|
26 | 26 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF |
27 | 27 | * SUCH DAMAGE. |
28 | 28 | * |
29 | | - * $PostgreSQL: pgsql/contrib/pgcrypto/px.c,v 1.15 2005/10/15 02:49:06 momjian Exp $ |
| 29 | + * $PostgreSQL: pgsql/contrib/pgcrypto/px.c,v 1.16 2007/08/23 16:15:51 tgl Exp $ |
30 | 30 | */ |
31 | 31 |
|
32 | 32 | #include "postgres.h" |
@@ -58,6 +58,7 @@ static const struct error_desc px_err_list[] = { |
58 | 58 | {PXE_BAD_SALT_ROUNDS, "Incorrect number of rounds"}, |
59 | 59 | {PXE_MCRYPT_INTERNAL, "mcrypt internal error"}, |
60 | 60 | {PXE_NO_RANDOM, "No strong random source"}, |
| 61 | + {PXE_DECRYPT_FAILED, "Decryption failed"}, |
61 | 62 | {PXE_PGP_CORRUPT_DATA, "Wrong key or corrupt data"}, |
62 | 63 | {PXE_PGP_CORRUPT_ARMOR, "Corrupt ascii-armor"}, |
63 | 64 | {PXE_PGP_UNSUPPORTED_COMPR, "Unsupported compression algorithm"}, |
@@ -279,6 +280,18 @@ combo_decrypt(PX_Combo * cx, const uint8 *data, unsigned dlen, |
279 | 280 |
|
280 | 281 | PX_Cipher *c = cx->cipher; |
281 | 282 |
|
| 283 | + /* decide whether zero-length input is allowed */ |
| 284 | + if (dlen == 0) |
| 285 | + { |
| 286 | + /* with padding, empty ciphertext is not allowed */ |
| 287 | + if (cx->padding) |
| 288 | + return PXE_DECRYPT_FAILED; |
| 289 | + |
| 290 | + /* without padding, report empty result */ |
| 291 | + *rlen = 0; |
| 292 | + return 0; |
| 293 | + } |
| 294 | + |
282 | 295 | bs = px_cipher_block_size(c); |
283 | 296 | if (bs > 1 && (dlen % bs) != 0) |
284 | 297 | goto block_error; |
|
0 commit comments