From eefd4529e9643954674064c5f1d4b0a23b04a5d5 Mon Sep 17 00:00:00 2001
From: Ville Vesilehto <ville@vesilehto.fi>
Date: Tue, 8 Aug 2023 20:50:54 +0300
Subject: [PATCH] chore: avoid unnecessary byte/string conversion calls
 (#21854)

* chore: avoid unnecessary conversion calls

* add changelog entry

---------

Co-authored-by: Violet Hynes <violet.hynes@hashicorp.com>
---
 changelog/21854.txt                              |  3 +++
 command/agent/cert_end_to_end_test.go            |  4 ++--
 command/agentproxyshared/cache/lease_cache.go    |  2 +-
 command/base_helpers_test.go                     |  4 ++--
 command/policy_fmt_test.go                       |  8 ++++----
 http/forwarding_bench_test.go                    |  4 ++--
 http/forwarding_test.go                          | 16 ++++++++--------
 .../configutil/encrypt_decrypt_test.go           |  2 +-
 plugins/database/redshift/redshift_test.go       |  2 +-
 vault/testing.go                                 |  4 ++--
 10 files changed, 26 insertions(+), 23 deletions(-)
 create mode 100644 changelog/21854.txt

diff --git a/changelog/21854.txt b/changelog/21854.txt
new file mode 100644
index 0000000000..2ab5acde88
--- /dev/null
+++ b/changelog/21854.txt
@@ -0,0 +1,3 @@
+```release-note:improvement
+core: use Go stdlib functionalities instead of explicit byte/string conversions
+```
diff --git a/command/agent/cert_end_to_end_test.go b/command/agent/cert_end_to_end_test.go
index 4760417f7c..3b5e017f25 100644
--- a/command/agent/cert_end_to_end_test.go
+++ b/command/agent/cert_end_to_end_test.go
@@ -424,7 +424,7 @@ func TestCertEndToEnd_CertsInConfig(t *testing.T) {
 		t.Fatal(err)
 	}
 	defer os.Remove(leafCertFile.Name())
-	if _, err := leafCertFile.Write([]byte(leafCertPEM)); err != nil {
+	if _, err := leafCertFile.WriteString(leafCertPEM); err != nil {
 		t.Fatal(err)
 	}
 	if err := leafCertFile.Close(); err != nil {
@@ -436,7 +436,7 @@ func TestCertEndToEnd_CertsInConfig(t *testing.T) {
 		t.Fatal(err)
 	}
 	defer os.Remove(leafCertKeyFile.Name())
-	if _, err := leafCertKeyFile.Write([]byte(leafCertKeyPEM)); err != nil {
+	if _, err := leafCertKeyFile.WriteString(leafCertKeyPEM); err != nil {
 		t.Fatal(err)
 	}
 	if err := leafCertKeyFile.Close(); err != nil {
diff --git a/command/agentproxyshared/cache/lease_cache.go b/command/agentproxyshared/cache/lease_cache.go
index 3bcb58002a..420dec3a21 100644
--- a/command/agentproxyshared/cache/lease_cache.go
+++ b/command/agentproxyshared/cache/lease_cache.go
@@ -579,7 +579,7 @@ func computeIndexID(req *SendRequest) (string, error) {
 
 	// Append req.Token into the byte slice. This is needed since auto-auth'ed
 	// requests sets the token directly into SendRequest.Token
-	if _, err := b.Write([]byte(req.Token)); err != nil {
+	if _, err := b.WriteString(req.Token); err != nil {
 		return "", fmt.Errorf("failed to write token to hash input: %w", err)
 	}
 
diff --git a/command/base_helpers_test.go b/command/base_helpers_test.go
index 50cd26441f..a02d1c2ea3 100644
--- a/command/base_helpers_test.go
+++ b/command/base_helpers_test.go
@@ -61,7 +61,7 @@ func TestParseArgsData(t *testing.T) {
 		if err != nil {
 			t.Fatal(err)
 		}
-		f.Write([]byte(`{"foo":"bar"}`))
+		f.WriteString(`{"foo":"bar"}`)
 		f.Close()
 		defer os.Remove(f.Name())
 
@@ -82,7 +82,7 @@ func TestParseArgsData(t *testing.T) {
 		if err != nil {
 			t.Fatal(err)
 		}
-		f.Write([]byte(`bar`))
+		f.WriteString(`bar`)
 		f.Close()
 		defer os.Remove(f.Name())
 
diff --git a/command/policy_fmt_test.go b/command/policy_fmt_test.go
index 89ed5215b6..ce4d9b5a6e 100644
--- a/command/policy_fmt_test.go
+++ b/command/policy_fmt_test.go
@@ -89,7 +89,7 @@ path "secret" {
 			t.Fatal(err)
 		}
 		defer os.Remove(f.Name())
-		if _, err := f.Write([]byte(policy)); err != nil {
+		if _, err := f.WriteString(policy); err != nil {
 			t.Fatal(err)
 		}
 		f.Close()
@@ -132,7 +132,7 @@ path "secret" {
 			t.Fatal(err)
 		}
 		defer os.Remove(f.Name())
-		if _, err := f.Write([]byte(policy)); err != nil {
+		if _, err := f.WriteString(policy); err != nil {
 			t.Fatal(err)
 		}
 		f.Close()
@@ -167,7 +167,7 @@ path "secret" {
 			t.Fatal(err)
 		}
 		defer os.Remove(f.Name())
-		if _, err := f.Write([]byte(policy)); err != nil {
+		if _, err := f.WriteString(policy); err != nil {
 			t.Fatal(err)
 		}
 		f.Close()
@@ -202,7 +202,7 @@ path "secret" {
 			t.Fatal(err)
 		}
 		defer os.Remove(f.Name())
-		if _, err := f.Write([]byte(policy)); err != nil {
+		if _, err := f.WriteString(policy); err != nil {
 			t.Fatal(err)
 		}
 		f.Close()
diff --git a/http/forwarding_bench_test.go b/http/forwarding_bench_test.go
index 0c3f5e2a28..20af552c24 100644
--- a/http/forwarding_bench_test.go
+++ b/http/forwarding_bench_test.go
@@ -59,7 +59,7 @@ func BenchmarkHTTP_Forwarding_Stress(b *testing.B) {
 	}
 
 	req, err := http.NewRequest("POST", fmt.Sprintf("https://127.0.0.1:%d/v1/sys/mounts/transit", cores[0].Listeners[0].Address.Port),
-		bytes.NewBuffer([]byte("{\"type\": \"transit\"}")))
+		bytes.NewBufferString("{\"type\": \"transit\"}"))
 	if err != nil {
 		b.Fatal(err)
 	}
@@ -92,7 +92,7 @@ func BenchmarkHTTP_Forwarding_Stress(b *testing.B) {
 		numOps++
 	}
 
-	doReq(b, "POST", host+"keys/test1", bytes.NewBuffer([]byte("{}")))
+	doReq(b, "POST", host+"keys/test1", bytes.NewBufferString("{}"))
 	keyUrl := host + "encrypt/test1"
 	reqBuf := []byte(fmt.Sprintf("{\"plaintext\": \"%s\"}", testPlaintextB64))
 
diff --git a/http/forwarding_test.go b/http/forwarding_test.go
index 51cc2c0e01..fd4d82bcbe 100644
--- a/http/forwarding_test.go
+++ b/http/forwarding_test.go
@@ -179,7 +179,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 
 	// core.Logger().Printf("[TRACE] mounting transit")
 	req, err := http.NewRequest("POST", fmt.Sprintf("https://127.0.0.1:%d/v1/sys/mounts/transit", cores[0].Listeners[0].Address.Port),
-		bytes.NewBuffer([]byte("{\"type\": \"transit\"}")))
+		bytes.NewBufferString("{\"type\": \"transit\"}"))
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -272,7 +272,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 		for _, chosenHost := range hosts {
 			for _, chosenKey := range keys {
 				// Try to write the key to make sure it exists
-				_, err := doReq("POST", chosenHost+"keys/"+fmt.Sprintf("%s-%t", chosenKey, parallel), bytes.NewBuffer([]byte("{}")))
+				_, err := doReq("POST", chosenHost+"keys/"+fmt.Sprintf("%s-%t", chosenKey, parallel), bytes.NewBufferString("{}"))
 				if err != nil {
 					panic(err)
 				}
@@ -283,7 +283,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 			chosenHost = hosts[id%len(hosts)]
 			chosenKey = fmt.Sprintf("key-%t-%d", parallel, id)
 
-			_, err := doReq("POST", chosenHost+"keys/"+chosenKey, bytes.NewBuffer([]byte("{}")))
+			_, err := doReq("POST", chosenHost+"keys/"+chosenKey, bytes.NewBufferString("{}"))
 			if err != nil {
 				panic(err)
 			}
@@ -320,7 +320,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 			// Encrypt our plaintext and store the result
 			case "encrypt":
 				// core.Logger().Printf("[TRACE] %s, %s, %d", chosenFunc, chosenKey, id)
-				resp, err := doReq("POST", chosenHost+"encrypt/"+chosenKey, bytes.NewBuffer([]byte(fmt.Sprintf("{\"plaintext\": \"%s\"}", testPlaintextB64))))
+				resp, err := doReq("POST", chosenHost+"encrypt/"+chosenKey, bytes.NewBufferString(fmt.Sprintf("{\"plaintext\": \"%s\"}", testPlaintextB64)))
 				if err != nil {
 					panic(err)
 				}
@@ -347,7 +347,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 				}
 
 				// core.Logger().Printf("[TRACE] %s, %s, %d", chosenFunc, chosenKey, id)
-				resp, err := doReq("POST", chosenHost+"decrypt/"+chosenKey, bytes.NewBuffer([]byte(fmt.Sprintf("{\"ciphertext\": \"%s\"}", ct))))
+				resp, err := doReq("POST", chosenHost+"decrypt/"+chosenKey, bytes.NewBufferString(fmt.Sprintf("{\"ciphertext\": \"%s\"}", ct)))
 				if err != nil {
 					panic(err)
 				}
@@ -376,7 +376,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 			// Rotate to a new key version
 			case "rotate":
 				// core.Logger().Printf("[TRACE] %s, %s, %d", chosenFunc, chosenKey, id)
-				_, err := doReq("POST", chosenHost+"keys/"+chosenKey+"/rotate", bytes.NewBuffer([]byte("{}")))
+				_, err := doReq("POST", chosenHost+"keys/"+chosenKey+"/rotate", bytes.NewBufferString("{}"))
 				if err != nil {
 					panic(err)
 				}
@@ -413,7 +413,7 @@ func testHTTP_Forwarding_Stress_Common(t *testing.T, parallel bool, num uint32)
 
 				// core.Logger().Printf("[TRACE] %s, %s, %d, new min version %d", chosenFunc, chosenKey, id, setVersion)
 
-				_, err := doReq("POST", chosenHost+"keys/"+chosenKey+"/config", bytes.NewBuffer([]byte(fmt.Sprintf("{\"min_decryption_version\": %d}", setVersion))))
+				_, err := doReq("POST", chosenHost+"keys/"+chosenKey+"/config", bytes.NewBufferString(fmt.Sprintf("{\"min_decryption_version\": %d}", setVersion)))
 				if err != nil {
 					panic(err)
 				}
@@ -472,7 +472,7 @@ func TestHTTP_Forwarding_ClientTLS(t *testing.T) {
 	}
 
 	req, err := http.NewRequest("POST", fmt.Sprintf("https://127.0.0.1:%d/v1/sys/auth/cert", cores[0].Listeners[0].Address.Port),
-		bytes.NewBuffer([]byte("{\"type\": \"cert\"}")))
+		bytes.NewBufferString("{\"type\": \"cert\"}"))
 	if err != nil {
 		t.Fatal(err)
 	}
diff --git a/internalshared/configutil/encrypt_decrypt_test.go b/internalshared/configutil/encrypt_decrypt_test.go
index 19bf685833..89699b48a1 100644
--- a/internalshared/configutil/encrypt_decrypt_test.go
+++ b/internalshared/configutil/encrypt_decrypt_test.go
@@ -46,7 +46,7 @@ telemetry {
 	}
 
 	first := true
-	locs := decryptRegex.FindAllIndex([]byte(out), -1)
+	locs := decryptRegex.FindAllStringIndex(out, -1)
 	for _, match := range locs {
 		matchBytes := []byte(out)[match[0]:match[1]]
 		matchBytes = bytes.TrimSuffix(bytes.TrimPrefix(matchBytes, []byte("{{decrypt(")), []byte(")}}"))
diff --git a/plugins/database/redshift/redshift_test.go b/plugins/database/redshift/redshift_test.go
index af264587b6..2bd59957e7 100644
--- a/plugins/database/redshift/redshift_test.go
+++ b/plugins/database/redshift/redshift_test.go
@@ -161,7 +161,7 @@ func TestRedshift_NewUser(t *testing.T) {
 		}
 
 		usernameRegex := regexp.MustCompile("^v-test-test-[a-zA-Z0-9]{20}-[0-9]{10}$")
-		if !usernameRegex.Match([]byte(username)) {
+		if !usernameRegex.MatchString(username) {
 			t.Fatalf("Expected username %q to match regex %q", username, usernameRegex.String())
 		}
 	}
diff --git a/vault/testing.go b/vault/testing.go
index 5a7a066fe7..692f9a814a 100644
--- a/vault/testing.go
+++ b/vault/testing.go
@@ -2050,7 +2050,7 @@ func (tc *TestCluster) initCores(t testing.T, opts *TestClusterOptions, addAudit
 	}
 	var buf bytes.Buffer
 	for i, key := range tc.BarrierKeys {
-		buf.Write([]byte(base64.StdEncoding.EncodeToString(key)))
+		buf.WriteString(base64.StdEncoding.EncodeToString(key))
 		if i < len(tc.BarrierKeys)-1 {
 			buf.WriteRune('\n')
 		}
@@ -2060,7 +2060,7 @@ func (tc *TestCluster) initCores(t testing.T, opts *TestClusterOptions, addAudit
 		t.Fatal(err)
 	}
 	for i, key := range tc.RecoveryKeys {
-		buf.Write([]byte(base64.StdEncoding.EncodeToString(key)))
+		buf.WriteString(base64.StdEncoding.EncodeToString(key))
 		if i < len(tc.RecoveryKeys)-1 {
 			buf.WriteRune('\n')
 		}