fix: Correctly check result of function

nickvergessen · nickvergessen · commit c76fcafc90e6 · 2024-05-15T10:35:31.000+02:00
Signed-off-by: Joas Schilling &lt;coding@schilljs.com&gt;
diff --git a/index.php b/index.php
@@ -708,12 +708,12 @@ public function verifyIntegrity(): void {
 -----END CERTIFICATE-----
 EOF;
 
-		$validSignature = (bool)openssl_verify(
+		$validSignature = openssl_verify(
 			file_get_contents($this->getDownloadedFilePath()),
 			base64_decode($response['signature']),
 			$certificate,
 			OPENSSL_ALGO_SHA512
-		);
+		) === 1;
 
 		if ($validSignature === false) {
 			throw new \Exception('Signature of update is not valid');
diff --git a/lib/Updater.php b/lib/Updater.php
@@ -670,12 +670,12 @@ public function verifyIntegrity(): void {
 -----END CERTIFICATE-----
 EOF;
 
-		$validSignature = (bool)openssl_verify(
+		$validSignature = openssl_verify(
 			file_get_contents($this->getDownloadedFilePath()),
 			base64_decode($response['signature']),
 			$certificate,
 			OPENSSL_ALGO_SHA512
-		);
+		) === 1;
 
 		if ($validSignature === false) {
 			throw new \Exception('Signature of update is not valid');
diff --git a/updater.phar b/updater.phar
