mirror of
https://github.com/daeuniverse/dae.git
synced 2025-01-10 07:17:00 +07:00
32 lines
934 B
Go
32 lines
934 B
Go
|
// Modified from https://github.com/quic-go/quic-go/blob/58cedf7a4f/internal/handshake/hkdf.go
|
||
|
|
||
|
package quicutils
|
||
|
|
||
|
import (
|
||
|
"encoding/binary"
|
||
|
"github.com/mzz2017/softwind/pool"
|
||
|
"golang.org/x/crypto/hkdf"
|
||
|
"hash"
|
||
|
"io"
|
||
|
)
|
||
|
|
||
|
// HkdfExpandLabelFromPool HKDF expands a label.
|
||
|
// Since this implementation avoids using a cryptobyte.Builder, it is about 15% faster than the
|
||
|
// hkdfExpandLabel in the standard library.
|
||
|
func HkdfExpandLabelFromPool(h func() hash.Hash, secret, label []byte, context []byte, length int) ([]byte, error) {
|
||
|
b := pool.Get(3 + 6 + len(label) + 1 + len(context))
|
||
|
defer pool.Put(b)
|
||
|
binary.BigEndian.PutUint16(b, uint16(length))
|
||
|
b[2] = uint8(6 + len(label))
|
||
|
copy(b[3:], "tls13 ")
|
||
|
copy(b[9:], label)
|
||
|
b[9+len(label)] = uint8(len(context))
|
||
|
copy(b[10+len(label):], context)
|
||
|
|
||
|
out := pool.Get(length)
|
||
|
if _, err := io.ReadFull(hkdf.Expand(h, secret, b), out); err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
return out, nil
|
||
|
}
|