From 31f4d7aa03e54b4c6778312c340e51297da17ded Mon Sep 17 00:00:00 2001 From: Frank Denis Date: Sun, 9 May 2021 16:16:38 +0200 Subject: [PATCH] Do not ignore ODoH encryption errors --- dnscrypt-proxy/odoh.go | 3 +++ 1 file changed, 3 insertions(+) diff --git a/dnscrypt-proxy/odoh.go b/dnscrypt-proxy/odoh.go index d05c2ac5..33b3df86 100644 --- a/dnscrypt-proxy/odoh.go +++ b/dnscrypt-proxy/odoh.go @@ -105,6 +105,9 @@ func (t ODoHTarget) encryptQuery(query []byte) (ODoHQuery, error) { aad := append([]byte{0x01}, t.keyID...) ciphertext, err := clientCtx.EncryptToServer(odohPlaintext, aad) + if err != nil { + return ODoHQuery{}, err + } encryptedMessage := encodeLengthValue(append(encryptedSharedSecret, ciphertext...)) odohMessage := append(append([]byte{0x01}, t.keyID...), encryptedMessage...)