Skip to content

tls1prf: require callers to pass in the result buffer #45

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Sep 19, 2023
Merged

tls1prf: require callers to pass in the result buffer #45

merged 3 commits into from
Sep 19, 2023

Conversation

@qmuntal
Copy link
Member

@qmuntal qmuntal commented Sep 8, 2023

This PR updates TLS1PRF to accept a byte slice parameter where to write the output. This avoids allocating a new slice on each function call and integrates better with the standard library, which expects the PRF to update an already existing slice: https://github.com/golang/go/blob/2f0b28da1900909a2c3ddf646bb508fc7effb8f2/src/crypto/tls/prf.go#L68.

To make is clear, the current code would have to be integrated like this:

func prf12(hashFunc func() hash.Hash) func(result, secret, label, seed []byte) error {
	return func(result, secret, label, seed []byte) error {
		if backend.Enabled && backend.SupportsTLS1PRF() {
			out, err := backend.TLS1PRF(secret, label, seed, len(result), hashFunc)
			if err != nil {
				return fmt.Errorf("crypto/tls: prf12: %v", err)
			}
			copy(result, out)
			return nil
		}
                ...
	}
}

While with the new approach, it would like this:

func prf12(hashFunc func() hash.Hash) func(result, secret, label, seed []byte) error {
	return func(result, secret, label, seed []byte) error {
		if backend.Enabled && backend.SupportsTLS1PRF() {
			err := backend.TLS1PRF(result, secret, label, seed, len(result), hashFunc)
			if err != nil {
				return fmt.Errorf("crypto/tls: prf12: %v", err)
			}
			return nil
		}
                ...
	}
}

gdams
gdams reviewed Sep 8, 2023
View reviewed changes
gdams
gdams reviewed Sep 8, 2023
View reviewed changes
@qmuntal qmuntal mentioned this pull request Sep 8, 2023
Merged
@qmuntal qmuntal requested a review from gdams September 8, 2023 14:11
dagood
dagood reviewed Sep 8, 2023
View reviewed changes
dagood
dagood approved these changes Sep 12, 2023
View reviewed changes
@qmuntal @dagood
Update cng/tls1prf.go
9ac6cb8 
Co-authored-by: Davis Goodin <[email protected]>
@qmuntal qmuntal merged commit 4899d53 into main Sep 19, 2023
@qmuntal qmuntal deleted the tlsprf branch September 19, 2023 19:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dagood dagood dagood approved these changes

@gdams gdams gdams approved these changes

@jaredpar jaredpar Awaiting requested review from jaredpar

@chsienki chsienki Awaiting requested review from chsienki

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@qmuntal @dagood @gdams