Update CKR

2024-11-10 07:20:39 +03:00 · 2020-02-16 23:26:18 +00:00 · 2020-02-16 23:26:18 +00:00 · d16505e417
commit d16505e417
parent 63936c11b5
1 changed files with 2 additions and 4 deletions
--- a/src/tuntap/conn.go
+++ b/src/tuntap/conn.go
@ -92,8 +92,7 @@ func (s *tunConn) _read(bs []byte) (err error) {
 			// The destination address isn't in our CKR allowed range
 			skip = true
 		} else if key, err := s.tun.ckr.getPublicKeyForAddress(srcAddr, addrlen); err == nil {
-			srcNodeID := crypto.GetNodeID(&key)
+			if *s.conn.RemoteAddr().(*crypto.BoxPubKey) == key {
 			if *s.conn.RemoteAddr().(*crypto.NodeID) == *srcNodeID {
 				// This is the one allowed CKR case, where source and destination addresses are both good
 			} else {
 				// The CKR key associated with this address doesn't match the sender's NodeID
@ -169,8 +168,7 @@ func (s *tunConn) _write(bs []byte) (err error) {
 			// The source address isn't in our CKR allowed range
 			skip = true
 		} else if key, err := s.tun.ckr.getPublicKeyForAddress(dstAddr, addrlen); err == nil {
-			dstNodeID := crypto.GetNodeID(&key)
+			if *s.conn.RemoteAddr().(*crypto.BoxPubKey) == key {
 			if *s.conn.RemoteAddr().(*crypto.NodeID) == *dstNodeID {
 				// This is the one allowed CKR case, where source and destination addresses are both good
 			} else {
 				// The CKR key associated with this address doesn't match the sender's NodeID