[noise] recent changes about decryption failure
Trevor Perrin
trevp at trevp.net
Thu Mar 10 18:20:35 PST 2016
On Thu, Mar 10, 2016 at 8:04 AM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:
> I just saw this:
>
> +associated data. If a decryption error occurs the session has failed and the
> +`CipherState` objects are deleted without sending or receiving further
> +messages.
>
> I'm not sure this is good behavior. I'm using Noise over UDP. If the
> decryption fails, it means the packet wasn't legitimate and can be
> dropped. But I don't want to kill the entire session because of this.
I was wanting to make that behavior more specified, but I can see that
some applications might want different behavior, so I removed that
sentence (which I had just added).
Trevor
More information about the Noise
mailing list