crypto: API #2841
Labels
Milestone
Comments
http://golang.org/cl/5627045 http://golang.org/cl/5629044 Reset(): Since the garbage collector can copy memory around at will, and it can be swapped out etc, I fear that Reset() is promising something that we can't deliver and so should be removed. The various errors in RSA might be a little vague (and need the package name at the beginning of the error), but I've tried to follow the idea that distinct errors are useful when code might want to behave differently based on that error. So VerificationError means that the signature is bust, which might be useful to distinguish from "I/O error from the random source" and "we don't support this hash function", which are other errors that can come from signature verification. I don't care much either way however if you want to flatten them. SetWriteDeadline seemed like a longer change so I left that for a different CL. |
Thanks.
Removing Reset sounds fine; then we can still make the cipher
implementations return cipher.Block.
Regarding the errors, my suggestion is that instead of
// A VerificationError represents a failure to verify a signature.
// It is deliberately vague to avoid adaptive attacks.
type VerificationError struct{}
func (VerificationError) Error() string { return "RSA verification error" }
which people have to check for iwth
if _, ok := err.(rsa.VerificationError); ok {
you can now write
// ErrVerification represents a failure to verify a signature.
// It is deliberately vague to avoid adaptive attacks.
var ErrVerification = errors.New("RSA verification error")
and people can check for it with
if err == rsa.ErrVerification {
|
I hope this is the appropriate place to add/report this. The error returned after attempting to serialize an unsigned public key could be more accurate/accurate. The error text is "Signature: need to call SignRSA or SignDSA before Serialize", but "SignRSA" and "SignDSA" do not exist anywhere else in the source tree. They appear to have been rolled into (*Signature).Sign. So error and godoc comment should probably be changed to reflect this: error "Signature: need to call Sign, SignKey or SignUserId before Serialize", comment "Sign, SignKey or SignUserId must have been called first. " Should openpgp/errors.unknownIssuerError return "signature made by unknown entity" rather than "signature make by unknown entity"? |
dan.kortschak: thanks for the report. Will fix once a pending CL for the same files is submitted. Owner changed to @agl. |
The recent commit http://code.google.com/p/go/source/detail?r=9d7addec2635c403f33a3344444fbaa813ed81d1 seems to have removed a number of updates to go1.tmpl and go1.html, probably unintentionally. |
|
This issue was closed by revision golang/crypto@63736bd. Status changed to Fixed. |
cheffo
pushed a commit
to cheffo/crypto
that referenced
this issue
Mar 4, 2015
Fixes golang/go#2841. R=golang-dev, rsc CC=golang-dev https://golang.org/cl/5688054
benburkert
pushed a commit
to benburkert/openpgp
that referenced
this issue
Feb 29, 2016
Fixes golang/go#2841. R=golang-dev, rsc CC=golang-dev https://golang.org/cl/5688054
c-expert-zigbee
pushed a commit
to c-expert-zigbee/crypto_go
that referenced
this issue
Mar 28, 2022
Fixes golang/go#2841. R=golang-dev, rsc CC=golang-dev https://golang.org/cl/5688054
c-expert-zigbee
added a commit
to c-expert-zigbee/crypto_go
that referenced
this issue
Mar 29, 2022
Fixes golang/go#2841. R=golang-dev, rsc CC=golang-dev https://golang.org/cl/5688054
BiiChris
pushed a commit
to BiiChris/crypto
that referenced
this issue
Sep 15, 2023
Fixes golang/go#2841. R=golang-dev, rsc CC=golang-dev https://golang.org/cl/5688054
desdeel2d0m
added a commit
to desdeel2d0m/crypto
that referenced
this issue
Jul 1, 2024
Fixes golang/go#2841. R=golang-dev, rsc CC=golang-dev https://golang.org/cl/5688054
This issue was closed.
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
The comments in the type crypto.Hash constants need to have import paths updated. hash.New should probably panic where it currently returns nil. We can add a separate Available() bool method on Hash. The various cipher docs all say the same thing. Let's add Reset() to the cipher.Block interface and then these all get much shorter: aes.NewCipher returns (cipher.Block, error) instead of its own type, just like we do for the hash functions. That also has the benefit of pointing people toward the crypto/cipher package, which they should be using anyway. The warning about not inadvertently inventing ECB mode can go in one place, on the cipher.Block interface doc comment. crypto/cipher: NewCBCDecrypter says 'as must', should be 'and must'. crypto/cipher: move the OCFB modes into go.crypto/openpgp? They seem out of place here and I assume they are not using internals of package cipher. crypto/des: the doc comments on Encrypt, Decrypt should begin with those words. crypto/dsa: ErrInvalidPublicKey can use errors.New instead of a custom type. crypto/rsa: DecryptionError, MessageTooLongError, VerificationError are not interesting as types (they are intentionally vague). Can replace with ErrDecrypt = errors.New("decryption failed") etc. crypto/rsa: DecryptOAEP: s/random/rand/ to match doc comment and other functions. crypto/rsa: DecryptPKCS1v15SessionKey's doc comment ends abruptly, after a comma. crypto/tls: Conn should implement SetWriteDeadline. Any write failure can be sticky (all future writes fail), but otherwise there's no way to time out. crypto/tls: unclear whether *Listener type is needed. Could rename to listener (unexported) and make the Listen and NewListener functions return net.Listener. crypto/x509/pkix: missing doc for AttrTypeAndValue.The text was updated successfully, but these errors were encountered: