crypto/{ecdsa,rsa}: always use io.ReadFull with crypto/rand.Reader.

crypto/rand.Reader doesn't ensure that short reads don't happen. This change contains a couple of fixups where io.ReadFull wasn't being used with it. Change-Id: I3855b81f5890f2e703112eeea804aeba07b6a6b8 Reviewed-on: https://go-review.googlesource.com/7645 Reviewed-by: Minux Ma <minux@golang.org> Reviewed-by: Andrew Gerrand <adg@golang.org>
author: Adam Langley <agl@golang.org> 2015-03-16 16:42:12 -0700
committer: Adam Langley <agl@golang.org> 2015-03-18 00:37:48 +0000
commit: 123b38e105342ca65392ba8e20a089fe405b0791 (patch)
tree: de463e7f4316f298e4e441c6f5c00e66e75635bf /src/crypto/ecdsa/ecdsa.go
parent: e14339d34cab4ae7abd7d0f83aacff9eed516ea2 (diff)
download: go-123b38e105342ca65392ba8e20a089fe405b0791.tar.gz
go-123b38e105342ca65392ba8e20a089fe405b0791.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/crypto/ecdsa/ecdsa.go b/src/crypto/ecdsa/ecdsa.go
index 59902014df..d003f9d0b3 100644
--- a/src/crypto/ecdsa/ecdsa.go
+++ b/src/crypto/ecdsa/ecdsa.go
@@ -140,7 +140,7 @@ func Sign(rand io.Reader, priv *PrivateKey, hash []byte) (r, s *big.Int, err err
 		entropylen = 32
 	}
 	entropy := make([]byte, entropylen)
-	_, err = rand.Read(entropy)
+	_, err = io.ReadFull(rand, entropy)
 	if err != nil {
 		return
 	}
author	Adam Langley <agl@golang.org>	2015-03-16 16:42:12 -0700
committer	Adam Langley <agl@golang.org>	2015-03-18 00:37:48 +0000
commit	123b38e105342ca65392ba8e20a089fe405b0791 (patch)
tree	de463e7f4316f298e4e441c6f5c00e66e75635bf /src/crypto/ecdsa/ecdsa.go
parent	e14339d34cab4ae7abd7d0f83aacff9eed516ea2 (diff)
download	go-123b38e105342ca65392ba8e20a089fe405b0791.tar.gz go-123b38e105342ca65392ba8e20a089fe405b0791.zip