commit | c4a91bd4f524f10d064139674cf55852e055ad01 | [log] [tgz] |
---|---|---|
author | Adam Langley <agl@golang.org> | Tue Mar 13 12:10:02 2018 -0700 |
committer | Adam Langley <agl@golang.org> | Tue Mar 13 19:52:38 2018 +0000 |
tree | ba93bc664b8b15b481b23a039e52aa1269e69227 | |
parent | 182114d582623c1caa54f73de9c7224e23a48487 [diff] |
ed25519: require canonical signatures https://tools.ietf.org/html/rfc8032#section-5.1.7 requires that s be in the range [0, order) in order to prevent signature malleability. This is a new requirement in the RFC so the ed25519 package predates it. This change aligns the code with the RFC. The linked bug says that libsodium is also enforcing this check by default. See golang/go#24350 Change-Id: Ib69ce7c9e5a58971cbe225318d9fd87660bd5e4b Reviewed-on: https://go-review.googlesource.com/100436 Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
This repository holds supplementary Go cryptography libraries.
The easiest way to install is to run go get -u golang.org/x/crypto/...
. You can also manually git clone the repository to $GOPATH/src/golang.org/x/crypto
.
This repository uses Gerrit for code changes. To learn how to submit changes to this repository, see https://golang.org/doc/contribute.html.
The main issue tracker for the crypto repository is located at https://github.com/golang/go/issues. Prefix your issue with “x/crypto:” in the subject line, so it is easy to find.
Note that contributions to the cryptography package receive additional scrutiny due to their sensitive nature. Patches may take longer than normal to receive feedback.