RFR: 8285404: RSA signature verification should follow RFC 8017 8.2.2 Step 4

Weijun Wang weijun at openjdk.java.net
Fri Apr 22 19:08:23 UTC 2022

On Fri, 22 Apr 2022 18:09:33 GMT, Michael StJohns <mstjohns at comcast.net> wrote:

> This is a weird one.? AFAICT the way it was being done is valid and
> allowed by RFC8017 - I would have closed the bug report as notabug

Yes, I saw the "Note". It's definitely OK to decode but one has to make sure the input is DER encoded. Unfortunately, the old `RsaUtil::decodeSignature` method has not guaranteed it.


PR: https://git.openjdk.java.net/jdk/pull/8365

More information about the security-dev mailing list