run 'go get -u; make revendor'

Signed-off-by: Stephan Renatus <srenatus@chef.io>

vendor/github.com/gtank/cryptopasta/encrypt.go

@@ -16,6 +16,7 @@ import (
 	"crypto/aes"
 	"crypto/cipher"
 	"crypto/rand"
+	"errors"
 	"io"
 )
 
@@ -67,6 +68,10 @@ func Decrypt(ciphertext []byte, key *[32]byte) (plaintext []byte, err error) {
 		return nil, err
 	}
 
+	if len(ciphertext) < gcm.NonceSize() {
+		return nil, errors.New("malformed ciphertext")
+	}
+
 	return gcm.Open(nil,
 		ciphertext[:gcm.NonceSize()],
 		ciphertext[gcm.NonceSize():],

vendor/github.com/gtank/cryptopasta/sign.go

@@ -60,7 +60,7 @@ func CheckHMAC(data, suppliedMAC []byte, key *[32]byte) bool {
 	return hmac.Equal(expectedMAC, suppliedMAC)
 }
 
-// GenerateSigningKey generates a random P-256 ECDSA private key.
+// NewSigningKey generates a random P-256 ECDSA private key.
 func NewSigningKey() (*ecdsa.PrivateKey, error) {
 	key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
 	return key, err