[Bug 701673] New: Error in HLS with AES+128 CBC implementation

Wed Jun 5 13:03:53 PDT 2013

https://bugzilla.gnome.org/show_bug.cgi?id=701673
  GStreamer | gst-plugins-bad | 1.x

           Summary: Error in HLS with AES+128 CBC implementation
    Classification: Platform
           Product: GStreamer
           Version: 1.x
        OS/Version: All
            Status: UNCONFIRMED
          Severity: major
          Priority: Normal
         Component: gst-plugins-bad
        AssignedTo: gstreamer-bugs at lists.freedesktop.org
        ReportedBy: luis.linietsky at gmail.com
         QAContact: gstreamer-bugs at lists.freedesktop.org
     GNOME version: ---

There seems to be missing the pkcs7 unpadding implementation.
Looking at source code, the unencrypted buffer is same size as encrypted
buffer, and a buffer of same size is returned.

http://tools.ietf.org/html/rfc3602#section-2.4

The encrypted fragment will always have padding, so it has to be removed or
corrupted data my be streamed.

To remove the padding the last byte for the unecrypted message has to be
readed, casted to gsize, and then decreace the unencrypted buffer's size by
that value.

Here is a sample with hls AES 128 + CBC encryption

http://gl.dlatv.net/demohls/TestCON-AES/playlist.m3u8

Thanks.

-- 
Configure bugmail: https://bugzilla.gnome.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
You are the assignee for the bug.