missing file - mu bounds checking

dghgit · dghgit · commit c30fd6592c02 · 2025-03-21T15:17:32.000+11:00
diff --git a/core/src/main/java/org/bouncycastle/pqc/crypto/mldsa/MLDSASigner.java b/core/src/main/java/org/bouncycastle/pqc/crypto/mldsa/MLDSASigner.java
@@ -106,6 +106,10 @@ public byte[] generateMu()
     public byte[] generateMuSignature(byte[] mu)
         throws CryptoException, DataLengthException
     {
+        if (mu.length != MLDSAEngine.CrhBytes)
+        {
+            throw new DataLengthException("mu value must be " + MLDSAEngine.CrhBytes + " bytes");
+        }
         byte[] rnd = new byte[MLDSAEngine.RndBytes];
         if (random != null)
         {
@@ -140,6 +144,11 @@ public byte[] generateSignature()
 
     public boolean verifyMu(byte[] mu)
     {
+        if (mu.length != MLDSAEngine.CrhBytes)
+        {
+            throw new DataLengthException("mu value must be " + MLDSAEngine.CrhBytes + " bytes");
+        }
+        
         boolean isTrue = engine.verifyInternalMu(mu);
 
         reset();
@@ -158,6 +167,11 @@ public boolean verifySignature(byte[] signature)
 
     public boolean verifyMuSignature(byte[] mu, byte[] signature)
     {
+        if (mu.length != MLDSAEngine.CrhBytes)
+        {
+            throw new DataLengthException("mu value must be " + MLDSAEngine.CrhBytes + " bytes");
+        }
+        
         msgDigest.reset();
         
         boolean isTrue = engine.verifyInternalMuSignature(mu, signature, signature.length, msgDigest, pubKey.rho, pubKey.t1);
