Fix bad MDC messages parsing

2022-02-24 18:57:31 +01:00 · 2022-02-24 18:57:31 +01:00 · 3a65fb8dbb
commit 3a65fb8dbb
parent 51496c37e2
3 changed files with 58 additions and 0 deletions
--- a/crypto/sessionkey_test.go
+++ b/crypto/sessionkey_test.go
@ -2,6 +2,7 @@ package crypto

 import (
 	"encoding/base64"
+	"encoding/hex"
 	"errors"
 	"testing"

@ -271,6 +272,25 @@ func TestDataPacketDecryption(t *testing.T) {
 	assert.Exactly(t, readTestFile("message_plaintext", true), decrypted.GetString())
 }

+func TestMDCFailDecryption(t *testing.T) {
+	pgpMessage, err := NewPGPMessageFromArmored(readTestFile("message_badmdc", false))
+	if err != nil {
+		t.Fatal("Expected no error when unarmoring, got:", err)
+	}
+
+	split, err := pgpMessage.SeparateKeyAndData()
+	if err != nil {
+		t.Fatal("Expected no error when splitting, got:", err)
+	}
+
+	sk, _ := hex.DecodeString("F76D3236E4F8A38785C50BDE7167475E95360BCE67A952710F6C16F18BB0655E")
+
+	sessionKey := NewSessionKeyFromToken(sk, "aes256")
+
+	_, err = sessionKey.Decrypt(split.GetBinaryDataPacket())
+	assert.NotNil(t, err)
+}
+
 func TestSessionKeyClear(t *testing.T) {
 	testSessionKey.Clear()
 	assertMemCleared(t, testSessionKey.Key)