From 209f47b692bd74fc5afcfeaf0e713ceaa99b9932 Mon Sep 17 00:00:00 2001
From: Vincent Palatin <vpalatin@chromium.org>
Date: Fri, 6 Apr 2018 17:43:07 +0200
Subject: u2f: accept short APDU

The ISO7816-4 standard for APDU format says the APDU header minimum size
is 4 bytes (CLA, INS, P1, P2). The Lc field is absent if the command has
no data.
Update the size check to accept short APDU (the actual APDU
len was already computed properly for this case).

Signed-off-by: Vincent Palatin <vpalatin@chromium.org>

BRANCH=cr50
BUG=b:72788497
TEST=adhoc

Change-Id: Ic60fa51bd4746b04016c488a38fe3ae7585e9942
Reviewed-on: https://chromium-review.googlesource.com/1005345
Commit-Ready: Vincent Palatin <vpalatin@chromium.org>
Tested-by: Vincent Palatin <vpalatin@chromium.org>
Reviewed-by: Randall Spangler <rspangler@chromium.org>
Reviewed-by: Vadim Bendebury <vbendeb@chromium.org>
---
 common/u2f.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/common/u2f.c b/common/u2f.c
index e5b73efc8e..bca71aedf4 100644
--- a/common/u2f.c
+++ b/common/u2f.c
@@ -333,7 +333,7 @@ unsigned u2f_apdu_rcv(uint8_t *buf, unsigned in_len, unsigned max_len)
 
 	CPRINTF("%T/%d U2F APDU ", apdu.len);
 	/* Is the APDU well-formed including its payload ? */
-	if (in_len < 5 || (apdu.len > in_len - (apdu.data - buf))) {
+	if (in_len < 4 || (apdu.len > in_len - (apdu.data - buf))) {
 		sw = U2F_SW_WRONG_LENGTH;
 		goto ret_status;
 	}
-- 
cgit v1.2.1