🐛 BUG: EncryptDanger() avoids calling cipher.Encrypt() #770
Labels
NeedsInvestigation
Someone must examine and confirm this is a valid issue and not a duplicate of an existing one.
WaitingForInfo
Issue is not actionable because of missing required information, which needs to be provided.
What version of
nebula
are you using?master as of today
What operating system are you using?
linux
Describe the Bug
nebula/noise.go
Line 49 in a800a48
this line bypasses the
s.c.Encrypt()
function and directly callsSeal()
, I believe for the following reasons:c.nonce(n)
that converts a uint64 to a []bytehowever I have a fork of noise where I implemented a new cipher suite (meaning a new implementation of Encrypt() and Decrypt()). nebula will not invoke my implementation's Encrypt/Decrypt function due to bypassing those functions entirely. Is the main reason to bypass Encrypt() because of the garbage collection issue due to the nonce?
Locally I have changed nebula's noise.go file to be like this
If the garbage collection issue is the major concern it may be less of a concern due to more recent versions of the go garbage collector. I can do some measurements if so.
Logs from affected hosts
No response
Config files from affected hosts
No response
The text was updated successfully, but these errors were encountered: