From ce9ddc7cd7204a6d966dd20c7a5deef8a3161ebb Mon Sep 17 00:00:00 2001 From: ValarDragon Date: Sat, 28 Jul 2018 06:32:54 -0700 Subject: [PATCH] (squash this) Note not to overwrite aead's. --- docs/architecture/adr-015-symmetric-crypto.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/docs/architecture/adr-015-symmetric-crypto.md b/docs/architecture/adr-015-symmetric-crypto.md index fbaee7a1..7a587d18 100644 --- a/docs/architecture/adr-015-symmetric-crypto.md +++ b/docs/architecture/adr-015-symmetric-crypto.md @@ -64,6 +64,8 @@ In decryption, we read the `algo_name`, and then instantiate a new AEAD with the Then we call the AEAD's decrypt method on the provided nonce/ciphertext. `RegisterSymmetric` allows a downstream user to add their own desired AEAD to the symmetric package. +It will error if the AEAD name is already registered. +This prevents a malicious import from modifying / nullifying an AEAD at runtime. ## Implementation strategy