Commit 4aea3e71 authored by Joe Tsai's avatar Joe Tsai Committed by Joe Tsai

hash: document that the encoded state may contain input in plaintext

The cryptographic checksums operate in blocks of 64 or 128 bytes,
which means that the last 128 bytes or so of the input may be encoded
in its original (plaintext) form as part of the state.
Document this so users do not falsely assume that the encoded state
carries no reversible information about the input.

Change-Id: I823dbb87867bf0a77aa20f6ed7a615dbedab3715
Reviewed-on: https://go-review.googlesource.com/77372Reviewed-by: default avatarBrad Fitzpatrick <bradfitz@golang.org>
parent 032678e0
...@@ -14,6 +14,8 @@ import "io" ...@@ -14,6 +14,8 @@ import "io"
// encoding.BinaryUnmarshaler interfaces. Marshaling a hash implementation // encoding.BinaryUnmarshaler interfaces. Marshaling a hash implementation
// allows its internal state to be saved and used for additional processing // allows its internal state to be saved and used for additional processing
// later, without having to re-write the data previously written to the hash. // later, without having to re-write the data previously written to the hash.
// The hash state may contain portions of the input in its original form,
// which users are expected to handle for any possible security implications.
// //
// Compatibility: Any future changes to hash or crypto packages will endeavor // Compatibility: Any future changes to hash or crypto packages will endeavor
// to maintain compatibility with state encoded using previous versions. // to maintain compatibility with state encoded using previous versions.
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment