Skip to content

[release/10.0] [Android] Normalize RSA no-padding output to modulus size to fix VerifyHash #118950

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 26, 2025
Merged

[release/10.0] [Android] Normalize RSA no-padding output to modulus size to fix VerifyHash #118950

merged 1 commit into from
Aug 26, 2025

Conversation

@github-actions
Copy link
Contributor

@github-actions github-actions bot commented Aug 21, 2025
edited by simonrozsival
Loading

Backport of #118880 to release/10.0
Supersedes #118918

/cc @simonrozsival

Customer Impact

  • Customer reported
  • Found internally

Certain cryptographic operations (RSA.VerifyData, RSA.VerifyHash) do not work properly on some devices, for example on Samsung phones running Android 15. I am not aware of any report from a customer, but this might be because this issue can be hard to detect, as it only affects some versions of Android.

Regression

  • Yes
  • No

Testing

Manual testing - existing unit tests are now passing on the affected Android devices and emulators (specific OS versions of certain vendors). The issue was missed because it did not reproduce consistently on the android emulators used in our Helix queue. It appears that this is a change in behavior in the platform library caused by an OS update.

Risk

Low. The fix modifies crypto code but the changes are scoped just to Android and they are well tested through unit tests.

/cc @bartonjs @vcsjones @vitek-karas

@simonrozsival simonrozsival added Servicing-consider Issue for next servicing release review area-System.Security labels Aug 21, 2025
@dotnet-policy-service
Copy link
Contributor

dotnet-policy-service bot commented Aug 21, 2025

Tagging subscribers to this area: @dotnet/area-system-security, @bartonjs, @vcsjones
See info in area-owners.md if you want to be subscribed.

jeffschwMSFT
jeffschwMSFT approved these changes Aug 21, 2025
View reviewed changes
Copy link
Member

@jeffschwMSFT jeffschwMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

approved. please get a code review. we can merge when ready

@jeffschwMSFT jeffschwMSFT added Servicing-approved Approved for servicing release and removed Servicing-consider Issue for next servicing release review labels Aug 21, 2025
@jeffschwMSFT jeffschwMSFT added this to the 10.0.0 milestone Aug 21, 2025
@simonrozsival simonrozsival mentioned this pull request Aug 25, 2025
Merged
4 tasks
@jeffschwMSFT jeffschwMSFT merged commit deae3d2 into release/10.0 Aug 26, 2025
107 of 110 checks passed
@jkotas jkotas deleted the backport/pr-118880-to-release/10.0 branch August 28, 2025 21:05
@github-actions github-actions bot locked and limited conversation to collaborators Sep 28, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@jeffschwMSFT jeffschwMSFT jeffschwMSFT approved these changes

@bartonjs bartonjs bartonjs approved these changes

Assignees

No one assigned

Labels

area-System.Security Servicing-approved Approved for servicing release

Projects

None yet

Milestone

10.0.0

Development

Successfully merging this pull request may close these issues.

4 participants

@jeffschwMSFT @bartonjs @simonrozsival