[DHT] decrypt should return DhtInboundError #4596
Assignees
Comments
|
Related to this, it may be useful to break message decryption and deserialization errors out further. This would include authentication errors, other decryption failures, and padding errors. Some of these also apply to outbound messages. For safety, the codebase should avoid leaking specific message failure modes externally, as an adversary may be able to use error types or other timing data to make inferences about messages. That being said, it sounds like having specific error types is still useful for testing or other internal use cases. |
sdbondi
pushed a commit
that referenced
this issue
Sep 5, 2022
Description --- Use `DhtInboundError` for DHT message decryption. Motivation and Context --- After an internal discussion, it was decided to output an error of `DhtInboundError` instead of `DhtOutboundError`, in `comms/dht/src/crypt.rs:131` and `comms/dht/src/inbound/decryption.rs:409`. Fixes #4596 How Has This Been Tested? --- Run `cargo build`
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
No description provided.
The text was updated successfully, but these errors were encountered: