Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_security / 042847e6c2f8d5fafc25a58f56df24ca677c0865
commit042847e6c2f8d5fafc25a58f56df24ca677c0865[log] [tgz]
authorSeth Moore <sethmo@google.com>Thu Sep 30 13:05:48 2021 -0700
committerSeth Moore <sethmo@google.com>Thu Sep 30 13:06:48 2021 -0700
tree90cbdb44137195554fc872c5834216f0b7a46d06
parent5cc2211ec77c88c08c0d445888e8176fbacbcdc8 [diff]
Inform Java BigInteger that the input bytes are positive

The COSE spec requires exact sizes for signatures, so any leading zeros
(which indicate a positive integer) are removed. This causes BigInteger
to assume the input is negative if the leading byte is 0xff, and it strips
that byte off. This breaks conversion from COSE -> DER signatures.

Explicitly tell BigInteger the input is always positive (per the COSE
spec) so that it leaves leading 0xff alone.

Test: identity-credential-util-tests
Fixes: 201574298
Change-Id: Ib2e587964125ea15fedd8a6e3ddb2bc422c211e3
1 file changed
tree: 90cbdb44137195554fc872c5834216f0b7a46d06
  1. fsverity_init/
  2. identity/
  3. keystore/
  4. keystore-engine/
  5. keystore2/
  6. ondevice-signing/
  7. provisioner/
  8. rustfmt.toml ⇨ ../../build/soong/scripts/rustfmt.toml
  9. .clang-format
  10. .gitignore
  11. Android.bp
  12. METADATA
  13. MODULE_LICENSE_APACHE2
  14. NOTICE
  15. OWNERS
  16. PREUPLOAD.cfg