commit | e84da0312774c21d64ee2317962ef669b27ffb41 | [log] [tgz] |
---|---|---|
author | Filippo Valsorda <filippo@golang.org> | Wed Oct 24 09:26:30 2018 -0400 |
committer | Filippo Valsorda <filippo@golang.org> | Thu Oct 25 21:37:31 2018 +0000 |
tree | 1a8df200eab1ee6a568c2ba9498926b93c03a0ae | |
parent | d2c3f1d8b9537a0fec2a2d4b1df405ac091cd7f3 [diff] |
hkdf: add Extract and Expand RFC 5869, Section 3.3 suggests it might be sometimes appropriate to use Expand without Extract, and it is reasonable to reuse (secret, salt) with different info values, in which case the Extract can be performed once as an optimization. TLS 1.3 also needs direct access to both Extract and Expand. pseudorandomKey is ugly to look at, but that's intentional, as it signals that this should have non-obvious properties to the user. The docs will make it clear it's not the thing you should use in most cases. Fixes golang/go#28237 Change-Id: Ib43ae8cdde0663aa4752172c39aadfb0e1c35f10 Reviewed-on: https://go-review.googlesource.com/c/144398 Reviewed-by: Adam Langley <agl@golang.org>
This repository holds supplementary Go cryptography libraries.
The easiest way to install is to run go get -u golang.org/x/crypto/...
. You can also manually git clone the repository to $GOPATH/src/golang.org/x/crypto
.
This repository uses Gerrit for code changes. To learn how to submit changes to this repository, see https://golang.org/doc/contribute.html.
The main issue tracker for the crypto repository is located at https://github.com/golang/go/issues. Prefix your issue with “x/crypto:” in the subject line, so it is easy to find.
Note that contributions to the cryptography package receive additional scrutiny due to their sensitive nature. Patches may take longer than normal to receive feedback.