fix for issue 1118: check if iv is zero in gcm. 1) found by roberto in mbedtls forum 2) if iv_len is zero, return an error 3) add tests for invalid parameters

commit: e2efaeaafce11b05f62d941835fd8f4b49944da1 [log] [tgz]
author: Ron Eldor <ron.eldor@arm.com> Fri Dec 16 16:15:56 2016 +0200
committer: Simon Butcher <simon.butcher@arm.com> Thu Jul 27 15:08:01 2017 +0100
tree: 4ddea1817b1d250cf6aeeace640f1288075f5db1
parent: 53c2e47a1b111038c06b67be53b0573969392e34 [diff]
diff --git a/library/gcm.c b/library/gcm.c
index f1210c5..fccb092 100644
--- a/library/gcm.c
+++ b/library/gcm.c

@@ -277,8 +277,10 @@
     size_t use_len, olen = 0;
 
     /* IV and AD are limited to 2^64 bits, so 2^61 bytes */
-    if( ( (uint64_t) iv_len  ) >> 61 != 0 ||
-        ( (uint64_t) add_len ) >> 61 != 0 )
+    /* IV is not allowed to be zero length */
+    if( iv_len == 0 ||
+      ( (uint64_t) iv_len  ) >> 61 != 0 ||
+      ( (uint64_t) add_len ) >> 61 != 0 )
     {
         return( MBEDTLS_ERR_GCM_BAD_INPUT );
     }
commit	e2efaeaafce11b05f62d941835fd8f4b49944da1	[log] [tgz]
author	Ron Eldor <ron.eldor@arm.com>	Fri Dec 16 16:15:56 2016 +0200
committer	Simon Butcher <simon.butcher@arm.com>	Thu Jul 27 15:08:01 2017 +0100
tree	4ddea1817b1d250cf6aeeace640f1288075f5db1
parent	53c2e47a1b111038c06b67be53b0573969392e34 [diff]