From: Adam Eijdenberg Date: Mon, 19 Oct 2015 18:16:25 +0000 (-0700) Subject: Clarify return values for EVP_DigestVerifyFinal. X-Git-Tag: OpenSSL_1_0_1q~36 X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=2d404dc38031122147043af31a1f1de364903be2;p=oweals%2Fopenssl.git Clarify return values for EVP_DigestVerifyFinal. Previous language was unclear. New language isn't pretty but I believe it is more accurate. Signed-off-by: Rich Salz Reviewed-by: Ben Laurie Reviewed-by: Richard Levitte (cherry picked from commit 8cbb048c3ea416f2bd8a3706d027f3aa26ef08d9) --- diff --git a/doc/crypto/EVP_DigestVerifyInit.pod b/doc/crypto/EVP_DigestVerifyInit.pod index cfeccd96ef..54cad92e6f 100644 --- a/doc/crypto/EVP_DigestVerifyInit.pod +++ b/doc/crypto/EVP_DigestVerifyInit.pod @@ -37,10 +37,11 @@ EVP_DigestVerifyInit() and EVP_DigestVerifyUpdate() return 1 for success and 0 or a negative value for failure. In particular a return value of -2 indicates the operation is not supported by the public key algorithm. -Unlike other functions the return value 0 from EVP_DigestVerifyFinal() only -indicates that the signature did not verify successfully (that is tbs did -not match the original data or the signature was of invalid form) it is not an -indication of a more serious error. +EVP_DigestVerifyFinal() returns 1 for success; any other value indicates +failure. A return value of zero indicates that the signature did not verify +successfully (that is, tbs did not match the original data or the signature had +an invalid form), while other values indicate a more serious error (and +sometimes also indicate an invalid signature form). The error codes can be obtained from L.