You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I used the crypto/rsa's OAEP facility but found it difficult to work out given the documentation. I am not crypto-savvy so some of the details may be obvious to those skilled in the art, but perhaps it makes it even more important to document well to avoid trouble from dangerous beginners like myself.
Some requests:
The package badly needs examples overall.
The comments on the constants are inscrutable.
The purpose of the noise source in EncryptOAEP is unclear. Moreover, it looks like it cannot ever be nil. What do its properties need to be?
Ditto for DecryptOAEP, although here the source can be nil, empirically. What is the relationship between this noise source and the one in EncryptOAEP, if any?
If DecryptOAEP succeeds, that is, gets no error, what does that mean? Is further validation required? (This is one where an expert almost certainly knows this, but it wouldn't hurt to say.)
The text was updated successfully, but these errors were encountered:
In some cases the documentation for functions in this package was
lacking from the beginning and, in order cases, the documentation didn't
keep pace as the package grew.
This change somewhat addresses that.
Updates #13711.
Change-Id: I25b2bb1fcd4658c5417671e23cf8e644d08cb9ab
Reviewed-on: https://go-review.googlesource.com/18486
Reviewed-by: Rob Pike <r@golang.org>
Reviewed-by: Andrew Gerrand <adg@golang.org>
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org>
I used the crypto/rsa's OAEP facility but found it difficult to work out given the documentation. I am not crypto-savvy so some of the details may be obvious to those skilled in the art, but perhaps it makes it even more important to document well to avoid trouble from dangerous beginners like myself.
Some requests:
The package badly needs examples overall.
The comments on the constants are inscrutable.
The purpose of the noise source in EncryptOAEP is unclear. Moreover, it looks like it cannot ever be nil. What do its properties need to be?
Ditto for DecryptOAEP, although here the source can be nil, empirically. What is the relationship between this noise source and the one in EncryptOAEP, if any?
If DecryptOAEP succeeds, that is, gets no error, what does that mean? Is further validation required? (This is one where an expert almost certainly knows this, but it wouldn't hurt to say.)
The text was updated successfully, but these errors were encountered: