Merge pull request #3072 from kaleb-himes/SANITY_CHECKS

ed25519 and ed448 check sigLen against expected
2020-06-26 08:31:55 +10:00 · 2020-06-26 08:31:55 +10:00 · f6d26b4e81
parent e2afbae6aa 17466727b2
commit f6d26b4e81
3 changed files with 18 additions and 2 deletions
--- a/tests/api.c
+++ b/tests/api.c
@ -14798,6 +14798,13 @@ static int test_wc_ed25519_sign_msg (void)

            /* Test bad args. */
            if (ret == 0) {
+                AssertIntEQ(wc_ed25519_verify_msg(sig, siglen - 1, msg,
+                                                  msglen, &verify_ok, &key),
+                                                  BAD_FUNC_ARG);
+                AssertIntEQ(wc_ed25519_verify_msg(sig, siglen + 1, msg,
+                                                  msglen, &verify_ok, &key),
+                                                  BAD_FUNC_ARG);
+
                ret = wc_ed25519_verify_msg(NULL, siglen, msg, msglen, &verify_ok,
                                                                        &key);
                if (ret == BAD_FUNC_ARG) {
@ -15547,6 +15554,15 @@ static int test_wc_ed448_sign_msg (void)

            /* Test bad args. */
            if (ret == 0) {
+                AssertIntEQ(wc_ed448_verify_msg(sig, siglen - 1, msg,
+                                                  msglen, &verify_ok, &key,
+                                                  NULL, 0),
+                                                  BAD_FUNC_ARG);
+                AssertIntEQ(wc_ed448_verify_msg(sig, siglen + 1, msg,
+                                                  msglen, &verify_ok, &key,
+                                                  NULL, 0),
+                                                  BAD_FUNC_ARG);
+
                ret = wc_ed448_verify_msg(NULL, siglen, msg, msglen, &verify_ok,
                                          &key, NULL, 0);
                if (ret == BAD_FUNC_ARG) {
--- a/wolfcrypt/src/ed25519.c
+++ b/wolfcrypt/src/ed25519.c
@ -365,7 +365,7 @@ static int ed25519_verify_msg(const byte* sig, word32 sigLen, const byte* msg,
    *res = 0;

    /* check on basics needed to verify signature */
-    if (sigLen < ED25519_SIG_SIZE || (sig[ED25519_SIG_SIZE-1] & 224))
+    if (sigLen != ED25519_SIG_SIZE || (sig[ED25519_SIG_SIZE-1] & 224))
        return BAD_FUNC_ARG;

    /* uncompress A (public key), test if valid, and negate it */
--- a/wolfcrypt/src/ed448.c
+++ b/wolfcrypt/src/ed448.c
@ -379,7 +379,7 @@ static int ed448_verify_msg(const byte* sig, word32 sigLen, const byte* msg,
        *res = 0;

        /* check on basics needed to verify signature */
-        if (sigLen < ED448_SIG_SIZE) {
+        if (sigLen != ED448_SIG_SIZE) {
            ret = BAD_FUNC_ARG;
        }
    }