Fix NativeCrypto.X509_verify() exceptions. (#1203)

Re-throw IllegalBlockSizeException as SignatureException
from OpenSSLX509Certificate.verify(), as per the API contract
and fix the signature in NativeCrypto.

The only other user of the native method, OpenSSLX509CRL,
already had this fix.

Author: prbprbprb

common/src/main/java/org/conscrypt/NativeCrypto.java

@@ -535,7 +535,7 @@ static native long X509_get_notAfter(long x509ctx, OpenSSLX509Certificate holder
     static native byte[] X509_get_serialNumber(long x509ctx, OpenSSLX509Certificate holder);
 
     static native void X509_verify(long x509ctx, OpenSSLX509Certificate holder, NativeRef.EVP_PKEY pkeyCtx)
-            throws BadPaddingException;
+            throws BadPaddingException, IllegalBlockSizeException;
 
     static native byte[] get_X509_tbs_cert(long x509ctx, OpenSSLX509Certificate holder);
 

common/src/main/java/org/conscrypt/OpenSSLX509Certificate.java

@@ -49,6 +49,7 @@
 import java.util.TimeZone;
 
 import javax.crypto.BadPaddingException;
+import javax.crypto.IllegalBlockSizeException;
 import javax.security.auth.x500.X500Principal;
 import org.conscrypt.OpenSSLX509CertificateFactory.ParsingException;
 
@@ -384,8 +385,8 @@ private void verifyOpenSSL(OpenSSLKey pkey) throws CertificateException, Signatu
             NativeCrypto.X509_verify(mContext, this, pkey.getNativeRef());
         } catch (RuntimeException e) {
             throw new CertificateException(e);
-        } catch (BadPaddingException e) {
-            throw new SignatureException();
+        } catch (BadPaddingException | IllegalBlockSizeException e) {
+            throw new SignatureException(e);
         }
     }