Skip to content

Degrade mode for go 1.24 #24

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
gearnode wants to merge 1 commit into from
Closed

Degrade mode for go 1.24 #24

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion privatebin.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -489,7 +489,7 @@ func decrypt(masterKey []byte, ct string, adata []byte, spec Spec) ([]byte, erro

switch spec.Mode {
case EncryptionModeGCM:
gcm, err = newGCMWithNonceAndTagSize(
gcm, err = newGCM(
cipherBlock,
len(spec.IV),
spec.TagSize/8,
Expand Down
37 changes: 25 additions & 12 deletions utils.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,24 +75,23 @@ func defaultPooledClient() *http.Client {
}

// Golang standard library does not expose GCM with custom nonce and
// tag size, even if it supported. Following code is a backport from
// the Golang crypto module to allowing it.
// tag size in Go 1.24 and later. The gcmAble interface was removed.
// For compatibility, we'll fallback to using the standard GCM implementation
// and validate parameters.
//
// References:
// - https://go-review.googlesource.com/c/go/+/116435
// - https://github.com/golang/go/issues?q=NewGCMWithNonceAndTagSize
// - https://github.com/golang/go/issues/42470

const (
gcmBlockSize = 16
gcmMinimumTagSize = 12 // NIST SP 800-38D recommends tags with 12 or more bytes.
gcmBlockSize = 16
gcmMinimumTagSize = 12 // NIST SP 800-38D recommends tags with 12 or more bytes.
gcmStandardNonceSize = 12 // Standard GCM nonce size
gcmStandardTagSize = 16 // Standard GCM tag size
)

type gcmAble interface {
NewGCM(nonceSize, tagSize int) (cipher.AEAD, error)
}

func newGCMWithNonceAndTagSize(cipher cipher.Block, nonceSize, tagSize int) (cipher.AEAD, error) {
func newGCM(cipherBlock cipher.Block, nonceSize, tagSize int) (cipher.AEAD, error) {
if tagSize < gcmMinimumTagSize || tagSize > gcmBlockSize {
return nil, errors.New("cipher: incorrect tag size given to GCM")
}
Expand All @@ -101,9 +100,23 @@ func newGCMWithNonceAndTagSize(cipher cipher.Block, nonceSize, tagSize int) (cip
return nil, errors.New("cipher: the nonce can't have zero length, or the security of the key will be immediately compromised")
}

if cipher, ok := cipher.(gcmAble); ok {
return cipher.NewGCM(nonceSize, tagSize)
// In Go 1.24+, we need to use the standard cipher.NewGCM functions
// Check if we can use standard GCM (nonce=12, tag=16)
if nonceSize == gcmStandardNonceSize && tagSize == gcmStandardTagSize {
return cipher.NewGCM(cipherBlock)
}

// For non-standard nonce sizes, use NewGCMWithNonceSize if available
if tagSize == gcmStandardTagSize {
return cipher.NewGCMWithNonceSize(cipherBlock, nonceSize)
}

// For non-standard tag sizes, use NewGCMWithTagSize if available
if nonceSize == gcmStandardNonceSize {
return cipher.NewGCMWithTagSize(cipherBlock, tagSize)
}

panic("non GCM crypto is not supported")
// If both nonce and tag sizes are non-standard, this is not supported
// in Go 1.24+ through the standard library
return nil, errors.New("cipher: custom nonce and tag sizes are not supported together in Go 1.24+")
}
Loading