diff options
author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2018-07-18 00:06:10 +0800 |
---|---|---|
committer | Alex Gaynor <alex.gaynor@gmail.com> | 2018-07-17 12:06:10 -0400 |
commit | db62ec9967d95e666eb6898766944d9e50532b2d (patch) | |
tree | 9cf70453fad72b31c074d45e43d33298e2640166 /src | |
parent | 12a1cacb6ae6de51a003dcc884e769854a1345a8 (diff) | |
download | cryptography-db62ec9967d95e666eb6898766944d9e50532b2d.tar.gz cryptography-db62ec9967d95e666eb6898766944d9e50532b2d.tar.bz2 cryptography-db62ec9967d95e666eb6898766944d9e50532b2d.zip |
also check iv length for GCM nonce in AEAD (#4350)
* also check iv length for GCM nonce in AEAD
* ugh
Diffstat (limited to 'src')
-rw-r--r-- | src/cryptography/hazmat/primitives/ciphers/aead.py | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/src/cryptography/hazmat/primitives/ciphers/aead.py b/src/cryptography/hazmat/primitives/ciphers/aead.py index 9794d768..e5197653 100644 --- a/src/cryptography/hazmat/primitives/ciphers/aead.py +++ b/src/cryptography/hazmat/primitives/ciphers/aead.py @@ -184,3 +184,5 @@ class AESGCM(object): utils._check_bytes("nonce", nonce) utils._check_bytes("data", data) utils._check_bytes("associated_data", associated_data) + if len(nonce) == 0: + raise ValueError("Nonce must be at least 1 byte") |