trezor: add sanity checks for decrypted value

Check that the value has changed, is not all-zero and has the right length.
2018-06-26 20:06:42 +02:00 · 2018-06-26 20:06:42 +02:00 · 991891a5c4
commit 991891a5c4
parent 978f1f3f6d
1 changed files with 14 additions and 0 deletions
--- a/internal/readpassword/trezor.go
+++ b/internal/readpassword/trezor.go
@ -1,6 +1,8 @@
 package readpassword

 import (
+	"bytes"
+	"log"
 	"os"

 	"github.com/rfjakob/gocryptfs/internal/exitcodes"
@ -96,6 +98,18 @@ func Trezor(payload []byte) []byte {
 		os.Exit(exitcodes.TrezorError)
 	}

+	// Sanity checks
+	if len(key) != TrezorPayloadLen {
+		log.Panicf("BUG: decrypted value has wrong length %d", len(key))
+	}
+	if bytes.Equal(key, payload) {
+		log.Panicf("BUG: payload and decrypted value are identical")
+	}
+	zero := make([]byte, TrezorPayloadLen)
+	if bytes.Equal(key, zero) {
+		log.Panicf("BUG: decrypted value is all-zero")
+	}
+
 	// Everything ok
 	return key
 }