comments uncovering my lies

benesjan · benesjan · commit 03eba9f17393 · 2025-08-29T09:05:17.000Z
diff --git a/noir-projects/aztec-nr/aztec/src/event/event_interface.nr b/noir-projects/aztec-nr/aztec/src/event/event_interface.nr
@@ -162,7 +162,10 @@ where
         // oracle which we don't use for anything besides its side effects, therefore this is safe to call.
         unsafe { emit_offchain_message(ciphertext, recipient) };
     } else {
-        // When delivering through the private log stream, tagging is used so we must prefix the ciphertext with a tag.
+        // SAFETY: Despite being called CONSTRAINED_ONCHAIN, this delivery mode is currently NOT fully constrained.
+        // The tag prefixing is unconstrained, meaning a malicious sender could manipulate the tag to prevent
+        // recipient decryption. This is a significant security risk that needs to be addressed.
+        // TODO(#14565): Implement proper constrained tag prefixing to make this truly CONSTRAINED_ONCHAIN
         let log_content = prefix_with_tag(ciphertext, recipient);
 
         context.emit_private_log(log_content, log_content.len());
diff --git a/noir-projects/aztec-nr/aztec/src/messages/logs/utils.nr b/noir-projects/aztec-nr/aztec/src/messages/logs/utils.nr
@@ -3,6 +3,7 @@ use crate::oracle::notes::{
 };
 use dep::protocol_types::address::AztecAddress;
 
+// TODO(#14565): Add constrained tagging
 pub(crate) fn prefix_with_tag<let L: u32>(
     log_without_tag: [Field; L],
     recipient: AztecAddress,
