sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-15 00:00:16 -04:00
Code Issues Projects Releases Wiki Activity

pkcs11: Skip zero-padding of r and s when preparing EC signature

Browse Source 
They are zero padded to fill the buffer.

Fixes #1377.
This commit is contained in:
Tobias Brunner 2016-04-04 15:35:43 +02:00
parent b82b5f6398
commit 7316a13bd1
1 changed files with 9 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
src/libstrongswan/plugins/pkcs11/pkcs11_private_key.c
View File

@ -295,13 +295,19 @@ METHOD(private_key_t, sign, bool,
case SIGN_ECDSA_WITH_SHA256_DER:
case SIGN_ECDSA_WITH_SHA384_DER:
case SIGN_ECDSA_WITH_SHA512_DER:
/* return an ASN.1 encoded sequence of integers r and s */
{
chunk_t r, s;
/* return an ASN.1 encoded sequence of integers r and s, removing
* any zero-padding */
len /= 2;
r = chunk_skip_zero(chunk_create(buf, len));
s = chunk_skip_zero(chunk_create(buf+len, len));
*signature = asn1_wrap(ASN1_SEQUENCE, "mm",
asn1_integer("c", chunk_create(buf, len)),
asn1_integer("c", chunk_create(buf+len, len)));
asn1_integer("c", r), asn1_integer("c", s));
free(buf);
break;
}
default:
*signature = chunk_create(buf, len);
break;