| commit | c6fce028266aa1271946a7dfde94cd71cf077d5e | [log] [tgz] |
|---|---|---|
| author | Nicola Murino <nicola.murino@gmail.com> | Wed Jun 04 12:39:12 2025 +0200 |
| committer | Gopher Robot <gobot@golang.org> | Mon Jun 30 09:02:50 2025 -0700 |
| tree | a528bed47b954a837edfb2687e1c592342b1015f | |
| parent | 0ae49b8145643036e0e6c266cf4edc0f543ea9e0 [diff] |
ssh: refuse to parse certificates that use a certificate as signing key According to draft-miller-ssh-cert-01, Section 2.1.1, certificates with certificate keys as signature keys are invalid Change-Id: I474524ea444deb78f2fa7c2682e47c0fd057f0b8 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/678716 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: David Chase <drchase@google.com> Auto-Submit: Nicola Murino <nicola.murino@gmail.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Filippo Valsorda <filippo@golang.org>
This repository holds supplementary Go cryptography packages.
This repository uses Gerrit for code changes. To learn how to submit changes to this repository, see https://go.dev/doc/contribute.
The git repository is https://go.googlesource.com/crypto.
The main issue tracker for the crypto repository is located at https://go.dev/issues. Prefix your issue with “x/crypto:” in the subject line, so it is easy to find.
Note that contributions to the cryptography package receive additional scrutiny due to their sensitive nature. Patches may take longer than normal to receive feedback.