turnkey/openpgp-card
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add assert to hacky decryption case

Browse source
This commit is contained in:
Heiko Schaefer 2021-09-02 17:58:10 +02:00
parent c377f37a9b
commit b560d4eb5a
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
openpgp-card-sequoia/src/decryptor.rs
View file

@ -113,10 +113,15 @@ impl<'a> crypto::Decryptor for CardDecryptor<'a> {
// Decryption operation on the card // Decryption operation on the card
let mut dec = self.ca.decrypt(dm)?; let mut dec = self.ca.decrypt(dm)?;
// Specifically handle return value from Gnuk // Specifically handle return value format like Gnuk's
// (Gnuk returns a leading '0x04' byte and // (Gnuk returns a leading '0x04' byte and
// an additional 32 trailing bytes) // an additional 32 trailing bytes)
if curve == &Curve::NistP256 && dec.len() == 65 { if curve == &Curve::NistP256 && dec.len() == 65 {
assert_eq!(
dec[0], 0x04,
"unexpected shape of decrypted data"
);
// see Gnuk src/call-ec.c:82 // see Gnuk src/call-ec.c:82
dec = dec[1..33].to_vec(); dec = dec[1..33].to_vec();
} }