Skip to content

8368984: Extra slashes in Cipher transformation leads to NSPE instead of NSAE #27615

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

8368984: Extra slashes in Cipher transformation leads to NSPE instead of NSAE #27615

wants to merge 1 commit into from
+114 −113

Conversation

valeriepeng
Copy link
Contributor

@valeriepeng valeriepeng commented Oct 2, 2025
edited by openjdk bot
Loading

This PR updates the cipher transformation parsing and verification logic to be stricter and throws NoSuchAlgorithmException (NSAE) when additional slash(es) is found. With the existing parsing logic, the extra slash(es) is likely to end up in the last component, i.e. the padding scheme, and lead to NoSuchPaddingException (NSPE) from the underlying CipherSpi object.

Out of the supported cipher algorithms for all JDK providers, PBES2 cipher algorithms and RSA cipher with OAEP paddings may contain truncated SHA-512 in their transformations. This proposed fix would check for truncated SHA in both algorithm and padding schemes and throws NSAE if any extra slash is found.

Thanks in advance for the review~

Progress

  • Change must be properly reviewed (1 review required, with at least 1 Reviewer)
  • Change must not contain extraneous whitespace
  • Commit message must refer to an issue

Issue

  • JDK-8368984: Extra slashes in Cipher transformation leads to NSPE instead of NSAE (Bug - P4)

Reviewing

Using git

Checkout this PR locally:
$ git fetch https://git.openjdk.org/jdk.git pull/27615/head:pull/27615
$ git checkout pull/27615

Update a local copy of the PR:
$ git checkout pull/27615
$ git pull https://git.openjdk.org/jdk.git pull/27615/head

Using Skara CLI tools

Checkout this PR locally:
$ git pr checkout 27615

View PR using the GUI difftool:
$ git pr show -t 27615

Using diff file

Download this PR as a diff file:
https://git.openjdk.org/jdk/pull/27615.diff

Using Webrev

Link to Webrev Comment

@bridgekeeper
Copy link

bridgekeeper bot commented Oct 2, 2025

👋 Welcome back valeriep! A progress list of the required criteria for merging this PR into master will be added to the body of your pull request. There are additional pull request commands available for use with this pull request.

@openjdk
Copy link

openjdk bot commented Oct 2, 2025

❗ This change is not yet ready to be integrated.
See the Progress checklist in the description for automated requirements.

@openjdk
Copy link

openjdk bot commented Oct 2, 2025

@valeriepeng The following label will be automatically applied to this pull request:

  • security

When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command.

@openjdk openjdk bot added the rfr Pull request is ready for review label Oct 2, 2025
@mlbridge
Copy link

mlbridge bot commented Oct 2, 2025

Webrevs

wangweij
wangweij reviewed Oct 3, 2025
View reviewed changes
src/java.base/share/classes/javax/crypto/Cipher.java
sha512Idx = transformation.indexOf(SHA512TRUNCATED, sha512SlashIdx +
SHA512TRUNCATED.length());
sha512SlashIdx = (sha512Idx != -1 ? sha512Idx + 3 : -2);
}
Copy link
Contributor

@wangweij wangweij Oct 3, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The logic is quite complex. Can you create a dedicated method for it like indexOfRealSlashIn(String s)?

We can even call it on the mode part.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
1 more reviewer

@wangweij wangweij wangweij left review comments

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
rfr Pull request is ready for review security [email protected]
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@valeriepeng @wangweij