9193c6380
commit a9193c6380
parent 3766449bec
2 changed files with 16 additions and 3 deletions
--- a/libretroshare/src/services/p3msgservice.cc
+++ b/libretroshare/src/services/p3msgservice.cc
@ -1984,10 +1984,12 @@ bool p3MsgService::decryptMessage(const std::string& mId)

 			  RsTlvSecurityKey signature_key ;

-			  if(mIdService->getKey(senders_id,signature_key) && GxsSecurity::validateSignature((char*)decrypted_data,offset,signature_key,signature))
-				  signature_ok = true ;
+			  if(!mIdService->getKey(senders_id,signature_key) || signature_key.keyData.bin_data == NULL)
+				  std::cerr << "(EE) No key for checking signature from " << senders_id << ", can't veryfy signature." << std::endl;
+			  else if(!GxsSecurity::validateSignature((char*)decrypted_data,offset,signature_key,signature))
+				  std::cerr << "(EE) Signature was verified and it doesn't check! This is a security issue!" << std::endl;
 			  else
-				  std::cerr << "(!!) No key for checking signature from " << senders_id << ", or signature doesn't check." << std::endl;
+				  signature_ok = true ;

 			  offset += signature_size ;
 		  }