crypto/tls: remove unused hashForClientCertificate param

2024-09-05 07:54:46 +00:00 · 2022-04-13 15:51:32 +03:00 · 2022-04-13 15:51:32 +03:00 · d2a1ddccbd
parent b55a2fb3b0
commit d2a1ddccbd
3 changed files with 3 additions and 3 deletions
--- a/src/crypto/tls/handshake_client.go
+++ b/src/crypto/tls/handshake_client.go
@ -624,7 +624,7 @@ func (hs *clientHandshakeState) doFullHandshake() error {
 			}
 		}

-		signed := hs.finishedHash.hashForClientCertificate(sigType, sigHash, hs.masterSecret)
+		signed := hs.finishedHash.hashForClientCertificate(sigType, sigHash)
 		signOpts := crypto.SignerOpts(sigHash)
 		if sigType == signatureRSAPSS {
 			signOpts = &rsa.PSSOptions{SaltLength: rsa.PSSSaltLengthEqualsHash, Hash: sigHash}
--- a/src/crypto/tls/handshake_server.go
+++ b/src/crypto/tls/handshake_server.go
@ -661,7 +661,7 @@ func (hs *serverHandshakeState) doFullHandshake() error {
 			}
 		}

-		signed := hs.finishedHash.hashForClientCertificate(sigType, sigHash, hs.masterSecret)
+		signed := hs.finishedHash.hashForClientCertificate(sigType, sigHash)
 		if err := verifyHandshakeSignature(sigType, pub, sigHash, signed, certVerify.signature); err != nil {
 			c.sendAlert(alertDecryptError)
 			return errors.New("tls: invalid signature by the client certificate: " + err.Error())
--- a/src/crypto/tls/prf.go
+++ b/src/crypto/tls/prf.go
@ -215,7 +215,7 @@ func (h finishedHash) serverSum(masterSecret []byte) []byte {

 // hashForClientCertificate returns the handshake messages so far, pre-hashed if
 // necessary, suitable for signing by a TLS client certificate.
-func (h finishedHash) hashForClientCertificate(sigType uint8, hashAlg crypto.Hash, masterSecret []byte) []byte {
+func (h finishedHash) hashForClientCertificate(sigType uint8, hashAlg crypto.Hash) []byte {
 	if (h.version >= VersionTLS12 || sigType == signatureEd25519) && h.buffer == nil {
 		panic("tls: handshake hash for a client certificate requested after discarding the handshake buffer")
 	}