aboutsummaryrefslogtreecommitdiffstats
path: root/src/lib/pbkdf/pgp_s2k
diff options
context:
space:
mode:
Diffstat (limited to 'src/lib/pbkdf/pgp_s2k')
-rw-r--r--src/lib/pbkdf/pgp_s2k/pgp_s2k.cpp16
1 files changed, 11 insertions, 5 deletions
diff --git a/src/lib/pbkdf/pgp_s2k/pgp_s2k.cpp b/src/lib/pbkdf/pgp_s2k/pgp_s2k.cpp
index 7677c4e96..21edb6afc 100644
--- a/src/lib/pbkdf/pgp_s2k/pgp_s2k.cpp
+++ b/src/lib/pbkdf/pgp_s2k/pgp_s2k.cpp
@@ -80,6 +80,9 @@ size_t OpenPGP_S2K::pbkdf(uint8_t output_buf[], size_t output_len,
if(iterations == 0 && msec.count() > 0) // FIXME
throw Not_Implemented("OpenPGP_S2K does not implemented timed KDF");
+ if(iterations > 1 && salt_len == 0)
+ throw Invalid_Argument("OpenPGP_S2K requires a salt in iterated mode");
+
secure_vector<uint8_t> input_buf(salt_len + passphrase.size());
if(salt_len > 0)
{
@@ -107,12 +110,15 @@ size_t OpenPGP_S2K::pbkdf(uint8_t output_buf[], size_t output_len,
m_hash->update(zero_padding);
// The input is always fully processed even if iterations is very small
- size_t left = std::max(iterations, input_buf.size());
- while(left > 0)
+ if(input_buf.empty() == false)
{
- const size_t input_to_take = std::min(left, input_buf.size());
- m_hash->update(input_buf.data(), input_to_take);
- left -= input_to_take;
+ size_t left = std::max(iterations, input_buf.size());
+ while(left > 0)
+ {
+ const size_t input_to_take = std::min(left, input_buf.size());
+ m_hash->update(input_buf.data(), input_to_take);
+ left -= input_to_take;
+ }
}
m_hash->final(hash_buf.data());
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-20 07:30:00 +0000