jwe: strip padding after rsa-aes

2025-03-09 00:00:04 +01:00 · 2019-01-22 06:26:08 +08:00 · 2019-01-22 06:26:08 +08:00 · 8587e164f0
commit 8587e164f0
parent 043700a4b0
3 changed files with 15 additions and 1 deletions
--- a/lib/jose/jwe/enc/aescbc.c
+++ b/lib/jose/jwe/enc/aescbc.c
@ -154,7 +154,7 @@ lws_jwe_encrypt_cbc_hs(struct lws_jwe *jwe, uint8_t *cek,

 int
 lws_jwe_auth_and_decrypt_cbc_hs(struct lws_jwe *jwe, uint8_t *enc_cek,
-					uint8_t *aad, int aad_len)
+				uint8_t *aad, int aad_len)
 {
 	int n, hlen = lws_genhmac_size(jwe->jose.enc_alg->hmac_type);
 	uint8_t digest[LWS_GENHASH_LARGEST];
--- a/lib/jose/jwe/jwe-rsa-aescbc.c
+++ b/lib/jose/jwe/jwe-rsa-aescbc.c
@ -178,5 +178,12 @@ lws_jwe_auth_and_decrypt_rsa_aes_cbc_hs(struct lws_jwe *jwe)
 		return -1;
 	}

+	/* strip padding */
+
+	n = jwe->jws.map.buf[LJWE_CTXT][jwe->jws.map.len[LJWE_CTXT] - 1];
+	if (n > 16)
+		return -1;
+	jwe->jws.map.len[LJWE_CTXT] -= n;
+
 	return jwe->jws.map.len[LJWE_CTXT];
 }
--- a/lib/jose/jwe/jwe-rsa-aesgcm.c
+++ b/lib/jose/jwe/jwe-rsa-aesgcm.c
@ -170,5 +170,12 @@ lws_jwe_auth_and_decrypt_rsa_aes_gcm(struct lws_jwe *jwe)
 		return -1;
 	}

+	/* strip padding */
+
+	n = jwe->jws.map.buf[LJWE_CTXT][jwe->jws.map.len[LJWE_CTXT] - 1];
+	if (n > 16)
+		return -1;
+	jwe->jws.map.len[LJWE_CTXT] -= n;
+
 	return jwe->jws.map.len[LJWE_CTXT];
 }