mirror of
https://github.com/nspcc-dev/neofs-s3-gw.git
synced 2026-03-01 04:29:15 +00:00
Drop chacha20poly1305 dependency #498
Labels
No labels
I2
I2
I3
I4
S2
S3
S4
S4
U0
U1
U2
U2
U3
U4
U4
auth-mate
blocked
bug
config
dependencies
discussion
documentation
enhancement
epic
feature
go
good first issue
help wanted
performance
question
security
test
tree-service
tree-service
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
nspcc-dev/neofs-s3-gw#498
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @roman-khimov on GitHub (Mar 11, 2025).
Is your feature request related to a problem? Please describe.
I'm always frustrated when we have dependencies we don't really need. chacha20poly1305 was introduced in #80 along with ed25519 crypto. Then the key scheme was changed to 256r1 since that's what we have in Neo, NeoFS, etc. But chacha20poly1305 remained.
Describe the solution you'd like
There is nothing inherently wrong with it, but at the same time it's an additional dependency that can be easily avoided. We've got https://pkg.go.dev/crypto/cipher@go1.24.1#AEAD that works fine over standard AES (and handles random nonce internally as well).
Describe alternatives you've considered
Keep things as is, import and maintain x/crypto dependency that also pulls x/net that always has some bugs @dependabot wants to fix.
Context
#1080, the other thing we're using from x/crypto is hkdf, but it's a part of the standard Go 1.24.
@roman-khimov commented on GitHub (Mar 13, 2025):
See #1102 for some of the reasons as well.