base32ct: Avoid panics when decoding inputs; enforce lengths.

Formerly, Encoding::decode would write beyond the end of `dst`
when the input (ignoring padding) had (length%8) == 1, 3, or 6.

These lengths are not valid base32, so we now reject them.

Author: nmathewson

base32ct/src/encoding.rs

@@ -101,19 +101,23 @@ impl<T: Alphabet> Encoding for T {
             c[6] = Self::decode_5bits(src_rem[6]);
         };
 
-        if !src_rem.is_empty() {
+        err |= (src_rem.len() == 1) as u8;
+        err |= (src_rem.len() == 3) as u8;
+        err |= (src_rem.len() == 6) as u8;
+
+        if src_rem.len() >= 2 {
             dst_rem[0] = (((c[0] << 3) | (c[1] >> 2)) & 0xff) as u8;
         }
 
-        if src_rem.len() >= 3 {
+        if src_rem.len() >= 4 {
             dst_rem[1] = (((c[1] << 6) | (c[2] << 1) | (c[3] >> 4)) & 0xff) as u8;
         }
 
         if src_rem.len() >= 5 {
             dst_rem[2] = (((c[3] << 4) | (c[4] >> 1)) & 0xff) as u8;
         }
 
-        if src_rem.len() >= 6 {
+        if src_rem.len() >= 7 {
             dst_rem[3] = (((c[4] << 7) | (c[5] << 2) | (c[6] >> 3)) & 0xff) as u8;
         }
 

base32ct/tests/vectors.rs

@@ -185,3 +185,16 @@ fn encode_base32() {
         );
     }
 }
+
+#[test]
+fn decode_unpadded_truncated() {
+    let string = "foobarba";
+    for length in 1..=7 {
+        let s = &string[..length];
+        let s_padded: String = s.chars().chain(std::iter::repeat('=')).take(8).collect();
+        assert!(s_padded.starts_with(s));
+        assert_eq!(s_padded.len(), 8);
+        assert_eq!(Base32::decode_vec(s), Err(base32ct::Error::InvalidEncoding));
+        assert_eq!(Base32Unpadded::decode_vec(s), Base32::decode_vec(&s_padded));
+    }
+}