forked from quic-go/quic-go
add an optimized implementation of HKDF-Expand-Label
The standard library uses cryptobyte.Builder in hkdfExpandLabel. This costs quite a bit of performance. Using an optimized implementation speeds up the initialization of the AEAD used for the Initial encryption level by ~15%.
This commit is contained in:
Marten Seemann
31
internal/handshake/hkdf_test.go
Normal file
31
internal/handshake/hkdf_test.go
Normal file
@@ -0,0 +1,31 @@
|
||||
package handshake
|
||||
|
||||
import (
|
||||
"crypto"
|
||||
"crypto/rand"
|
||||
mrand "math/rand"
|
||||
|
||||
"github.com/marten-seemann/qtls"
|
||||
|
||||
. "github.com/onsi/ginkgo"
|
||||
. "github.com/onsi/gomega"
|
||||
)
|
||||
|
||||
var _ = Describe("Initial AEAD using AES-GCM", func() {
|
||||
It("gets the same results as qtls", func() {
|
||||
for i := 0; i < 20; i++ {
|
||||
secret := make([]byte, 32)
|
||||
rand.Read(secret)
|
||||
context := make([]byte, mrand.Intn(100))
|
||||
rand.Read(context)
|
||||
labelB := make([]byte, mrand.Intn(100))
|
||||
rand.Read(labelB)
|
||||
label := string(labelB)
|
||||
length := mrand.Intn(100)
|
||||
|
||||
expanded := hkdfExpandLabel(crypto.SHA256, secret, context, label, length)
|
||||
expandedQTLS := qtls.HkdfExpandLabel(crypto.SHA256, secret, context, label, length)
|
||||
Expect(expanded).To(Equal(expandedQTLS))
|
||||
}
|
||||
})
|
||||
})
|
||||
Reference in New Issue
Block a user