[CXF-8402] JwkUtils::fromECPublicKey returns key coordinates without leading zero - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.4.3
Component/s: None
Labels:
None

Estimated Complexity:
Unknown

Description

Hi!

JwkUtils::fromECPublicKey returns key coordinates without leading zeroes because it's using BigInteger.toByteArray(), which returns only necessary bytes to encode a big integer value, here: https://github.com/apache/cxf/blob/master/rt/rs/security/jose-parent/jose/src/main/java/org/apache/cxf/rs/security/jose/jwk/JwkUtils.java#L378

This causes issues in different libraries, almost everywhere leading zeroes are expected to be present so that coordinate length is not changed depending on data.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

cert.pem
07/Jan/21 08:31
0.5 kB
Dimitri Witkowski
generate.sh
07/Jan/21 08:32
0.3 kB
Dimitri Witkowski
image-2021-01-07-09-35-19-811.png
07/Jan/21 08:35
54 kB
Dimitri Witkowski
Main.java
07/Jan/21 08:36
0.8 kB
Dimitri Witkowski

Issue Links

links to

GitHub Pull Request #739

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Dimitri Witkowski

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 06/Jan/21 13:22

Updated:: 22/Dec/21 20:43

Resolved:: 12/Jan/21 08:35