Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(core): NanoTDF KID size enforcement #1520

Closed
wants to merge 4 commits into from
Closed

fix(core): NanoTDF KID size enforcement #1520

wants to merge 4 commits into from

Conversation

pflynn-virtru
Copy link
Member

@pflynn-virtru pflynn-virtru commented Sep 5, 2024
edited
Loading

Introduced ECPublicKeyFetcher interface and its implementations to handle EC public key fetching. Updated SDK and nanotdf test cases to utilize the new interface, ensuring better abstraction and testability. Added validation for KID length and tag size in encryption methods.

Relates to #1506
resolves #1523

@pflynn-virtru
Add ECPublicKeyFetcher for NanoTDF key handling
0b225f1 
Introduced ECPublicKeyFetcher interface and its implementations to handle EC public key fetching. Updated SDK and nanotdf test cases to utilize the new interface, ensuring better abstraction and testability. Added validation for KID length and tag size in encryption methods.
@pflynn-virtru pflynn-virtru changed the title NanoTDF KID size enforcement fix(core): NanoTDF KID size enforcement Sep 5, 2024
@pflynn-virtru
Rename struct and add KID max length check.
2e695a3 
Renamed `RealECPublicKeyFetcher` to `EcPublicKeyFetcher` for consistency. Introduced a constant for the maximum KID length and added a check for KID length in the `createNanoTDF` function.
@pflynn-virtru pflynn-virtru marked this pull request as ready for review September 5, 2024 18:34
@pflynn-virtru pflynn-virtru requested review from a team as code owners September 5, 2024 18:34
@github-actions GitHub Actions

This comment has been minimized.

Sign in to view
jentfoo
jentfoo previously approved these changes Sep 5, 2024
View reviewed changes
lib/ocrypto/aes_gcm.go Outdated Show resolved Hide resolved
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Sep 5, 2024

Warning

This pull request does not reference any issues. Please add a reference to an issue in the body of the pull request description.

@pflynn-virtru pflynn-virtru requested a review from a team as a code owner September 5, 2024 20:22
@pflynn-virtru
Update expected error message for AES-GCM tag size
975c75a 
Adjusted the error message in nanotdf_test.go to specify valid tag sizes from 12 to 16 instead of 12 or 16, ensuring consistency with encryption standards.
strantalis
strantalis requested changes Sep 6, 2024
View reviewed changes
Copy link
Member

@strantalis strantalis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@pflynn-virtru I think there are unexpected changes in this pr?

auto-merge was automatically disabled October 30, 2024 19:35

Pull request was closed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@strantalis strantalis strantalis requested changes

@jentfoo jentfoo Awaiting requested review from jentfoo

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

NanoTDF KID size enforcement
3 participants
@pflynn-virtru @jentfoo @strantalis