Merge pull request #454 from libtom/pr/wycheproof-padding

karel-m · web-flow · commit 60eb5d059198 · 2018-10-29T07:27:26.000+01:00
Wycheproof failing PKCS7 depadding test
diff --git a/src/misc/padding/padding_depad.c b/src/misc/padding/padding_depad.c
@@ -36,7 +36,7 @@ int padding_depad(const unsigned char *data, unsigned long *length, unsigned lon
    if (type < LTC_PAD_ONE_AND_ZERO) {
       pad = data[padded_length - 1];
 
-      if (pad > padded_length) return CRYPT_INVALID_ARG;
+      if (pad > padded_length || pad == 0) return CRYPT_INVALID_ARG;
 
       unpadded_length = padded_length - pad;
    } else {
diff --git a/tests/padding_test.c b/tests/padding_test.c
@@ -194,6 +194,15 @@ int padding_test(void)
       }
    }
 
+   /* wycheproof failing test - https://github.com/libtom/libtomcrypt/pull/454 */
+   {
+      unsigned char data[] = { 0x47,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 };
+      unsigned long len = sizeof(data);
+      int err;
+
+      err = padding_depad(data, &len, (LTC_PAD_PKCS7 | 16));
+      if (err == CRYPT_OK) return CRYPT_FAIL_TESTVECTOR; /* should fail */
+   }
 
    return CRYPT_OK;
 }

Original file line number	Diff line number	Diff line change
`@@ -194,6 +194,15 @@ int padding_test(void)`
`194`	`194`	`}`
`195`	`195`	`}`
`196`	`196`
	`197`	`+ /* wycheproof failing test - https://github.com/libtom/libtomcrypt/pull/454 */`
	`198`	`+ {`
	`199`	`+ unsigned char data[] = { 0x47,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 };`
	`200`	`+ unsigned long len = sizeof(data);`
	`201`	`+ int err;`
	`202`	`+`
	`203`	`+ err = padding_depad(data, &len, (LTC_PAD_PKCS7 \| 16));`
	`204`	`+ if (err == CRYPT_OK) return CRYPT_FAIL_TESTVECTOR; /* should fail */`
	`205`	`+ }`
`197`	`206`
`198`	`207`	`return CRYPT_OK;`
`199`	`208`	`}`