Interm. BLD BREAK Pad short ECDSA signature

Volodymyr Paprotski · Volodymyr Paprotski · commit a1448eaaa195 · 2017-01-27T15:21:56.000Z
big.Int.Bytes() trims MSB zeroes, put them back in depending on
EC Field length

Change-Id: I87829c0babeafc49650f408355fa8212b49b62ff
Signed-off-by: Volodymyr Paprotski &lt;vpaprots@ca.ibm.com&gt;
diff --git a/bccsp/pkcs11/ecdsa.go b/bccsp/pkcs11/ecdsa.go
@@ -111,5 +111,5 @@ func (csp *impl) verifyECDSA(k ecdsaPublicKey, signature, digest []byte, opts bc
 		return false, fmt.Errorf("Invalid S. Must be smaller than half the order [%s][%s].", s, halfOrder)
 	}
 
-	return verifyECDSA(k.ski, digest, r, s)
+	return verifyECDSA(k.ski, digest, r, s, k.pub.Curve.Params().BitSize/8)
 }
diff --git a/bccsp/pkcs11/pkcs11.go b/bccsp/pkcs11/pkcs11.go
@@ -328,7 +328,7 @@ func signECDSA(ski []byte, msg []byte) (R, S *big.Int, err error) {
 	return R, S, nil
 }
 
-func verifyECDSA(ski []byte, msg []byte, R, S *big.Int) (valid bool, err error) {
+func verifyECDSA(ski []byte, msg []byte, R, S *big.Int, byteSize int) (valid bool, err error) {
 	p11lib := ctx
 	session := getSession()
 	defer returnSession(session)
@@ -340,7 +340,14 @@ func verifyECDSA(ski []byte, msg []byte, R, S *big.Int) (valid bool, err error)
 		return false, fmt.Errorf("Public key not found [%s]\n", err)
 	}
 
-	sig := append(R.Bytes(), S.Bytes()...)
+	r := R.Bytes()
+	s := S.Bytes()
+
+	// Pad front of R and S with Zeroes if needed
+	sig := make([]byte, 2*byteSize)
+	copy(sig[byteSize-len(r):byteSize], r)
+	copy(sig[2*byteSize-len(s):], s)
+
 	err = p11lib.VerifyInit(session, []*pkcs11.Mechanism{pkcs11.NewMechanism(pkcs11.CKM_ECDSA, nil)},
 		*publicKey)
 	if err != nil {
diff --git a/bccsp/pkcs11/pkcs11_test.go b/bccsp/pkcs11/pkcs11_test.go
@@ -63,7 +63,7 @@ func TestPKCS11ECKeySignVerify(t *testing.T) {
 		t.Fatal("Failed signing message [%s]", err)
 	}
 
-	pass, err := verifyECDSA(key, hash1, R, S)
+	pass, err := verifyECDSA(key, hash1, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatal("Error verifying message 1 [%s]", err)
 	}
@@ -76,7 +76,7 @@ func TestPKCS11ECKeySignVerify(t *testing.T) {
 		t.Fatal("Signature should match with software verification!")
 	}
 
-	pass, err = verifyECDSA(key, hash2, R, S)
+	pass, err = verifyECDSA(key, hash2, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatal("Error verifying message 2 [%s]", err)
 	}
@@ -129,7 +129,7 @@ func TestPKCS11ECKeyImportSignVerify(t *testing.T) {
 		t.Fatal("Failed signing message [%s]", err)
 	}
 
-	pass, err := verifyECDSA(ski, hash1, R, S)
+	pass, err := verifyECDSA(ski, hash1, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatalf("Error verifying message 1 [%s]\n%s\n\n%s", err, hex.Dump(R.Bytes()), hex.Dump(S.Bytes()))
 	}
@@ -142,7 +142,7 @@ func TestPKCS11ECKeyImportSignVerify(t *testing.T) {
 		t.Fatal("Signature should match with software verification!")
 	}
 
-	pass, err = verifyECDSA(ski, hash2, R, S)
+	pass, err = verifyECDSA(ski, hash2, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatal("Error verifying message 2 [%s]", err)
 	}
@@ -198,15 +198,15 @@ func TestPKCS11ECKeyExport(t *testing.T) {
 		t.Fatalf("Failed signing message [%s]", err)
 	}
 
-	pass, err := verifyECDSA(key2, hash1, R, S)
+	pass, err := verifyECDSA(key2, hash1, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatalf("Error verifying message 1 [%s]", err)
 	}
 	if pass == false {
 		t.Fatal("Signature should match! [1]")
 	}
 
-	pass, err = verifyECDSA(key, hash1, R, S)
+	pass, err = verifyECDSA(key, hash1, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatalf("Error verifying message 2 [%s]", err)
 	}
@@ -219,7 +219,7 @@ func TestPKCS11ECKeyExport(t *testing.T) {
 		t.Fatal("Signature should match with software verification!")
 	}
 
-	pass, err = verifyECDSA(key, hash2, R, S)
+	pass, err = verifyECDSA(key, hash2, R, S, currentTestConfig.securityLevel/8)
 	if err != nil {
 		t.Fatal("Error verifying message 3 [%s]", err)
 	}

Original file line number	Diff line number	Diff line change
`@@ -111,5 +111,5 @@ func (csp *impl) verifyECDSA(k ecdsaPublicKey, signature, digest []byte, opts bc`
`111`	`111`	`return false, fmt.Errorf("Invalid S. Must be smaller than half the order [%s][%s].", s, halfOrder)`
`112`	`112`	`}`
`113`	`113`
`114`		`- return verifyECDSA(k.ski, digest, r, s)`
	`114`	`+ return verifyECDSA(k.ski, digest, r, s, k.pub.Curve.Params().BitSize/8)`
`115`	`115`	`}`
Original file line number	Diff line number	Diff line change
`@@ -63,7 +63,7 @@ func TestPKCS11ECKeySignVerify(t *testing.T) {`
`63`	`63`	`t.Fatal("Failed signing message [%s]", err)`
`64`	`64`	`}`
`65`	`65`
`66`		`- pass, err := verifyECDSA(key, hash1, R, S)`
	`66`	`+ pass, err := verifyECDSA(key, hash1, R, S, currentTestConfig.securityLevel/8)`
`67`	`67`	`if err != nil {`
`68`	`68`	`t.Fatal("Error verifying message 1 [%s]", err)`
`69`	`69`	`}`
`@@ -76,7 +76,7 @@ func TestPKCS11ECKeySignVerify(t *testing.T) {`
`76`	`76`	`t.Fatal("Signature should match with software verification!")`
`77`	`77`	`}`
`78`	`78`
`79`		`- pass, err = verifyECDSA(key, hash2, R, S)`
	`79`	`+ pass, err = verifyECDSA(key, hash2, R, S, currentTestConfig.securityLevel/8)`
`80`	`80`	`if err != nil {`
`81`	`81`	`t.Fatal("Error verifying message 2 [%s]", err)`
`82`	`82`	`}`
`@@ -129,7 +129,7 @@ func TestPKCS11ECKeyImportSignVerify(t *testing.T) {`
`129`	`129`	`t.Fatal("Failed signing message [%s]", err)`
`130`	`130`	`}`
`131`	`131`
`132`		`- pass, err := verifyECDSA(ski, hash1, R, S)`
	`132`	`+ pass, err := verifyECDSA(ski, hash1, R, S, currentTestConfig.securityLevel/8)`
`133`	`133`	`if err != nil {`
`134`	`134`	`t.Fatalf("Error verifying message 1 [%s]\n%s\n\n%s", err, hex.Dump(R.Bytes()), hex.Dump(S.Bytes()))`
`135`	`135`	`}`
`@@ -142,7 +142,7 @@ func TestPKCS11ECKeyImportSignVerify(t *testing.T) {`
`142`	`142`	`t.Fatal("Signature should match with software verification!")`
`143`	`143`	`}`
`144`	`144`
`145`		`- pass, err = verifyECDSA(ski, hash2, R, S)`
	`145`	`+ pass, err = verifyECDSA(ski, hash2, R, S, currentTestConfig.securityLevel/8)`
`146`	`146`	`if err != nil {`
`147`	`147`	`t.Fatal("Error verifying message 2 [%s]", err)`
`148`	`148`	`}`
`@@ -198,15 +198,15 @@ func TestPKCS11ECKeyExport(t *testing.T) {`
`198`	`198`	`t.Fatalf("Failed signing message [%s]", err)`
`199`	`199`	`}`
`200`	`200`
`201`		`- pass, err := verifyECDSA(key2, hash1, R, S)`
	`201`	`+ pass, err := verifyECDSA(key2, hash1, R, S, currentTestConfig.securityLevel/8)`
`202`	`202`	`if err != nil {`
`203`	`203`	`t.Fatalf("Error verifying message 1 [%s]", err)`
`204`	`204`	`}`
`205`	`205`	`if pass == false {`
`206`	`206`	`t.Fatal("Signature should match! [1]")`
`207`	`207`	`}`
`208`	`208`
`209`		`- pass, err = verifyECDSA(key, hash1, R, S)`
	`209`	`+ pass, err = verifyECDSA(key, hash1, R, S, currentTestConfig.securityLevel/8)`
`210`	`210`	`if err != nil {`
`211`	`211`	`t.Fatalf("Error verifying message 2 [%s]", err)`
`212`	`212`	`}`
`@@ -219,7 +219,7 @@ func TestPKCS11ECKeyExport(t *testing.T) {`
`219`	`219`	`t.Fatal("Signature should match with software verification!")`
`220`	`220`	`}`
`221`	`221`
`222`		`- pass, err = verifyECDSA(key, hash2, R, S)`
	`222`	`+ pass, err = verifyECDSA(key, hash2, R, S, currentTestConfig.securityLevel/8)`
`223`	`223`	`if err != nil {`
`224`	`224`	`t.Fatal("Error verifying message 3 [%s]", err)`
`225`	`225`	`}`