Skip to content

Commit

Permalink
Merge pull request #558 from nextcloud/backport/556/stable28
Browse files Browse the repository at this point in the history 
[stable28] fix: Correctly check result of function
  • Loading branch information
@nickvergessen
nickvergessen authored May 16, 2024
2 parents e6c47d8 + 7b9fd9a commit 1cd7c63
Show file tree
Hide file tree
Showing 3 changed files with 4 additions and 4 deletions.
4 changes: 2 additions & 2 deletions index.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -708,12 +708,12 @@ public function verifyIntegrity(): void {
-----END CERTIFICATE-----
EOF;

$validSignature = (bool)openssl_verify(
$validSignature = openssl_verify(
file_get_contents($this->getDownloadedFilePath()),
base64_decode($response['signature']),
$certificate,
OPENSSL_ALGO_SHA512
);
) === 1;

if ($validSignature === false) {
throw new \Exception('Signature of update is not valid');
Expand Down
4 changes: 2 additions & 2 deletions lib/Updater.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -670,12 +670,12 @@ public function verifyIntegrity(): void {
-----END CERTIFICATE-----
EOF;

$validSignature = (bool)openssl_verify(
$validSignature = openssl_verify(
file_get_contents($this->getDownloadedFilePath()),
base64_decode($response['signature']),
$certificate,
OPENSSL_ALGO_SHA512
);
) === 1;

if ($validSignature === false) {
throw new \Exception('Signature of update is not valid');
Expand Down
Binary file modified updater.phar
View file
Binary file not shown.

0 comments on commit 1cd7c63

Please sign in to comment.