fix: handle tiny keys

dignifiedquire · dignifiedquire · commit 201ad812a0fd · 2024-11-18T10:05:52.000+01:00
diff --git a/src/algorithms/pkcs1v15.rs b/src/algorithms/pkcs1v15.rs
@@ -41,7 +41,7 @@ pub(crate) fn pkcs1v15_encrypt_pad<R>(
 where
     R: CryptoRngCore + ?Sized,
 {
-    if msg.len() > k - 11 {
+    if msg.len() + 11 > k {
         return Err(Error::MessageTooLong);
     }
 
@@ -195,4 +195,13 @@ mod tests {
             }
         }
     }
+
+    #[test]
+    fn test_encrypt_tiny_no_crash() {
+        let mut rng = ChaCha8Rng::from_seed([42; 32]);
+        let k = 8;
+        let message = vec![1u8; 4];
+        let res = pkcs1v15_encrypt_pad(&mut rng, &message, k);
+        assert_eq!(res, Err(Error::MessageTooLong));
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -41,7 +41,7 @@ pub(crate) fn pkcs1v15_encrypt_pad<R>(`
`41`	`41`	`where`
`42`	`42`	`R: CryptoRngCore + ?Sized,`
`43`	`43`	`{`
`44`		`- if msg.len() > k - 11 {`
	`44`	`+ if msg.len() + 11 > k {`
`45`	`45`	`return Err(Error::MessageTooLong);`
`46`	`46`	`}`
`47`	`47`
`@@ -195,4 +195,13 @@ mod tests {`
`195`	`195`	`}`
`196`	`196`	`}`
`197`	`197`	`}`
	`198`	`+`
	`199`	`+ #[test]`
	`200`	`+ fn test_encrypt_tiny_no_crash() {`
	`201`	`+ let mut rng = ChaCha8Rng::from_seed([42; 32]);`
	`202`	`+ let k = 8;`
	`203`	`+ let message = vec![1u8; 4];`
	`204`	`+ let res = pkcs1v15_encrypt_pad(&mut rng, &message, k);`
	`205`	`+ assert_eq!(res, Err(Error::MessageTooLong));`
	`206`	`+ }`
`198`	`207`	`}`