annatar/ziggy-crypto
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Test SHA-1 length limit.

Browse Source
This commit is contained in:
Milan Špinka
2025-01-29 00:13:32 +01:00
parent 3d9abf179e
commit c4a83d297f
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
src/primitive/digest/sha.zig
View File

@ -93,7 +93,7 @@ pub fn sha1_new() Sha1Ctx {
pub fn sha1_update(ctx: *Sha1Ctx, message: []const u8) !void { pub fn sha1_update(ctx: *Sha1Ctx, message: []const u8) !void {
// SHA-1 can digest a message of a maximum length of (2^64 - 1) bits due to the nature of its padding. // SHA-1 can digest a message of a maximum length of (2^64 - 1) bits due to the nature of its padding.
if (ctx.message_length + message.len > ((1 << 64) / 8)) if (ctx.message_length + message.len >= ((1 << 64) / 8))
return MessageLengthLimitExceeded; return MessageLengthLimitExceeded;
const cnt_buffered_bytes = ctx.message_length % Sha1Ctx.BLOCK_SIZE; const cnt_buffered_bytes = ctx.message_length % Sha1Ctx.BLOCK_SIZE;
@ -486,3 +486,9 @@ test "SHA-1 padding test" {
try testing.expectEqualSlices(u8, ref[0..], digest_buffer[0..]); try testing.expectEqualSlices(u8, ref[0..], digest_buffer[0..]);
} }
} }
test "SHA-1 maximum length violation (simulated)" {
var ctx = sha1_new();
ctx.message_length = (1 << 61) - 1; // 2^64 - 8 bits
try testing.expectError(MessageLengthLimitExceeded, sha1_update(&ctx, "a"));
}