fix: return friendly error on incorrect nonce

cloudfoundry · Nov 1, 2019 · b1b5c44 · b1b5c44 · adobley · Nov 1, 2019
1 parent a658664
commit b1b5c44
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 0 deletions.
diff --git a/common/secure/crypto.go b/common/secure/crypto.go
@@ -5,6 +5,7 @@ import (
 	"crypto/cipher"
 	"crypto/rand"
 	"crypto/sha256"
+	"errors"
 
 	"golang.org/x/crypto/pbkdf2"
 )
@@ -45,6 +46,10 @@ func (gcm *AesGCM) Encrypt(plainText []byte) (cipherText, nonce []byte, err erro
 }
 
 func (gcm *AesGCM) Decrypt(cipherText, nonce []byte) ([]byte, error) {
+	if len(nonce) != gcm.NonceSize() {
+		return nil, errors.New("incorrect nonce length")
+	}
+
 	plainText, err := gcm.Open(nil, nonce, cipherText, []byte{})
 	if err != nil {
 		return nil, err

diff --git a/common/secure/crypto_test.go b/common/secure/crypto_test.go
@@ -137,6 +137,16 @@ var _ = Describe("Crypto", func() {
 				Expect(decryptedText).ToNot(Equal(plainText))
 			})
 		})
+
+		Context("when the nonce is an invalid length", func() {
+			It("does not panic and returns an error", func() {
+				otherNonce := []byte("0123")
+				decryptedText, err := aesGcm.Decrypt(cipherText, otherNonce)
+				Expect(err).To(HaveOccurred())
+				Expect(err.Error()).Should(ContainSubstring("incorrect nonce length"))
+				Expect(decryptedText).ToNot(Equal(plainText))
+			})
+		})
 	})
 
 	Describe("RandomBytes", func() {