Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tls1prf: require callers to pass in the result buffer #45

Merged
merged 3 commits into from
Sep 19, 2023
Merged

tls1prf: require callers to pass in the result buffer #45

merged 3 commits into from
Sep 19, 2023

Conversation

qmuntal
Copy link
Member

@qmuntal qmuntal commented Sep 8, 2023

This PR updates TLS1PRF to accept a byte slice parameter where to write the output. This avoids allocating a new slice on each function call and integrates better with the standard library, which expects the PRF to update an already existing slice: https://github.com/golang/go/blob/2f0b28da1900909a2c3ddf646bb508fc7effb8f2/src/crypto/tls/prf.go#L68.

To make is clear, the current code would have to be integrated like this:

func prf12(hashFunc func() hash.Hash) func(result, secret, label, seed []byte) error {
	return func(result, secret, label, seed []byte) error {
		if backend.Enabled && backend.SupportsTLS1PRF() {
			out, err := backend.TLS1PRF(secret, label, seed, len(result), hashFunc)
			if err != nil {
				return fmt.Errorf("crypto/tls: prf12: %v", err)
			}
			copy(result, out)
			return nil
		}
                ...
	}
}

While with the new approach, it would like this:

func prf12(hashFunc func() hash.Hash) func(result, secret, label, seed []byte) error {
	return func(result, secret, label, seed []byte) error {
		if backend.Enabled && backend.SupportsTLS1PRF() {
			err := backend.TLS1PRF(result, secret, label, seed, len(result), hashFunc)
			if err != nil {
				return fmt.Errorf("crypto/tls: prf12: %v", err)
			}
			return nil
		}
                ...
	}
}

gdams
gdams reviewed Sep 8, 2023
View reviewed changes
cng/tls1prf.go Show resolved Hide resolved
gdams
gdams reviewed Sep 8, 2023
View reviewed changes
cng/tls1prf.go Show resolved Hide resolved
@qmuntal qmuntal mentioned this pull request Sep 8, 2023
Merged
@qmuntal qmuntal requested a review from gdams September 8, 2023 14:11
dagood
dagood reviewed Sep 8, 2023
View reviewed changes
cng/tls1prf.go Outdated Show resolved Hide resolved
dagood
dagood approved these changes Sep 12, 2023
View reviewed changes
cng/tls1prf.go Outdated Show resolved Hide resolved
@qmuntal @dagood
Update cng/tls1prf.go
9ac6cb8 
Co-authored-by: Davis Goodin <[email protected]>
@qmuntal qmuntal merged commit 4899d53 into main Sep 19, 2023
25 checks passed
@qmuntal qmuntal deleted the tlsprf branch September 19, 2023 19:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gdams gdams gdams approved these changes

@dagood dagood dagood approved these changes

@jaredpar jaredpar Awaiting requested review from jaredpar

@chsienki chsienki Awaiting requested review from chsienki

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@qmuntal @dagood @gdams