From cf487bb3c09d4e0532bd452ad3aa5eb292b176ba Mon Sep 17 00:00:00 2001
From: Jesse Luehrs <doy@tozt.net>
Date: Sat, 28 Mar 2015 03:10:42 -0400
Subject: padding byte of 0x00 isn't valid

---
 src/primitives.rs | 2 +-
 tests/lib.rs      | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/primitives.rs b/src/primitives.rs
index fabbce4..fb80a79 100644
--- a/src/primitives.rs
+++ b/src/primitives.rs
@@ -35,7 +35,7 @@ pub fn pad_pkcs7 (block: &[u8], blocksize: u8) -> Vec<u8> {
 pub fn unpad_pkcs7 (block: &[u8]) -> Option<&[u8]> {
     let padding_byte = block[block.len() - 1];
     let padding_len = padding_byte as usize;
-    if padding_len > block.len() {
+    if padding_len > block.len() || padding_len == 0 {
         return None;
     }
 
diff --git a/tests/lib.rs b/tests/lib.rs
index 3dbfa55..4ebeebf 100644
--- a/tests/lib.rs
+++ b/tests/lib.rs
@@ -297,6 +297,10 @@ fn problem_15 () {
         matasano::unpad_pkcs7(b"ICE ICE BABY\x01\x02\x03\x04"),
         None
     );
+    assert_eq!(
+        matasano::unpad_pkcs7(b"ICE ICE BABY\x00"),
+        None
+    );
     assert_eq!(
         matasano::unpad_pkcs7(b"\x04\x04\x04\x04"),
         Some(&b""[..])
-- 
cgit v1.2.3-54-g00ecf