Detect invalid Base64 encoding in signature

psignoret · psignoret · commit 211203a57451 · 2016-07-26T10:28:43.000+02:00
diff --git a/src/JWT.php b/src/JWT.php
@@ -85,8 +85,10 @@ public static function decode($jwt, $key, $allowed_algs = array())
         if (null === $payload = static::jsonDecode(static::urlsafeB64Decode($bodyb64))) {
             throw new UnexpectedValueException('Invalid claims encoding');
         }
-        $sig = static::urlsafeB64Decode($cryptob64);
-        
+        if (false === ($sig = static::urlsafeB64Decode($cryptob64))) {
+            throw new UnexpectedValueException('Invalid signature encoding');
+        }
+
         if (empty($header->alg)) {
             throw new UnexpectedValueException('Empty algorithm');
         }
diff --git a/tests/JWTTest.php b/tests/JWTTest.php
@@ -261,4 +261,11 @@ public function testInvalidSegmentCount()
         $this->setExpectedException('UnexpectedValueException');
         JWT::decode('brokenheader.brokenbody', 'my_key', array('HS256'));
     }
+
+    public function testInvalidSignatureEncoding()
+    {
+        $msg = "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6MSwibmFtZSI6ImZvbyJ9.Q4Kee9E8o0Xfo4ADXvYA8t7dN_X_bU9K5w6tXuiSjlUxx";
+        $this->setExpectedException('UnexpectedValueException');
+        JWT::decode($msg, 'secret', array('HS256'));
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -85,8 +85,10 @@ public static function decode($jwt, $key, $allowed_algs = array())`
`85`	`85`	`if (null === $payload = static::jsonDecode(static::urlsafeB64Decode($bodyb64))) {`
`86`	`86`	`throw new UnexpectedValueException('Invalid claims encoding');`
`87`	`87`	`}`
`88`		`- $sig = static::urlsafeB64Decode($cryptob64);`
`89`		`-`
	`88`	`+ if (false === ($sig = static::urlsafeB64Decode($cryptob64))) {`
	`89`	`+ throw new UnexpectedValueException('Invalid signature encoding');`
	`90`	`+ }`
	`91`	`+`
`90`	`92`	`if (empty($header->alg)) {`
`91`	`93`	`throw new UnexpectedValueException('Empty algorithm');`
`92`	`94`	`}`
Original file line number	Diff line number	Diff line change
`@@ -261,4 +261,11 @@ public function testInvalidSegmentCount()`
`261`	`261`	`$this->setExpectedException('UnexpectedValueException');`
`262`	`262`	`JWT::decode('brokenheader.brokenbody', 'my_key', array('HS256'));`
`263`	`263`	`}`
	`264`	`+`
	`265`	`+ public function testInvalidSignatureEncoding()`
	`266`	`+ {`
	`267`	`+ $msg = "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6MSwibmFtZSI6ImZvbyJ9.Q4Kee9E8o0Xfo4ADXvYA8t7dN_X_bU9K5w6tXuiSjlUxx";`
	`268`	`+ $this->setExpectedException('UnexpectedValueException');`
	`269`	`+ JWT::decode($msg, 'secret', array('HS256'));`
	`270`	`+ }`
`264`	`271`	`}`