crypto/rand: Documentation for errors #54980
Labels
Documentation
NeedsInvestigation
Someone must examine and confirm this is a valid issue and not a duplicate of an existing one.
Milestone
Comments
mknyszek
added
the
NeedsInvestigation
|
CC @golang/security |
|
Prime does mention that its errors comes from rand.Read. It may be confusing to figure out if we're likely to have errors "because CSPRNGs inherently use system calls that may fail", or "because we're accepting any custom io.Reader in Int and Prime", or if "Reader cannot return errors, but we still want to stick to the io.Reader interface". |
In general, there is no safe non-nil error result from |
|
I would be in favour of having |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The 3 exported funcs Int, Prime, Read return an error, but the current documentation doesn't say why and when errors might occur. Also their is no guidance about how to deal with a non-nil error: would a caller-side retry policy make sense?
I suggest we write a short explanation about why errors are part of the API at all, what such errors would look like, and how to deal with them.
The text was updated successfully, but these errors were encountered: