| commit | 0ae49b8145643036e0e6c266cf4edc0f543ea9e0 | [log] [tgz] |
|---|---|---|
| author | Nicola Murino <nicola.murino@gmail.com> | Wed Jun 04 11:54:11 2025 +0200 |
| committer | Gopher Robot <gobot@golang.org> | Mon Jun 30 09:02:45 2025 -0700 |
| tree | bbb11bd74ed4b0e515cfd1cbb5002a47e94e21de | |
| parent | 3bf9d2afd4f01ad3d1f1e2e19ea6ee7ea27f8384 [diff] |
ssh: reject certificate keys used as signature keys for SSH certs As specified in draft-miller-ssh-cert-01, Section 2.1.1: Implementations MUST NOT accept certificate keys as CA keys. Change-Id: I2e559a8a58b7bceccd0d8c6b80803abdbe281067 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/678715 Reviewed-by: Filippo Valsorda <filippo@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Nicola Murino <nicola.murino@gmail.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: David Chase <drchase@google.com>
This repository holds supplementary Go cryptography packages.
This repository uses Gerrit for code changes. To learn how to submit changes to this repository, see https://go.dev/doc/contribute.
The git repository is https://go.googlesource.com/crypto.
The main issue tracker for the crypto repository is located at https://go.dev/issues. Prefix your issue with “x/crypto:” in the subject line, so it is easy to find.
Note that contributions to the cryptography package receive additional scrutiny due to their sensitive nature. Patches may take longer than normal to receive feedback.