personal_interest_mirrors/nebula
1
0
Fork 0
mirror of https://github.com/slackhq/nebula.git synced 2025-11-08 21:43:57 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

comments

Browse Source
This commit is contained in:
Wade Simmons 2025-07-25 14:42:54 -04:00
parent 0eb92dcab4
commit fd3fa57e79
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
noiseutil/fips140.go
View File

@ -37,6 +37,7 @@ func (c cipherFn) CipherName() string { return c.name }
// CipherAESGCM is the AES256-GCM AEAD cipher (using aeadAESGCM when fips140 is enabled) // CipherAESGCM is the AES256-GCM AEAD cipher (using aeadAESGCM when fips140 is enabled)
var CipherAESGCM noise.CipherFunc = cipherFn{cipherAESGCM, "AESGCM"} var CipherAESGCM noise.CipherFunc = cipherFn{cipherAESGCM, "AESGCM"}
// tls.aeadAESGCM uses a 4 byte static prefix and an 8 byte nonce
var emptyPrefix = []byte{0, 0, 0, 0} var emptyPrefix = []byte{0, 0, 0, 0}
func cipherAESGCM(k [32]byte) noise.Cipher { func cipherAESGCM(k [32]byte) noise.Cipher {
@ -44,6 +45,7 @@ func cipherAESGCM(k [32]byte) noise.Cipher {
return aeadCipher{ return aeadCipher{
gcm, gcm,
func(n uint64) []byte { func(n uint64) []byte {
// tls.aeadAESGCM uses a 4 byte static prefix and an 8 byte nonce
var nonce [8]byte var nonce [8]byte
binary.BigEndian.PutUint64(nonce[:], n) binary.BigEndian.PutUint64(nonce[:], n)
return nonce[:] return nonce[:]