)]}' { "log": [ { "commit": "b9e53593a6073e6a786c49e9ad27956a9b77e54e", "tree": "ba1ebb853725f455eec33fc587bbe00a0ddb85de", "parents": [ "cc0e4fc1d49127130b0d00612a2eeed2ab745d40" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Wed Apr 22 12:12:18 2026 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Apr 23 08:20:11 2026 -0700" }, "message": "pbkdf2: turn into a wrapper for crypto/pbkdf2\n\nChange-Id: If95f1d771404fe88a8f9bc0a17b5a4d16a6a6964\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/769721\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: golang-scoped@luci-project-accounts.iam.gserviceaccount.com \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "cc0e4fc1d49127130b0d00612a2eeed2ab745d40", "tree": "18d2d6d1dc70bdeea1c9376e5065359960e6872c", "parents": [ "a8e9237a216b050e1b11e041863825104a6811db" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Wed Apr 22 12:04:56 2026 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Apr 23 08:20:08 2026 -0700" }, "message": "hkdf: forward Extract to the standard library\n\nChange-Id: I82406eb153c53e7cbf167360e472724a6a6a6964\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/769720\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: golang-scoped@luci-project-accounts.iam.gserviceaccount.com \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\n" }, { "commit": "a8e9237a216b050e1b11e041863825104a6811db", "tree": "cd2f4dc08f6d936822748cbc3291c1e0ff3f8b56", "parents": [ "03ca0dcccbd37ba6be80adf74dde8d78a4d72817" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Apr 13 16:01:00 2026 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Apr 13 10:03:23 2026 -0700" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: I9bad7b49959a336a125bdc3aa340c94292b26899\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/766500\nLUCI-TryBot-Result: golang-scoped@luci-project-accounts.iam.gserviceaccount.com \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "03ca0dcccbd37ba6be80adf74dde8d78a4d72817", "tree": "0b3de44ff8d5f70eb61e2153bf977bd3ecbbaacf", "parents": [ "8400f4a938077a7a7817ab7d163d148e371b320b" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Apr 09 05:03:48 2026 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Apr 09 08:33:22 2026 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: Ia33bd1cd73db091960b285c234d2cf2622f30943\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/764501\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "8400f4a938077a7a7817ab7d163d148e371b320b", "tree": "df6915b759ea07d0c031b981c6c0d17843703e7b", "parents": [ "81c6cb34a8fc386ed53293cd79e3c0c232ee7366" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Mon Feb 16 10:38:19 2026 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Mar 23 08:34:51 2026 -0700" }, "message": "ssh: respect signer\u0027s algorithm preference in pickSignatureAlgorithm\n\nPreviously, pickSignatureAlgorithm constructed the list of candidate\nalgorithms by iterating over the static list returned by\nalgorithmsForKeyFormat. This caused the Signer\u0027s preference order\nto be ignored in favor of the library\u0027s default internal order.\n\nThis change inverts the filtering logic to iterate over the signer\u0027s\nsupported algorithms first. This ensures that if a MultiAlgorithmSigner\nexplicitly prefers a specific algorithm (e.g., rsa-sha2-512 over\nrsa-sha2-256), that preference is preserved and respected during the\nhandshake negotiation.\n\nFixes golang/go#78248\n\nChange-Id: I48a0aac720be7f973963342b82047ce32fc96699\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/746020\nReviewed-by: Lonny Wong \u003clonnywang.cn@gmail.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "81c6cb34a8fc386ed53293cd79e3c0c232ee7366", "tree": "b68cf9aed3339baaede7e9a3cd98e7f97bcf943c", "parents": [ "982eaa62dfb7273603b97fc1835561450096f3bd" ], "author": { "name": "Rob Picard", "email": "rob.picard@goteleport.com", "time": "Thu Mar 12 11:17:52 2026 -0600" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Fri Mar 20 08:28:06 2026 -0700" }, "message": "ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength\n\nThe existing code uses cbcMinPaddingSize incorrectly. That value is\nalso used in the first parameter of the max call, meaning it will\nnever be used.\n\nFixes golang/go#78062\n\nChange-Id: I4243ab668168313919df33d78c6965e9eff0e934\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/754780\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\n" }, { "commit": "982eaa62dfb7273603b97fc1835561450096f3bd", "tree": "b0b00977a0818ffdc7ef456e7247281c28788473", "parents": [ "159944f128e9b3fdeb5a5b9b102a961904601a87" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Mar 11 05:56:32 2026 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Mar 11 07:17:49 2026 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: Ic40aa8385f00dc3d3e3588a0e2555c8039ae6017\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/754160\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "159944f128e9b3fdeb5a5b9b102a961904601a87", "tree": "ecb65c74db2b73ca81d1387af1e393a20876bf54", "parents": [ "a408498e55412f2ae2a058336f78889fb1ba6115" ], "author": { "name": "Neal Patel", "email": "nealpatel@google.com", "time": "Tue Jan 27 21:32:36 2026 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Mar 10 10:37:09 2026 -0700" }, "message": "ssh,acme: clean up tautological/impossible nil conditions\n\nChange-Id: I4c6b4b6d8dc1e8a9d2ebfb8d350b7617d3cf7949\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/739780\nAuto-Submit: Neal Patel \u003cnealpatel@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\n" }, { "commit": "a408498e55412f2ae2a058336f78889fb1ba6115", "tree": "9bb721b4642324d10b8184b4429eef82c8d4c1eb", "parents": [ "cab0f718548e8a858701b7b48161f44748532f58" ], "author": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Sun Nov 09 12:55:47 2025 +0000" }, "committer": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Fri Feb 13 09:12:11 2026 -0800" }, "message": "acme: only require prompt if server has terms of service\n\nFixes golang/go#64881\n\nChange-Id: I2b4415e6f987aab258c26c090ac7b1a465aa1697\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/719001\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\n" }, { "commit": "cab0f718548e8a858701b7b48161f44748532f58", "tree": "ef2b9eb9aeb87ee58dcd3a3e9bc783037b208ea4", "parents": [ "2f26647a795e74e712b3aebc2655bca60b2686f9" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Feb 11 18:54:17 2026 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Feb 11 11:12:56 2026 -0800" }, "message": "all: upgrade go directive to at least 1.25.0 [generated]\n\nBy now Go 1.26.0 has been released, and Go 1.24 is no longer supported\nper the Go Release Policy (see https://go.dev/doc/devel/release#policy).\n\nSee go.dev/doc/godebug#go-125 for GODEBUG changes relevant to Go 1.25.\n\nFor golang/go#69095.\n\n[git-generate]\n(cd . \u0026\u0026 go get go@1.25.0 \u0026\u0026 go mod tidy)\n(cd x509roots/fallback \u0026\u0026 go get go@1.25.0 \u0026\u0026 go mod tidy)\n\nChange-Id: I8df6bf58a117a2f92bb08f787e520aa9446dab46\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/744680\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\n" }, { "commit": "2f26647a795e74e712b3aebc2655bca60b2686f9", "tree": "db229ff33ba0e1b2fc3089aeb98b0ec8c35faa50", "parents": [ "e08b06753d6a72f1fe375b6e0fefefb39917c165" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Feb 09 21:14:04 2026 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Feb 09 13:49:22 2026 -0800" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: I3665d29edabaef0efb634031b2b7d20d32774eec\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/743540\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "e08b06753d6a72f1fe375b6e0fefefb39917c165", "tree": "34f94d86425b7c0974c6060c69455bca42565d6d", "parents": [ "7d0074ccc6f17acbf2ebb10db06d492e08f887dc" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Feb 09 08:29:51 2026 -0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Feb 09 08:37:10 2026 -0800" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I1b283104f6d4557ee12c256bbadfccb3cd5548be\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/743362\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\n" }, { "commit": "7d0074ccc6f17acbf2ebb10db06d492e08f887dc", "tree": "8ae802c545076b19fa5f72f44f8b303039aafa41", "parents": [ "506e022208b864bc3c9c4a416fe56be75d10ad24" ], "author": { "name": "Juergen Graf", "email": "juergen.graf@gmail.com", "time": "Mon Dec 22 01:27:49 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Jan 13 07:44:11 2026 -0800" }, "message": "scrypt: fix panic on parameters \u003c\u003d 0\n\nProviding 0 as argument for r or p results in a panic:\npanic: runtime error: integer divide by zero\n\nProviding negative values for r or p returns a misleading error:\nscrypt: parameters are too large\n\nThis change avoids the panic and introduces a new error\nthat is returned when r or p are \u003c\u003d 0:\nscrypt: parameters must be \u003e 0\n\nChange-Id: I68987b27d1eedd66644d2ec9436cba364fc1d46d\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/731780\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nAuto-Submit: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "506e022208b864bc3c9c4a416fe56be75d10ad24", "tree": "9938e4c6f04380c6f01dfa275d15a9ca93fe062f", "parents": [ "7dacc380ba001e8fe7c3c7a46bf3cbdaa5064df9" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Jan 09 13:11:59 2026 -0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jan 12 07:56:02 2026 -0800" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I47041f06d6a0c92919eaac5d727cbc41551ed2e1\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/734461\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\n" }, { "commit": "7dacc380ba001e8fe7c3c7a46bf3cbdaa5064df9", "tree": "38ba0c70687a07c188145e099aaa7bf218baac9a", "parents": [ "19acf81bd7bc7b558d18a550e8e023df2c33e742" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Mon Dec 08 23:54:43 2025 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Dec 10 06:07:36 2025 -0800" }, "message": "chacha20poly1305: error out in fips140\u003donly mode\n\nWe don\u0027t guarantee fips140\u003donly support in x/crypto, but\nchacha20poly1305 is special in that it\u0027s vendored into the standard\nlibrary. We could wrap all the callsites, but it\u0027s more robust to\njust error out at construction time.\n\nChange-Id: I4b1e451bd250429c4c5c5b61c8b2141c6a6a6964\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/728480\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\n" }, { "commit": "19acf81bd7bc7b558d18a550e8e023df2c33e742", "tree": "f3b623e55f4f7cd4ab997f3ab275eea17b759027", "parents": [ "3a1c6b4b61966d06b6469ad7bc15839ba76eeb89" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Dec 08 09:39:42 2025 -0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Dec 08 10:34:26 2025 -0800" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I81158fb078bccce57d8d46cac0cb87e6c4f8cff9\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/728181\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "3a1c6b4b61966d06b6469ad7bc15839ba76eeb89", "tree": "825af36e1ef8d24b7ec962991a468fe76d7c05f8", "parents": [ "f4602e40409257658159002a9af6aedb875949fb" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Nov 24 17:28:54 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Dec 03 12:57:53 2025 -0800" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: Icde363f2fa61d1cb85552e57d4cae30b33ec96ed\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/723803\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "f4602e40409257658159002a9af6aedb875949fb", "tree": "4d7f33b8ae1b85b6df8ee84c21cda2c201d4acfc", "parents": [ "4e0068c0098be10d7025c99ab7c50ce454c1f0f9" ], "author": { "name": "Michael Stapelberg", "email": "stapelberg@golang.org", "time": "Tue Dec 02 14:40:57 2025 +0100" }, "committer": { "name": "Michael Stapelberg", "email": "stapelberg@golang.org", "time": "Tue Dec 02 08:08:01 2025 -0800" }, "message": "ssh/agent: fix flaky test by ensuring a writeable home directory\n\nThis fixes flakiness observed inside Google (b/465393996).\n\nChange-Id: Ic3decc3206b470cddf22c441b0cf92bb2bebb075\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/724002\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "4e0068c0098be10d7025c99ab7c50ce454c1f0f9", "tree": "0c7c44d42cff856d71e995ae956364b3ab66c75d", "parents": [ "e79546e28b85ea53dd37afe1c4102746ef553b9c" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Nov 19 11:44:35 2025 -0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Nov 19 11:55:48 2025 -0800" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I3923d98d88595230b12db261c48168b863dc2ce9\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/722000\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Neal Patel \u003cnealpatel@google.com\u003e\n" }, { "commit": "e79546e28b85ea53dd37afe1c4102746ef553b9c", "tree": "1fea6dd50a03f22132077b4a32efd929fbc697b0", "parents": [ "f91f7a7c31bf90b39c1de895ad116a2bacc88748" ], "author": { "name": "Neal Patel", "email": "nealpatel@google.com", "time": "Wed Nov 19 13:35:12 2025 -0500" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Nov 19 11:28:37 2025 -0800" }, "message": "ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\n\nPreviously, an attacker could specify an integer up to 0xFFFFFFFF\nthat would directly allocate memory despite the observability of\nthe rest of the payload. This change places a hard cap on the\namount of mechanisms that can be specified and encoded in the\npayload. Additionally, it performs a small sanity check to deny\npayloads whose stated size is contradictory to the observed payload.\n\nThank you to Jakub Ciolek for reporting this issue.\n\nFixes CVE-2025-58181\nFixes golang/go#76363\n\nChange-Id: I0307ab3e906a3f2ae763b5f9f0310f7073f84485\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/721961\nAuto-Submit: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Damien Neil \u003cdneil@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "f91f7a7c31bf90b39c1de895ad116a2bacc88748", "tree": "814863f3118dff7cd50a6494cdfad81a85d6a709", "parents": [ "2df4153a0311bdfea44376e0eb6ef2faefb0275b" ], "author": { "name": "Neal Patel", "email": "nealpatel@google.com", "time": "Wed Sep 10 14:27:42 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Nov 19 11:28:34 2025 -0800" }, "message": "ssh/agent: prevent panic on malformed constraint\n\nAn attacker could supply a malformed Constraint that\nwould trigger a panic in a serving agent, effectively\ncausing denial of service.\n\nThank you to Jakub Ciolek for reporting this issue.\n\nFixes CVE-2025-47914\nFixes golang/go#76364\n\nChange-Id: I195bbc68b1560d4f04897722a6a653a7cbf086eb\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/721960\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Damien Neil \u003cdneil@google.com\u003e\n" }, { "commit": "2df4153a0311bdfea44376e0eb6ef2faefb0275b", "tree": "1aa8d989964ff746611ef5341d27c02fa1cb5b1e", "parents": [ "bcf6a849efcf4702fa5172cb0998b46c3da1e989" ], "author": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Sun Nov 09 12:22:03 2025 +0000" }, "committer": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Mon Nov 17 10:17:16 2025 -0800" }, "message": "acme/autocert: let automatic renewal work with short lifetime certs\n\nFixes golang/go#64997\nFixes golang/go#36548\n\nChange-Id: Idb7a426ad3bfa6ac3b796f4b466da6e3154f1ffa\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/719080\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Mark Freeman \u003cmarkfreeman@google.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "bcf6a849efcf4702fa5172cb0998b46c3da1e989", "tree": "0a89bbd2a90dae5d90c3815d470113688177678c", "parents": [ "b4f2b62076abeee4e43fb59544dac565715fbf1e" ], "author": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Sun Nov 09 16:53:06 2025 +0000" }, "committer": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Wed Nov 12 10:48:32 2025 -0800" }, "message": "acme: pass context to request\n\nFixes golang/go#30183\n\nChange-Id: Ic02b34bc87b9465f5c05b2ef5bec157c58809a91\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/719002\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "b4f2b62076abeee4e43fb59544dac565715fbf1e", "tree": "41f4314a090df2d17bb0f32bd9315fc1c0626386", "parents": [ "79ec3a51fcc7fbd2691d56155d578225ccc542e2" ], "author": { "name": "Santhanam", "email": "santhanambr2002@gmail.com", "time": "Sun Nov 09 18:35:21 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Nov 12 10:42:48 2025 -0800" }, "message": "ssh: fix error message on unsupported cipher\n\nUntil now, when ssh keys using one of these[1] ciphers were passed, we were\ngiving a parse error \"ssh: parse error in message type 0\".\n\nWith this fix, we parse it successfully and return the correct error message.\n\n[1] aes{128,256}-gcm@openssh.com and chacha20-poly1305@openssh.com\n\nFixes golang/go#52135\n\nChange-Id: I3010fff43c48f29f21edb8d63f44e167861a054e\nGitHub-Last-Rev: 14ac7e97306d41cba48053b9c60f2ffc7caded45\nGitHub-Pull-Request: golang/crypto#324\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/709275\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "79ec3a51fcc7fbd2691d56155d578225ccc542e2", "tree": "1742fdfe91dd44bc3aeb67ed980cf2a54428f2b7", "parents": [ "122a78f140d9d3303ed3261bc374bbbca149140f" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Jul 21 17:17:48 2024 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Nov 12 10:42:45 2025 -0800" }, "message": "ssh: allow to bind to a hostname in remote forwarding\n\nTo avoid breaking backwards compatibility, we fix Listen, which\nreceives the address as a string, while ListenTCP can still only\nbe used with IP addresses.\n\nFixes golang/go#33227\nFixes golang/go#37239\n\nChange-Id: I4d45b40fdcb0d6012ed8da59a02149fa37e7db50\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/599995\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nReviewed-by: Bishakh Ghosh \u003cghoshbishakh@gmail.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\n" }, { "commit": "122a78f140d9d3303ed3261bc374bbbca149140f", "tree": "8694fabf0c51cb7cddf764851c8980348faf7fd5", "parents": [ "c0531f9c34514ad5c5551e2d6ce569ca673a8afd" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Nov 11 08:06:34 2025 -0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Nov 11 10:21:23 2025 -0800" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I0f64669e7c813611f71b1381d9e6fdaba1a39712\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/719641\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "c0531f9c34514ad5c5551e2d6ce569ca673a8afd", "tree": "3dccdddd4a4127d6a60affca291947b623de484b", "parents": [ "0997000b45e3a40598272081bcad03ffd21b8adb" ], "author": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Sun Oct 26 13:45:57 2025 +0000" }, "committer": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Tue Oct 28 06:00:51 2025 -0700" }, "message": "all: eliminate vet diagnostics\n\nFor golang/go#74011\n\nChange-Id: I189c5aba554a578bee1fd351edc30cd5cf4d0ed6\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/714960\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "0997000b45e3a40598272081bcad03ffd21b8adb", "tree": "f092ba94c5c3e61f5bb0a8b6d5eefee2f5446dd4", "parents": [ "017a1aaa2d993492ef6f74ebe7c87f33d82d3717" ], "author": { "name": "cuishuang", "email": "imcusg@gmail.com", "time": "Mon Oct 20 17:55:48 2025 +0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Oct 27 09:33:07 2025 -0700" }, "message": "all: fix some comments\n\nChange-Id: I0395c5db6edd7d90f9ec1dadbe881a77c906c732\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/713120\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\n" }, { "commit": "017a1aaa2d993492ef6f74ebe7c87f33d82d3717", "tree": "2bfec65ac062dedcd4febf7e1fa7e7ba3a07ad2b", "parents": [ "cf29fa96f8b66328e59829f064539321159bfa5b" ], "author": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Sun Oct 19 00:57:52 2025 +0100" }, "committer": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Wed Oct 22 18:37:21 2025 -0700" }, "message": "chacha20poly1305: panic on dst and additionalData overlap\n\nThe cipher.AEAD interface specifies that these should not overlap.\nThis mirrors the check that the GCM implementation does.\n\nFixes golang/go#75968\nUpdates golang/go#21624\n\nChange-Id: If5fbb8611ff6c0aae44d50079bad29f56ce00f5b\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/712860\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "cf29fa96f8b66328e59829f064539321159bfa5b", "tree": "3008fb5954b723ca65d58d8fc972409b03d77c4d", "parents": [ "0b7aa0cfb07b6b13ead990b67cb3cb8639871f90" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Wed Oct 08 14:56:11 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Oct 22 18:01:01 2025 -0700" }, "message": "sha3: make it mostly a wrapper around crypto/sha3\n\ncrypto/sha3 was introduced in Go 1.24, which is now the minimum Go\nversion of this module.\n\nMade the hashes go:fix inline wrappers, since the new types can be used\nas hash.Hash directly.\n\nThe SHAKE instances need a wrapper for the methods we dropped from\ncrypto.XOF, so no go:fix inline there.\n\nKept the generic implementation for the legacy Keccak hashes we did not\nbring to the standard library. We need to keep them working, but they\ndon\u0027t need to be fast.\n\nFixes golang/go#73681\nUpdates golang/go#65269\n\nChange-Id: I6a6a69648b6353b153c70a2cec84864e64dcd61b\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/710115\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "0b7aa0cfb07b6b13ead990b67cb3cb8639871f90", "tree": "c81e419267045e797a0c0cf2dd0bc02e22f1d688", "parents": [ "1faea2975ced2153e5086c1ee135f983db10150a" ], "author": { "name": "cuishuang", "email": "imcusg@gmail.com", "time": "Sun Oct 05 15:42:14 2025 +0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Oct 09 11:10:29 2025 -0700" }, "message": "ssh: use reflect.TypeFor instead of reflect.TypeOf\n\nFor golang/go#60088.\n\nChange-Id: I58994c469a2793516214ab1a0072fb6137afc46e\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/709156\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\n" }, { "commit": "1faea2975ced2153e5086c1ee135f983db10150a", "tree": "0055df92d038103a10fb9e6d6a309cc5d24ae721", "parents": [ "627cb894b6b2021e34c4ad4af4c0a963127491e4" ], "author": { "name": "cuishuang", "email": "imcusg@gmail.com", "time": "Mon Sep 29 11:51:24 2025 +0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Oct 08 13:58:26 2025 -0700" }, "message": "all: fix some typos in comment\n\nChange-Id: Ia209f0a6d9b19d14e655c65d1287a1416b48c487\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/707535\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\n" }, { "commit": "627cb894b6b2021e34c4ad4af4c0a963127491e4", "tree": "27d3864c71f25105e63401634a23d8a57fea836e", "parents": [ "dca4914afe94ebd485672b06b9a120e18b452533" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Oct 08 08:52:20 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Oct 08 10:40:45 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: Icf986acf9290649488777328f470200bf9e11442\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/710098\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "dca4914afe94ebd485672b06b9a120e18b452533", "tree": "2e759728bb59d38b2bfd113bc1bbace477a43c5d", "parents": [ "1336e21bd6f39d1ab82ca6412693849c2d120e1d" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Wed Oct 08 10:15:41 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Oct 08 09:52:31 2025 -0700" }, "message": "acme: fix autocert TestHTTPHandlerDefaultFallback\n\nThe Go 1.25.2 release made net/url stricter about parsing bracketed IPv6\nhostnames, and is rejecting some test URLs used in the autocert\nTestHTTPHandlerDefaultFallback test with an error about the\ncolon-separated fields requiring at least one hex digit.\n\nThis commit replaces the invalid `xxxx` portion of some test URLS with\nvalid hex digits, fixing the test regression.\n\nChange-Id: I84c192b1cd6daf53ef4199f7987437fd825f7041\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/710155\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "1336e21bd6f39d1ab82ca6412693849c2d120e1d", "tree": "f403a04b0466a4ad5ea533a30fafce071a5961bf", "parents": [ "2beaa59a3c994e5d01b6d58dc348dcd6d814ef26" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Oct 06 16:00:59 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Oct 08 08:14:13 2025 -0700" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: I9ab454c977013b2f6a42bc93fb0649612c54c6c0\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/709475\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "2beaa59a3c994e5d01b6d58dc348dcd6d814ef26", "tree": "a6ca9948e1e9a7dd335bb182059a0a21c8518105", "parents": [ "66c3d8ce714c31eb5a8adb6c931b4e29f5bebcf5" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Dec 15 20:02:38 2024 +0100" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Sep 27 12:43:41 2025 -0700" }, "message": "ssh: add VerifiedPublicKeyCallback\n\nFixes golang/go#70795\n\nChange-Id: I9b7c91f35f89495d1e9b5f6ec0c036c02a61d774\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/636335\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nReviewed-by: Ilia Mirkin \u003cimirkin@alum.mit.edu\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Jorge Hernández \u003cjorgehcrda39@gmail.com\u003e\n" }, { "commit": "66c3d8ce714c31eb5a8adb6c931b4e29f5bebcf5", "tree": "7912945ebda3bdb90b2b5a68075b87ed26f232ea", "parents": [ "ddb4e80c6ad38c8a94001924a6ff8424f5cae369" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Aug 24 15:55:24 2025 +0200" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Sep 27 12:36:52 2025 -0700" }, "message": "ssh: add support for FIPS mode\n\nUnsupported algoritms are silently ignored and not negotiated, or\nrejected\n\nFixes golang/go#75061\n\nChange-Id: I08d50d10a97c08e78aedead89ca61beceff88918\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/698795\nReviewed-by: Mio Mio \u003cmiomio0086@gmail.com\u003e\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "ddb4e80c6ad38c8a94001924a6ff8424f5cae369", "tree": "e7fe81070868398a4851433a840b75ff476e8fd9", "parents": [ "f4d47b0db5875e61dd52acdb63be800177ab48bb" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Sep 14 15:28:12 2025 +0200" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Mon Sep 15 23:33:16 2025 -0700" }, "message": "ssh: remove custom contains, use slices.Contains\n\nChange-Id: If4784469e7285675bdd51399a76bdc16f0036a2e\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/703635\nReviewed-by: Mark Freeman \u003cmarkfreeman@google.com\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "f4d47b0db5875e61dd52acdb63be800177ab48bb", "tree": "0c974606cbfd3f715128a0173fc6a599dd22efe9", "parents": [ "96dc232fbd7928e9c23da42e770c8b79a2348d86" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Tue Aug 12 07:59:34 2025 +0200" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Mon Sep 15 23:32:56 2025 -0700" }, "message": "ssh: return clearer error when signature algorithm is used as key format\n\nParsePublicKey now returns a more specific error when a signature\nalgorithm like rsa-sha2-256 is mistakenly provided as a key format\n\nChange-Id: Ic08286a5b2b326e99dd3e61594919203f0c36791\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/695075\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Mark Freeman \u003cmarkfreeman@google.com\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\n" }, { "commit": "96dc232fbd7928e9c23da42e770c8b79a2348d86", "tree": "eaeda4be0b841c6e7e04eb09b34ad7816c4b39dd", "parents": [ "8c9ba318361080ea198c7461b6db621022d0a88e" ], "author": { "name": "Michael Stapelberg", "email": "stapelberg@golang.org", "time": "Thu Jul 10 10:58:35 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Sep 11 08:14:50 2025 -0700" }, "message": "x509roots/fallback/bundle: add bundle package to export root certs\n\nFixes golang/go#69898\n\nChange-Id: Idbb1bbe48016a622414c84a56fe26f48bfe712c8\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/687155\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Mateusz Poliwczak \u003cmpoliwczak34@gmail.com\u003e\n" }, { "commit": "8c9ba318361080ea198c7461b6db621022d0a88e", "tree": "e80adc768bf9e14f67d374d721458e25fd7e80b8", "parents": [ "559e062ce8bfd6a39925294620b50906ca2a6f95" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Sun Sep 07 15:18:22 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Sep 09 12:19:31 2025 -0700" }, "message": "all: freeze and deprecate more packages\n\nFixes golang/go#65250\n\nChange-Id: I6a6a6964a2c87e529be50dd67fec462483b07b75\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/701535\nReviewed-by: Mark Freeman \u003cmarkfreeman@google.com\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\n" }, { "commit": "559e062ce8bfd6a39925294620b50906ca2a6f95", "tree": "92fcab091e6f45d6205893caf5bd3b131fa39125", "parents": [ "5307a0ce6db8057c8d7c4378dc4bd715b4985ba1" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Aug 31 20:07:32 2025 +0200" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Tue Sep 09 02:56:19 2025 -0700" }, "message": "ssh/agent: return an error for unexpected message types\n\nPreviously, receiving an unexpected message type in response to a key\nlisting or a signing request could cause a panic due to a failed type\nassertion.\n\nThis change adds a default case to the type switch in order to detect\nand explicitly handle unknown or invalid message types, returning a\ndescriptive error instead of crashing.\n\nFixes golang/go#75178\n\nChange-Id: Icbc3432adc79fe3c56b1ff23c6724d7a6f710f3a\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/700295\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Jakub Ciolek \u003cjakub@ciolek.dev\u003e\n" }, { "commit": "5307a0ce6db8057c8d7c4378dc4bd715b4985ba1", "tree": "872100b6cca55d1990f47be558a258bac6bfe4a0", "parents": [ "9d779377cff7ff1f58520cc044fb90b10ddfc561" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Sun Sep 07 20:55:38 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Sep 08 08:14:28 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I75e16a930bfe42cc082df82ab67802c42ad56a97\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/701303\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\n" }, { "commit": "9d779377cff7ff1f58520cc044fb90b10ddfc561", "tree": "f362ab37a97c667588aaecbda094f5311d94f74e", "parents": [ "8f580defa01dec23898d3cd27f6369cdcc62f71f" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Wed Jun 11 17:43:01 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Sep 04 07:39:59 2025 -0700" }, "message": "acme: include order problem in OrderError\n\nIf client.WaitOrder or client.CreateOrderCert return an acme.OrderError\nit\u0027s helpful to include the order\u0027s problem field (if available). This\nwill often have detailed information about why a particular order\nbecame invalid that\u0027s invaluable for debugging (e.g. a challenge\nresponse was incorrect, a name couldn\u0027t be resolved, etc).\n\nWhile it\u0027s possible for a consumer to poll the order themselves as part\nof handling the order to extract a fresh Order.Error field value, it\nwould take an extra round-trip network request. Since we have the\nunderlying error in-hand when we produce the OrderError we might as well\ninclude it directly.\n\nSince this field is a structured object with a number of sub-fields the\nOrderError.Error() function isn\u0027t updated to include the order problem\nerror in the String description. Interested callers should instead use\nerrors.Is to extract the problem information directly.\n\nResolves golang/go#74430\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest\nChange-Id: I3158f064793bbfdc292dd6b5e1a6bfd7729bd980\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/681037\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Ian Stapleton Cordasco \u003cgraffatcolmingov@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "8f580defa01dec23898d3cd27f6369cdcc62f71f", "tree": "9206ee7b2359fbc0d2351bd3219d1e0b53e0596c", "parents": [ "a4d1237429d6056ef197b0b911b8b9d7dca8ecf6" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Aug 24 10:53:36 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Aug 26 00:42:33 2025 -0700" }, "message": "ssh: remove Go 1.24 build tag for ML-KEM kex\n\nChange-Id: Ia77ad1b6fef9919ab100fb10c42231725eb81c12\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/698775\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "a4d1237429d6056ef197b0b911b8b9d7dca8ecf6", "tree": "ff421c6e045d1bbfb0b22198acea6a891ad9afce", "parents": [ "b8d8dae13d7dda8706ca2ab98934ad404aacae22" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Aug 09 19:56:31 2025 +0200" }, "committer": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Tue Aug 19 13:12:03 2025 -0700" }, "message": "ssh/knownhosts: improve IPv6 support in Normalize\n\nCorrectly converts bracketed IPv6:\n\n- [abcd::abcd:abcd:abcd] \u003d\u003e abcd::abcd:abcd:abcd\n- [abcd::abcd:abcd:abcd]:22 \u003d\u003e abcd::abcd:abcd:abcd\n- [abcd::abcd:abcd:abcd]:23 \u003d\u003e [abcd::abcd:abcd:abcd]:23\n\nFixes golang/go#53463\n\nChange-Id: Id0a7460d8448a72e2a8c6d46137245bead9ecf9f\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/694575\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "b8d8dae13d7dda8706ca2ab98934ad404aacae22", "tree": "36b0cba289100b14498cd948403e18a292060006", "parents": [ "f5a2eabcab987dc84f30d5479ed5c5605b5de634" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Mon Aug 18 19:06:50 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Aug 19 10:40:36 2025 -0700" }, "message": "curve25519: include potential fips140\u003donly error in panic message\n\nUpdates golang/go#75061\n\nChange-Id: I6a6a696474122a12c12696d8a2efec902572327d\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/696996\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "f5a2eabcab987dc84f30d5479ed5c5605b5de634", "tree": "712e4472b9a253c2a96ac34d77bd5e0956e1b6a1", "parents": [ "44ecf3af9978b32529ce689a6964bd557c79aa1c" ], "author": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Mon Aug 18 18:57:42 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Tue Aug 19 10:38:43 2025 -0700" }, "message": "ssh: use curve25519.X25519 instead of curve25519.ScalarMult\n\nThis lets us surface an error message instead of panicking if running\nin fips140\u003donly mode, where ECDH on X25519 returns an error.\n\nUpdates golang/go#75061\n\nChange-Id: I6a6a6964c0591f3dca2dc946c99d44364314a3ab\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/696995\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\n" }, { "commit": "44ecf3af9978b32529ce689a6964bd557c79aa1c", "tree": "7c02d05a398035a6fde418aeb09110f4c69eb642", "parents": [ "ef5341b70697ceb55f904384bd982587224e8b0c" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Aug 13 14:21:40 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Aug 13 08:00:22 2025 -0700" }, "message": "all: upgrade go directive to at least 1.24.0 [generated]\n\nBy now Go 1.25.0 has been released, and Go 1.23 is no longer supported\nper the Go Release Policy (see https://go.dev/doc/devel/release#policy).\n\nFor golang/go#69095.\n\n[git-generate]\n(cd . \u0026\u0026 go get go@1.24.0 \u0026\u0026 go mod tidy \u0026\u0026 go fix ./... \u0026\u0026 go mod edit -toolchain\u003dnone)\n(cd x509roots/fallback \u0026\u0026 go get go@1.24.0 \u0026\u0026 go mod tidy \u0026\u0026 go fix ./... \u0026\u0026 go mod edit -toolchain\u003dnone)\n\nChange-Id: Ia4c201e9611a2c13489e16d4ae81d7e3e32bf455\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/695715\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "ef5341b70697ceb55f904384bd982587224e8b0c", "tree": "86680637346db4ade99eb35aa0d10e1369005495", "parents": [ "b999374650442ee37e9bbd97d6a11ad7ed999b98" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Aug 07 09:08:13 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Aug 07 10:21:04 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I93de641462a54b0ae565bb60e2a0e6e7c2c3b883\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/693999\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "b999374650442ee37e9bbd97d6a11ad7ed999b98", "tree": "fe345282467d59f1e1022685f2e073169adca7df", "parents": [ "c247dead11de7671a21a6c5169555e2aa5313caa" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Wed Aug 06 12:43:58 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Aug 06 13:33:03 2025 -0700" }, "message": "acme: fix pebble subprocess output data race\n\nWait for process completion before reading stdout/stderr buffers\nto eliminate race between I/O Go routines and test cleanup.\n\nUpdates golang/go#74437\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest-race\nChange-Id: I2e650c04db5be0d7a1e858ce40e25f13ad12223c\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/693596\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "c247dead11de7671a21a6c5169555e2aa5313caa", "tree": "c81db9350f69d6f7be75737e5e778d3e42bc6510", "parents": [ "1fda73153feef7b246f24005838c387e354e5e3b" ], "author": { "name": "Mateusz Poliwczak", "email": "mpoliwczak34@gmail.com", "time": "Sun May 25 16:41:48 2025 +0200" }, "committer": { "name": "Sean Liao", "email": "sean@liao.dev", "time": "Sun Aug 03 12:47:17 2025 -0700" }, "message": "x509roots/fallback: store bundle certs directly in DER\n\ngoos: linux\ngoarch: amd64\npkg: golang.org/x/crypto/x509roots/fallback\ncpu: AMD Ryzen 5 4600G with Radeon Graphics\n │ /tmp/before │ /tmp/after │\n │ sec/op │ sec/op vs base │\nInitTime-12 1.726m ± 0% 1.101m ± 1% -36.20% (p\u003d0.000 n\u003d30)\n\n │ /tmp/before │ /tmp/after │\n │ B/op │ B/op vs base │\nInitTime-12 1178.2Ki ± 0% 779.8Ki ± 0% -33.81% (p\u003d0.000 n\u003d30)\n\n │ /tmp/before │ /tmp/after │\n │ allocs/op │ allocs/op vs base │\nInitTime-12 11.35k ± 0% 10.64k ± 0% -6.32% (p\u003d0.000 n\u003d30)\n\nUpdates golang/go#73691\n\nChange-Id: Ic33f2fdfc65001c41afeb3b6af8a383288d10de6\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/676217\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Mark Freeman \u003cmark@golang.org\u003e\n" }, { "commit": "1fda73153feef7b246f24005838c387e354e5e3b", "tree": "299e13e5f6291cb1fd353e9632e7629417a28ccf", "parents": [ "1b4c3d2e8c8be172c6af8f2f72778e69e74d2e78" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Thu Jul 31 13:53:34 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Aug 01 08:44:22 2025 -0700" }, "message": "acme: increase pebble test waitForServer attempts\n\nIn CI it seems that occasionally we can\u0027t connect to the test servers\nwithin 10 tries, and the test flakes. Let\u0027s give the process more\nattempts.\n\nUpdates golang/go#74437\n\nChange-Id: I74d6cea83468a3a572ec4b52ff7314c778c664cf\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/692075\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Mark Freeman \u003cmark@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "1b4c3d2e8c8be172c6af8f2f72778e69e74d2e78", "tree": "e8b6432af34fb4c3f9c9a2b2634772e249fa2b47", "parents": [ "b903b535d3ef82fab12a9cc0fa50fccc396ced55" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jul 14 16:00:58 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Jul 30 16:29:44 2025 -0700" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: Ib30b702d41dedacce835628a9dab456098be0703\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/687895\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\n" }, { "commit": "b903b535d3ef82fab12a9cc0fa50fccc396ced55", "tree": "54ab31b8987efd94653b1749a9fc9be04d78d4a2", "parents": [ "459a9db11b9c43bb1d61722bfd371751d6de05c9" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Wed Jul 09 14:08:52 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Jul 11 12:27:10 2025 -0700" }, "message": "acme: capture pebble test subprocess stdout/stderr\n\nWhen spawning the pebble and pebble-challtestserv processes redirect\nstdout/stderr to bytes.Buffer instances and print their content at test\nend as appropriate.\n\nThe stdout/stderr content for each process is printed if the test\nfailed, or if testing is being done in verbose mode. Otherwise the\noutput is swallowed.\n\nThis makes debugging test failures much easier as output from the\nsubprocesses from independent tests isn\u0027t intermingled.\n\nUpdates golang/go#74437\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest\nChange-Id: Ia79a3609ce3522ef6248442de247554c39367162\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/686935\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "459a9db11b9c43bb1d61722bfd371751d6de05c9", "tree": "5a9e94273d8ead5e6065930f78993cae20137e94", "parents": [ "74e709ad8a8068445173aa5f3e8d7c89caf510c3" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Jul 09 14:06:42 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Jul 10 10:21:43 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I3a89b1890ad2f7d2b2c23e1efce60c19e43dd381\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/687017\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "74e709ad8a8068445173aa5f3e8d7c89caf510c3", "tree": "81b082f8b42fe04939a4e14749ca4055a2c1ac70", "parents": [ "b3790b8d914304c8187dc2c86800101c329d77cd" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Jan 27 19:29:59 2024 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Jul 09 08:43:26 2025 -0700" }, "message": "ssh: add AlgorithmNegotiationError\n\nFixes golang/go#61536\n\nChange-Id: Id38cc6d46879dbe2bdea04dec061596387ec6cfe\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/559056\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "b3790b8d914304c8187dc2c86800101c329d77cd", "tree": "50806636e98d63e38aa2f8f2249b3b1c26671787", "parents": [ "1dc4269656dd23b2c4e71c51b8af6bc2b63eecb7" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Fri May 30 12:42:24 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jun 30 12:50:50 2025 -0700" }, "message": "acme: fix TLSALPN01ChallengeCert for IP address identifiers\n\nWhen creating a TLS-ALPN-01 challenge response certificate for an IP\naddress identifier we need to configure the template IPAddresses field,\nnot the DNSNames/Subject.CommonName.\n\nAlong the way we can do some small tidying:\n* Updating the draft TLS-ALPN-01 reference to the finalized RFC\n* Adding a reference to the IP address identifier ACME RFC\n* Adding a mention of the form the challenge validation request\u0027s SNI\n will take when verifying an IP address identifier\n* Tidying the private tlsChallengeCert() function to take a single\n identifier as arg since the only call-sites provide singular values\n since the removal of the TLS-SNI-[01|02] challenge helpers.\n\nThis allows enabling an IP address identifier in the Pebble integration\ntests that otherwise caused a validation failure for TLS-ALPN-01\nchallenge types because the IP address was used as a DNS SAN.\n\nUpdates golang/go#73914\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest\nChange-Id: Ic671e41b585f424f821db65206c7ffcc6dd386a0\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/677576\nReviewed-by: Ian Stapleton Cordasco \u003cgraffatcolmingov@gmail.com\u003e\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "1dc4269656dd23b2c4e71c51b8af6bc2b63eecb7", "tree": "66d7b41c802076343105ba8248fbaa61a4992a25", "parents": [ "97bf78725562ce22e18036873215f2203b3e0e1e" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Thu May 29 14:34:34 2025 -0400" }, "committer": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Mon Jun 30 09:51:57 2025 -0700" }, "message": "acme: add Pebble integration testing\n\nThis commit adds integration test coverage for a complete TLS-ALPN-01\nand HTTP-01 based issuance flow.\n\nFor each tested challenge type we:\n\n* Spin up a pebble/pebble-challtestsrv environment\n* Spin up a small challenge response server\n* Create an ACME account\n* Create an order for multiple DNS type identifiers\n* Provision challenge responses based on the challenge type under test\n* Wait for the order to become ready for issuance\n* Finalize the order, issuing a certificate\n* Check the newly issued certificate chain validates with the Pebble\n trust anchor, and that the certificate is valid for each of the names\n from our initial order\n\nThese tests are skipped in short mode (Pebble has variable delays for\nvalidation requests).\n\nThe Pebble source is fetched through the Go module proxy (unless\na local directory is specified to aid development), similar to how the\nstdlib crypto packages fetch BoGo tooling.\n\nMore test coverage for various other parts of the protocol (key\nrollover, account/authz deactivation, revocation, etc) can be added as\nfollow-up work now that the groundwork for integration testing is laid.\n\nFixes golang/go#73914\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest\nChange-Id: I4e79f4858f31ef290a0c91d345e15fbdc510e9ab\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/677575\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Ian Stapleton Cordasco \u003cgraffatcolmingov@gmail.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "97bf78725562ce22e18036873215f2203b3e0e1e", "tree": "a8c948ed31b6e0e19fd804f18d45e3646bebc21d", "parents": [ "952517d181d424f6c77f7460bf728205cb048411" ], "author": { "name": "qiulaidongfeng", "email": "2645477756@qq.com", "time": "Sat Jan 25 17:26:55 2025 +0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jun 30 09:39:26 2025 -0700" }, "message": "blake2b: implement hash.XOF\n\nFixes golang/go#69518\n\nChange-Id: Id9989ac9b28262df77017e97f985f67c1571c3ce\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/644255\nReviewed-by: Austin Clements \u003caustin@google.com\u003e\nAuto-Submit: Austin Clements \u003caustin@google.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "952517d181d424f6c77f7460bf728205cb048411", "tree": "f35440068a2d84b879dee64b537401e07a755d76", "parents": [ "c6fce028266aa1271946a7dfde94cd71cf077d5e" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jun 16 16:01:14 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jun 30 09:08:05 2025 -0700" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: Icb71f9f7c509dc6f49ad4385aa287bd6a8966523\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/681915\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "c6fce028266aa1271946a7dfde94cd71cf077d5e", "tree": "a528bed47b954a837edfb2687e1c592342b1015f", "parents": [ "0ae49b8145643036e0e6c266cf4edc0f543ea9e0" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Wed Jun 04 12:39:12 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jun 30 09:02:50 2025 -0700" }, "message": "ssh: refuse to parse certificates that use a certificate as signing key\n\nAccording to draft-miller-ssh-cert-01, Section 2.1.1, certificates with\ncertificate keys as signature keys are invalid\n\nChange-Id: I474524ea444deb78f2fa7c2682e47c0fd057f0b8\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/678716\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\n" }, { "commit": "0ae49b8145643036e0e6c266cf4edc0f543ea9e0", "tree": "bbb11bd74ed4b0e515cfd1cbb5002a47e94e21de", "parents": [ "3bf9d2afd4f01ad3d1f1e2e19ea6ee7ea27f8384" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Wed Jun 04 11:54:11 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Jun 30 09:02:45 2025 -0700" }, "message": "ssh: reject certificate keys used as signature keys for SSH certs\n\nAs specified in draft-miller-ssh-cert-01, Section 2.1.1:\nImplementations MUST NOT accept certificate keys as CA keys.\n\nChange-Id: I2e559a8a58b7bceccd0d8c6b80803abdbe281067\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/678715\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "3bf9d2afd4f01ad3d1f1e2e19ea6ee7ea27f8384", "tree": "8e02010f4147555d0d9febe5fd3367fc245d511d", "parents": [ "9bab96736ccafb2ee12ac5f5ac3655c5491825dd" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Thu Jun 05 18:49:31 2025 +0200" }, "committer": { "name": "Filippo Valsorda", "email": "filippo@golang.org", "time": "Thu Jun 05 10:42:09 2025 -0700" }, "message": "ssh/test: skip KEX test if unsupported by system SSH client\n\nSkip the key exchange test when using the system\u0027s ssh CLI if the\nrequired KEX algorithm (e.g., mlkem768x25519-sha256) is not supported.\nThis is determined by running ssh -Q kex and checking for the presence\nof the target algorithm.\nPrevents false test failures in CI environments with older or limited\nSSH implementations.\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-darwin-amd64-longtest,x_crypto-gotip-linux-amd64-longtest,x_crypto-gotip-windows-amd64-longtest\nChange-Id: I3fac703ec70559e18b30d5fff88274335a7c3952\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/679195\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "9bab96736ccafb2ee12ac5f5ac3655c5491825dd", "tree": "0c5f3ac79852d57c156d317fc13e44bc19b0359b", "parents": [ "4f9f0ca9fcfb05873f4a88940e285c7fbf343da5" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Jun 05 08:18:22 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Jun 05 08:51:54 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: Icbe0bf922207aefa5ee047a35dfb71843ec75306\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/679135\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\n" }, { "commit": "4f9f0ca9fcfb05873f4a88940e285c7fbf343da5", "tree": "98cfeaabbc746b6a532a6bebdfb91d782e985b74", "parents": [ "eac7cf0d78a4920a916d2eb7e9ced233544fdc08" ], "author": { "name": "Mateusz Poliwczak", "email": "mpoliwczak34@gmail.com", "time": "Sun May 25 16:55:00 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Sat May 31 02:59:11 2025 -0700" }, "message": "x509roots/fallback: add init time benchmark\n\ngoos: linux\ngoarch: amd64\npkg: golang.org/x/crypto/x509roots/fallback\ncpu: AMD Ryzen 5 4600G with Radeon Graphics\n │ /tmp/before │\n │ sec/op │\nInitTime-12 1.726m ± 0%\n\n │ /tmp/before │\n │ B/op │\nInitTime-12 1.151Mi ± 0%\n\n │ /tmp/before │\n │ allocs/op │\nInitTime-12 11.35k ± 0%\n\nFor golang/go#73691\n\nChange-Id: Ic932bd7835e50dd5c6adbdf684644afa49bddebc\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/676216\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\n" }, { "commit": "eac7cf0d78a4920a916d2eb7e9ced233544fdc08", "tree": "4b4c6f315ae451b17f7bfd2bad77a3087a2485a5", "parents": [ "18228cd6f13eca120291bd4cf343c10ca24d7e3f" ], "author": { "name": "Mateusz Poliwczak", "email": "mpoliwczak34@gmail.com", "time": "Sun May 25 16:49:41 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Sat May 31 02:59:06 2025 -0700" }, "message": "x509roots/fallback: move parsing code to a non-generated file\n\nFor golang/go#73691\n\nChange-Id: I3e2b09055c39286d863fe70ca3bd72a839e25d0a\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/676215\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "18228cd6f13eca120291bd4cf343c10ca24d7e3f", "tree": "d5a0785cdb5bb73a08872d3be5b19f15498e2e08", "parents": [ "73f63624719735a733f5d01462271b341b9c2f7f" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Wed May 28 11:16:51 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu May 29 10:16:04 2025 -0700" }, "message": "acme: return err from deprecated TLS-SNI-[01|02] functions\n\nThe TLSSNI01ChallengeCert and TLSSNI02ChallengeCert functions have been\nmarked deprecated since 2022. The package documentation indicates\npre-RFC 8555 functionality is retained for compilation success, but will\nreturn errors. This commit makes these two deprecated functions match\nthat description.\n\nNo meaningful support for these draft standard challenge types exists\nin the ACME ecosystem, and they are insecure for use in shared hosting\nenvironments.\n\nChange-Id: I1c17980a0630092c70eb971b3453a0f115834be0\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/676835\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\n" }, { "commit": "73f63624719735a733f5d01462271b341b9c2f7f", "tree": "490449fdf3b676d13aa7db1793e9f17ac55a2ada", "parents": [ "ebc8e463153182e44695bfc4e4ae8cfdc00aa86d" ], "author": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Wed May 28 11:38:41 2025 -0400" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed May 28 10:23:52 2025 -0700" }, "message": "acme: remove dead code\n\nThe private encodePem() and unique() functions under the acme package\nhad no call-sites and so can be removed.\n\nChange-Id: Ic617392e7cc9b9e795456626a623ba02df108694\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/676875\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nAuto-Submit: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\n" }, { "commit": "ebc8e463153182e44695bfc4e4ae8cfdc00aa86d", "tree": "fe78f8cdaf06749d0c05819a9c118a37ec309e4c", "parents": [ "e944286e33103542b8b53277b95c38394976493f" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Dec 09 14:25:29 2023 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu May 15 10:47:05 2025 -0700" }, "message": "ssh: add server side support for Diffie Hellman Group Exchange\n\nWe add this support for the following reasons:\n\n- We are planning to expose recommended (secure) vs. supported (works,\n not necessarily recommended) algorithms. The DHGEX kex is currently\n only exposed as a client-side kex. To simplify the calling convention\n for this follow-on, we expose the server side too.\n- Some clients are quite inflexible with reference to kex algorithms\n choice, for example they offer:\n\n diffie-hellman-group-exchange-sha256, diffie-hellman-group-exchange-sha1,\n diffie-hellman-group14-sha1, diffie-hellman-group1-sha1\n\n therefore DHGEX helps interoperability.\n\nWe do not recommend the DHGEX kex as a whole:\n\n- the negotiation requires an extra round trip\n- the server must generate parameters (slow) or hardcode them, which\n defeats the security benefit over traditional DH.\n\nIn this implementation we hardcode sending Oakley Group 14, Oakley\nGroup 15 or Oakley Group 16 based on the requested max size.\n\nUsers that are concerned with security of classical DH kex should\nmigrate to kex based on EC or Ed25519.\n\nFixes golang/go#54743\n\nChange-Id: I127822e90efc36821af4aca679931f40a2023021\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/532415\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Han-Wen Nienhuys \u003chanwen@google.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "e944286e33103542b8b53277b95c38394976493f", "tree": "8eb6fd41e926a2d5265e8f86ab04eb0d3d838597", "parents": [ "78a1fd78936b0639c1d0f8daf38880aa6e699722" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Dec 09 14:02:04 2023 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu May 15 10:44:04 2025 -0700" }, "message": "ssh: expose negotiated algorithms\n\nFixes golang/go#58523\nFixes golang/go#46638\n\nChange-Id: Ic64bd2fdd6e9ec96acac3ed4be842e2fbb15231d\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/538235\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "78a1fd78936b0639c1d0f8daf38880aa6e699722", "tree": "32945e389d774549d76a6f967676a91b4f28e25e", "parents": [ "ac58737d259962f38068acb1bcd4a51850ec4951" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun May 04 14:46:26 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu May 15 10:43:39 2025 -0700" }, "message": "ssh: automatically add curve25519-sha256@libssh.org KEX alias\n\nIf the key exchange method curve25519-sha256 is configured, automatically\nadd the curve25519-sha256@libssh.org alias to ensure compatibility with\nOpenSSH versions up to 7.2, which recognize only the older vendor-specific\nname.\n\nChange-Id: If50ab2c49179db949ba1b986f7bb0e153cc7f897\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/669716\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "ac58737d259962f38068acb1bcd4a51850ec4951", "tree": "b142269653a486b4d644cdd18acb16832437552b", "parents": [ "9dbbcf002b5cbae3b65a93e406438711bef52e53" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun May 04 14:40:10 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu May 15 10:43:30 2025 -0700" }, "message": "ssh: export supported algorithms\n\nFixes golang/go#61537\n\nChange-Id: If3478121e3ae445391e3faeceeb889d75e9e3214\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/531935\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\n" }, { "commit": "9dbbcf002b5cbae3b65a93e406438711bef52e53", "tree": "f6582d8888719d64a87e6102232300637ce244ce", "parents": [ "9f6bf8449a9fc2528340bc04e46364f63b80e91d" ], "author": { "name": "redwrasse", "email": "mail@redwrasse.io", "time": "Mon May 12 17:20:25 2025 +0000" }, "committer": { "name": "Daniel McCarney", "email": "daniel@binaryparadox.net", "time": "Mon May 12 11:46:18 2025 -0700" }, "message": "bcrypt: update InvalidCostError message to describe cost range inclusive\n\nChange InvalidCostError string to explicitly state cost bounds\nrange as inclusive, rather than using parentheses that might\nimply an exclusive range.\n\nChange-Id: Ie5e7d53ef4217c8560e6a7fe23e3d65ecc24a2a3\nGitHub-Last-Rev: b49002b6b2cff0939858553a28e3f255bde397b6\nGitHub-Pull-Request: golang/crypto#300\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/609455\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Cherry Mui \u003ccherryyz@google.com\u003e\nReviewed-by: Michael Knyszek \u003cmknyszek@google.com\u003e\n" }, { "commit": "9f6bf8449a9fc2528340bc04e46364f63b80e91d", "tree": "cb9aa664258b7e14661efc5c2924e3460e236d62", "parents": [ "aae6e61070421a51c1ba3bd9bba4b9b3979ed488" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Apr 28 16:01:06 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon May 12 08:41:11 2025 -0700" }, "message": "x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\n[git-generate]\ngo generate ./x509roots\n\nChange-Id: If1970af8da68ead595dc3fa7dd79a8555a5f09c5\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/668576\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\n" }, { "commit": "aae6e61070421a51c1ba3bd9bba4b9b3979ed488", "tree": "dbde8c0dc5b858a2950fbfefbe093b945bc81cf1", "parents": [ "9c1aa6af88df97634a66726b66bb12e56d1ef6c6" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon May 05 11:36:01 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon May 05 11:47:08 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I06b2bb01f1557af02a8bf172ee85973695506906\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/670095\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" }, { "commit": "9c1aa6af88df97634a66726b66bb12e56d1ef6c6", "tree": "68251f56a4135eec2cbccfc060ee3cb778d6e526", "parents": [ "88199028d7292312358bd6757cff1ce67cd79828" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Apr 12 17:38:29 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Apr 18 04:19:36 2025 -0700" }, "message": "ssh/test: reset the random source before capturing a recording\n\nIf a recording file exists but is invalid for any reason, the random\nsource may have already been used, resulting in a recording that\ncannot be replayed.\n\nChange-Id: Ib81aaf163f5783fede2c14a0ac10a8d2af6019c6\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/664917\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\n" }, { "commit": "88199028d7292312358bd6757cff1ce67cd79828", "tree": "84ebc9b99cc77059d5d7eea4b4dfd8fd159a3ea6", "parents": [ "3f311e442e372a8282abb4d82b6d59ac79a97f75" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sat Apr 12 15:37:33 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Apr 18 04:18:34 2025 -0700" }, "message": "ssh/test: enable Diffie-Hellman key exchange algorithms\n\nstarting with OpenSSH 10, all Diffie-Hellman key exchange algorithms\nare disabled by default. To generate recordings, we must explicitly\nenable them.\n\nChange-Id: Icfbf46b30478f36d7040991e0f6324b9b4766aaf\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/665115\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\n" }, { "commit": "3f311e442e372a8282abb4d82b6d59ac79a97f75", "tree": "b64b03df08d90025c1eb932d7acb3d6a028a2106", "parents": [ "1f7c62cd66d3486a9cbcec5a4614c0414e9c8dab" ], "author": { "name": "Ian Stapleton Cordasco", "email": "graffatcolmingov@gmail.com", "time": "Sat Mar 29 20:55:24 2025 -0500" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Apr 17 11:16:57 2025 -0700" }, "message": "acme: return error from pre-authorization when unsupported\n\nCheck the directory\u0027s AuthzURL to see if the server supports\npre-authorization. If it\u0027s empty, then the server is not advertising\nsupport and we can encounter other bugs. Better to return early and give\na clear error to the caller.\n\nFrom https://www.rfc-editor.org/rfc/rfc8555#section-7.4.1\n\n If a CA wishes to allow pre-authorization within ACME, it can offer a\n \"new authorization\" resource in its directory by adding the field\n \"newAuthz\" with a URL for the newAuthz resource.\n\nFixes golang/go#40839\n\nChange-Id: Id3e92e8e2ae3c57285183d37544dd59b4988b3be\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/661675\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Dmitri Shuralyov \u003cdmitshur@golang.org\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@golang.org\u003e\n" }, { "commit": "1f7c62cd66d3486a9cbcec5a4614c0414e9c8dab", "tree": "e271de3bcd665287fc316c9225798134ebc83ce8", "parents": [ "a5f804889e33b2a69e6dc8aba18a771bae29a08f" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Wed Apr 16 11:16:15 2025 +0200" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Apr 16 08:28:17 2025 -0700" }, "message": "ssh/test: skip unsupported tests on js/wasm\n\nThis fixes the build on the js/wasm builder.\n\nChange-Id: Icd891cd38b9da07279b9afaa168f7c64c81e13fe\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/665095\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "a5f804889e33b2a69e6dc8aba18a771bae29a08f", "tree": "1b4fb9d0c2c0316b4d468fac93b0a9590512e07c", "parents": [ "958cde86ef61ba2f51186f4a59557fa82348133a" ], "author": { "name": "Alberto Bertogli", "email": "albertito@blitiri.com.ar", "time": "Fri Oct 07 13:39:19 2022 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Apr 16 08:16:13 2025 -0700" }, "message": "acme/autocert: use standard functions to pick the cache directory\n\nacme/autocert currently has ad-hoc logic to find a reasonable default\nfor a cache directory.\n\nSince that logic was written (in 2017), new functions were added to the\nos package to provide that functionality (in Go 1.13, 2019-09):\n`os.UserCacheDir` and `os.UserHomeDir`.\n\nThis patch replaces the ad-hoc logic with a call to `os.UserCacheDir`.\n\nThe fallback to `/` is kept, since it may be relied upon in some\nenvironments.\n\nChange-Id: I3bf692ca670b87bf3d329e5d3684eee15ed374aa\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/440195\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\n" }, { "commit": "958cde86ef61ba2f51186f4a59557fa82348133a", "tree": "8eaaa45198379cebd99885821badd8b45e2b91df", "parents": [ "51f005cfd443a6a8fe542c8c2e58ed138f1cbbe2" ], "author": { "name": "Michael Pratt", "email": "mpratt@google.com", "time": "Tue Apr 15 02:22:47 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Apr 16 06:50:31 2025 -0700" }, "message": "Revert \"chacha20: add loong64 SIMD implementation\"\n\nThis reverts CL 636257.\n\nReason for revert: Does not build on 1.23 or 1.24\n\nFor golang/go#73354.\n\nChange-Id: Ie28d5c45930a8eacd5cabed64390ef674b3fb446\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/665536\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nAuto-Submit: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "51f005cfd443a6a8fe542c8c2e58ed138f1cbbe2", "tree": "bc311661103a3a43c79c1cb88f06d0f8a9c1aa06", "parents": [ "7c358664da2071dd8c46274b0e0ba68b11f796cd" ], "author": { "name": "Michael Pratt", "email": "mpratt@google.com", "time": "Tue Apr 15 02:22:27 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Apr 16 06:50:29 2025 -0700" }, "message": "Revert \"salsa20: add loong64 SIMD implementation\"\n\nThis reverts CL 663375.\n\nReason for revert: Does not build on 1.23 or 1.24\n\nFor golang/go#73354.\n\nChange-Id: I251d598423b83c01cc2e04ddf6f49ae14095fa7c\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/665535\nAuto-Submit: Michael Pratt \u003cmpratt@google.com\u003e\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "7c358664da2071dd8c46274b0e0ba68b11f796cd", "tree": "23502a884e0fb15f5c194829baf08719dc31d1c6", "parents": [ "0091fc8e7c693be8d8cbfee206c04512cf4f7513" ], "author": { "name": "Michael Pratt", "email": "mpratt@google.com", "time": "Tue Apr 15 02:22:59 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Apr 16 06:49:50 2025 -0700" }, "message": "Revert \"argon2: add loong64 SIMD implementation\"\n\nThis reverts CL 657795.\n\nReason for revert: Does not build on 1.23 or 1.24\n\nFor golang/go#73354.\n\nChange-Id: I69498f24b57bd6650c9d1f4c755922cfaaba4a84\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/665555\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nAuto-Submit: Michael Pratt \u003cmpratt@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "0091fc8e7c693be8d8cbfee206c04512cf4f7513", "tree": "0ec78c3c6670a79c6477b3b4939bc2081f44d208", "parents": [ "388684e50b26e51e1428afcacb811c0732c45c01" ], "author": { "name": "Michael Pratt", "email": "mpratt@google.com", "time": "Sun Apr 13 22:05:13 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Apr 14 04:06:44 2025 -0700" }, "message": "Revert \"blake2s: add loong64 SIMD implementation\"\n\nThis reverts CL 661215.\n\nReason for revert: Does not build on 1.23 or 1.24\n\nFixes #73354.\n\nChange-Id: I90abd8a3dabf5c0d9fd1062de3ba3e78ecb2f2e8\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/664796\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nAuto-Submit: Michael Pratt \u003cmpratt@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "388684e50b26e51e1428afcacb811c0732c45c01", "tree": "9f3b415a3e7fbc0061601b10a8d12dfa478590d7", "parents": [ "953e8095893cd9efe44a90fd07ed3cfc87bfc109" ], "author": { "name": "Xiaolin Zhao", "email": "zhaoxiaolin@loongson.cn", "time": "Fri Mar 14 15:28:49 2025 +0800" }, "committer": { "name": "abner chenc", "email": "chenguoqi@loongson.cn", "time": "Sun Apr 13 20:23:35 2025 -0700" }, "message": "argon2: add loong64 SIMD implementation\n\nThe performance gains on Loongson 3A6000 and 3A5000 are as follows:\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/argon2\ncpu: Loongson-3A6000-HV @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nArgon2i/_Time:_3_Memory:_32_MB,_Threads:_1 131.23m ± 0% 67.56m ± 1% -48.52% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_4_Memory:_32_MB,_Threads:_1 171.28m ± 2% 90.20m ± 0% -47.34% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_5_Memory:_32_MB,_Threads:_1 213.3m ± 0% 112.6m ± 0% -47.21% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_3_Memory:_64_MB,_Threads:_4 269.5m ± 0% 147.2m ± 0% -45.37% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_4_Memory:_64_MB,_Threads:_4 357.7m ± 0% 195.4m ± 0% -45.36% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_5_Memory:_64_MB,_Threads:_4 449.8m ± 0% 243.8m ± 0% -45.79% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_3,_Memory:_32_MB,_Threads:_1 126.56m ± 0% 67.43m ± 0% -46.72% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_4,_Memory:_32_MB,_Threads:_1 168.57m ± 0% 90.04m ± 0% -46.58% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_5,_Memory:_32_MB,_Threads:_1 210.5m ± 0% 112.7m ± 0% -46.45% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_3,_Memory:_64_MB,_Threads:_4 264.8m ± 0% 145.0m ± 1% -45.23% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_4,_Memory:_64_MB,_Threads:_4 353.8m ± 0% 193.7m ± 0% -45.26% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_5,_Memory:_64_MB,_Threads:_4 444.4m ± 0% 242.3m ± 0% -45.49% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_3,_Memory:_32_MB,_Threads:_1 126.89m ± 0% 66.62m ± 0% -47.50% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_4,_Memory:_32_MB,_Threads:_1 169.02m ± 0% 89.07m ± 0% -47.30% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_5,_Memory:_32_MB,_Threads:_1 210.7m ± 0% 111.0m ± 0% -47.34% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_3,_Memory:_64_MB,_Threads:_4 267.6m ± 1% 145.8m ± 0% -45.51% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_4,_Memory:_64_MB,_Threads:_4 355.1m ± 0% 194.1m ± 0% -45.34% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_5,_Memory:_64_MB,_Threads:_4 443.6m ± 0% 242.5m ± 0% -45.33% (p\u003d0.000 n\u003d10)\ngeomean 240.8m 129.3m -46.32%\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/argon2\ncpu: Loongson-3A5000 @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nArgon2i/_Time:_3_Memory:_32_MB,_Threads:_1 209.9m ± 1% 109.7m ± 2% -47.75% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_4_Memory:_32_MB,_Threads:_1 278.1m ± 0% 143.7m ± 0% -48.34% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_5_Memory:_32_MB,_Threads:_1 346.7m ± 0% 178.1m ± 0% -48.63% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_3_Memory:_64_MB,_Threads:_4 455.3m ± 0% 240.8m ± 0% -47.12% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_4_Memory:_64_MB,_Threads:_4 604.6m ± 0% 317.7m ± 0% -47.45% (p\u003d0.000 n\u003d10)\nArgon2i/_Time:_5_Memory:_64_MB,_Threads:_4 754.8m ± 0% 395.4m ± 0% -47.61% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_3,_Memory:_32_MB,_Threads:_1 206.9m ± 1% 107.6m ± 0% -48.00% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_4,_Memory:_32_MB,_Threads:_1 274.3m ± 0% 141.8m ± 1% -48.32% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_5,_Memory:_32_MB,_Threads:_1 342.4m ± 0% 175.6m ± 0% -48.71% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_3,_Memory:_64_MB,_Threads:_4 450.2m ± 0% 237.9m ± 0% -47.15% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_4,_Memory:_64_MB,_Threads:_4 597.7m ± 0% 314.0m ± 0% -47.46% (p\u003d0.000 n\u003d10)\nArgon2d/_Time:_5,_Memory:_64_MB,_Threads:_4 745.8m ± 0% 390.7m ± 1% -47.61% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_3,_Memory:_32_MB,_Threads:_1 207.6m ± 0% 107.9m ± 0% -48.05% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_4,_Memory:_32_MB,_Threads:_1 275.0m ± 0% 142.0m ± 0% -48.34% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_5,_Memory:_32_MB,_Threads:_1 342.9m ± 1% 176.0m ± 0% -48.66% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_3,_Memory:_64_MB,_Threads:_4 450.6m ± 1% 238.5m ± 0% -47.07% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_4,_Memory:_64_MB,_Threads:_4 598.5m ± 1% 314.6m ± 0% -47.44% (p\u003d0.000 n\u003d10)\nArgon2id/_Time:_5,_Memory:_64_MB,_Threads:_4 746.4m ± 0% 391.0m ± 0% -47.61% (p\u003d0.000 n\u003d10)\ngeomean 398.6m 207.9m -47.86%\n\nChange-Id: Iaa9d134d68dd2f0972fc5768d7e66f7b1ff0ebd3\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/657795\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "953e8095893cd9efe44a90fd07ed3cfc87bfc109", "tree": "e1a7da81cb274a1d75bee084b26587ecaac3c0b8", "parents": [ "18f770732fa01d5d5e1a529a5518d7b70f93d3c6" ], "author": { "name": "Xiaolin Zhao", "email": "zhaoxiaolin@loongson.cn", "time": "Mon Dec 16 11:24:59 2024 +0800" }, "committer": { "name": "abner chenc", "email": "chenguoqi@loongson.cn", "time": "Sun Apr 13 20:23:16 2025 -0700" }, "message": "chacha20: add loong64 SIMD implementation\n\nThe performance of chacha20 has been greatly improved on 3A6000 and 3A5000.\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/chacha20\ncpu: Loongson-3A6000 @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nChaCha20/64 171.9n ± 0% 159.3n ± 0% -7.33% (p\u003d0.000 n\u003d20)\nChaCha20/256 592.2n ± 0% 142.8n ± 0% -75.89% (p\u003d0.000 n\u003d20)\nChaCha20/10x25 981.5n ± 0% 518.8n ± 0% -47.14% (p\u003d0.000 n\u003d20)\nChaCha20/4096 8.991µ ± 0% 1.732µ ± 0% -80.74% (p\u003d0.000 n\u003d20)\nChaCha20/100x40 10.651µ ± 0% 5.135µ ± 0% -51.79% (p\u003d0.000 n\u003d20)\nChaCha20/65536 143.43µ ± 0% 28.76µ ± 0% -79.95% (p\u003d0.000 n\u003d20)\nChaCha20/1000x65 146.17µ ± 0% 37.13µ ± 0% -74.60% (p\u003d0.000 n\u003d20)\ngeomean 5.721µ 1.962µ -65.70%\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\nChaCha20/64 355.1Mi ± 0% 383.1Mi ± 0% +7.89% (p\u003d0.000 n\u003d20)\nChaCha20/256 412.2Mi ± 0% 1710.2Mi ± 0% +314.86% (p\u003d0.000 n\u003d20)\nChaCha20/10x25 242.9Mi ± 0% 459.6Mi ± 0% +89.19% (p\u003d0.000 n\u003d20)\nChaCha20/4096 434.5Mi ± 0% 2255.8Mi ± 0% +419.22% (p\u003d0.000 n\u003d20)\nChaCha20/100x40 358.1Mi ± 0% 742.9Mi ± 0% +107.44% (p\u003d0.000 n\u003d20)\nChaCha20/65536 435.8Mi ± 0% 2173.2Mi ± 0% +398.72% (p\u003d0.000 n\u003d20)\nChaCha20/1000x65 424.1Mi ± 0% 1669.4Mi ± 0% +293.64% (p\u003d0.000 n\u003d20)\ngeomean 373.9Mi 1.065Gi +191.55%\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/chacha20\ncpu: Loongson-3A5000 @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nChaCha20/64 234.5n ± 0% 295.8n ± 0% +26.14% (p\u003d0.000 n\u003d20)\nChaCha20/256 782.0n ± 0% 274.6n ± 0% -64.88% (p\u003d0.000 n\u003d20)\nChaCha20/10x25 1340.0n ± 0% 752.7n ± 0% -43.83% (p\u003d0.000 n\u003d20)\nChaCha20/4096 11.744µ ± 0% 3.455µ ± 0% -70.58% (p\u003d0.000 n\u003d20)\nChaCha20/100x40 14.151µ ± 0% 7.435µ ± 0% -47.46% (p\u003d0.000 n\u003d20)\nChaCha20/65536 188.05µ ± 0% 54.33µ ± 0% -71.11% (p\u003d0.000 n\u003d20)\nChaCha20/1000x65 191.44µ ± 0% 66.29µ ± 0% -65.37% (p\u003d0.000 n\u003d20)\ngeomean 7.604µ 3.436µ -54.81%\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\nChaCha20/64 260.3Mi ± 0% 206.3Mi ± 0% -20.73% (p\u003d0.000 n\u003d20)\nChaCha20/256 312.2Mi ± 0% 888.9Mi ± 0% +184.75% (p\u003d0.000 n\u003d20)\nChaCha20/10x25 177.9Mi ± 0% 316.8Mi ± 0% +78.08% (p\u003d0.000 n\u003d20)\nChaCha20/4096 332.6Mi ± 0% 1130.8Mi ± 0% +239.95% (p\u003d0.000 n\u003d20)\nChaCha20/100x40 269.6Mi ± 0% 513.1Mi ± 0% +90.34% (p\u003d0.000 n\u003d20)\nChaCha20/65536 332.4Mi ± 0% 1150.5Mi ± 0% +246.16% (p\u003d0.000 n\u003d20)\nChaCha20/1000x65 323.8Mi ± 0% 935.2Mi ± 0% +188.81% (p\u003d0.000 n\u003d20)\ngeomean 281.3Mi 622.6Mi +121.31%\n\nChange-Id: I5386f2029122076c1d22a04610567e3df23877cd\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/636257\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "18f770732fa01d5d5e1a529a5518d7b70f93d3c6", "tree": "411e6e1da95c71a94ef5cbe75517792ef48b2ff1", "parents": [ "2ebaafcdf5677d2f056d0e8b9a8695e58d4feea7" ], "author": { "name": "Xiaolin Zhao", "email": "zhaoxiaolin@loongson.cn", "time": "Mon Apr 07 15:25:31 2025 +0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Apr 11 13:55:20 2025 -0700" }, "message": "salsa20: add loong64 SIMD implementation\n\nThe performance gains on Loongson 3A6000 and 3A5000 are as follows:\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/salsa20\ncpu: Loongson-3A6000-HV @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nXOR1K 3175.0n ± 0% 435.4n ± 0% -86.29% (p\u003d0.000 n\u003d20)\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\nXOR1K 307.6Mi ± 0% 2242.7Mi ± 0% +629.13% (p\u003d0.000 n\u003d20)\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/salsa20\ncpu: Loongson-3A5000 @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nXOR1K 4125.0n ± 0% 864.0n ± 0% -79.05% (p\u003d0.000 n\u003d20)\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\nXOR1K 236.7Mi ± 0% 1130.3Mi ± 0% +377.41% (p\u003d0.000 n\u003d20)\n\nChange-Id: Ib37f603e6654f1e3837985fad4b6dee10b5af993\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/663375\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "2ebaafcdf5677d2f056d0e8b9a8695e58d4feea7", "tree": "7a4596f041bd16f747d8a35e93f903392a6f700b", "parents": [ "4bc0711281828327e78c10b8c280675e47e6cc23" ], "author": { "name": "Xiaolin Zhao", "email": "zhaoxiaolin@loongson.cn", "time": "Thu Mar 27 10:57:40 2025 +0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Apr 11 13:55:16 2025 -0700" }, "message": "blake2s: add loong64 SIMD implementation\n\nThe performance gains on Loongson 3A6000 and 3A5000 are as follows:\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/blake2s\ncpu: Loongson-3A6000-HV @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nWrite64 277.8n ± 0% 113.5n ± 0% -59.14% (p\u003d0.000 n\u003d10)\nWrite1K 4.246µ ± 0% 1.736µ ± 0% -59.11% (p\u003d0.000 n\u003d10)\nSum64 289.9n ± 0% 137.7n ± 0% -52.51% (p\u003d0.000 n\u003d10)\nSum1K 4.265µ ± 0% 1.758µ ± 0% -58.78% (p\u003d0.000 n\u003d10)\ngeomean 1.099µ 467.3n -57.48%\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\nWrite64 219.7Mi ± 0% 537.9Mi ± 0% +144.86% (p\u003d0.000 n\u003d10)\nWrite1K 230.0Mi ± 0% 562.6Mi ± 0% +144.62% (p\u003d0.000 n\u003d10)\nSum64 210.5Mi ± 0% 443.3Mi ± 0% +110.59% (p\u003d0.000 n\u003d10)\nSum1K 229.0Mi ± 0% 555.5Mi ± 0% +142.64% (p\u003d0.000 n\u003d10)\ngeomean 222.1Mi 522.5Mi +135.21%\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/blake2s\ncpu: Loongson-3A5000 @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\nWrite64 373.8n ± 0% 175.0n ± 0% -53.18% (p\u003d0.000 n\u003d10)\nWrite1K 5.763µ ± 0% 2.595µ ± 0% -54.97% (p\u003d0.000 n\u003d10)\nSum64 397.8n ± 0% 205.7n ± 0% -48.29% (p\u003d0.000 n\u003d10)\nSum1K 5.787µ ± 0% 2.627µ ± 0% -54.61% (p\u003d0.000 n\u003d10)\ngeomean 1.492µ 703.8n -52.83%\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\nWrite64 163.3Mi ± 0% 348.9Mi ± 0% +113.62% (p\u003d0.000 n\u003d10)\nWrite1K 169.5Mi ± 0% 376.3Mi ± 0% +122.09% (p\u003d0.000 n\u003d10)\nSum64 153.4Mi ± 0% 296.7Mi ± 0% +93.37% (p\u003d0.000 n\u003d10)\nSum1K 168.7Mi ± 0% 371.8Mi ± 0% +120.33% (p\u003d0.000 n\u003d10)\ngeomean 163.6Mi 346.9Mi +112.03%\n\nChange-Id: Id91ffbefc538bce294875d72e6cde72fea43afbf\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/661215\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nAuto-Submit: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "4bc0711281828327e78c10b8c280675e47e6cc23", "tree": "8eaaa45198379cebd99885821badd8b45e2b91df", "parents": [ "c96bba2ced58241e913463bed27fdb1f43ef21f4" ], "author": { "name": "cuishuang", "email": "imcusg@gmail.com", "time": "Fri Apr 11 18:15:39 2025 +0800" }, "committer": { "name": "Roland Shoemaker", "email": "roland@golang.org", "time": "Fri Apr 11 09:06:14 2025 -0700" }, "message": "acme: use built-in max/min to simplify the code\n\nChange-Id: I6ba8d07b9e53b01f25f4c1c8eac629aaa47de3a1\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/664836\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\n" }, { "commit": "c96bba2ced58241e913463bed27fdb1f43ef21f4", "tree": "4ecddae167c61211a38f07f03005f7e27bcc9d9e", "parents": [ "6b13eef40bc0e0e8c4b384879b77c8d961fb4a14" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Feb 02 19:23:48 2025 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Apr 11 07:39:49 2025 -0700" }, "message": "ssh: add mlkem768x25519-sha256 Key Exchange algorithm\n\nmlkem768x25519-sha256 requires the crypto/mlkem package introduced in\nGo 1.24.\n\nThanks to Damien Miller for posting an early version to the OpenSSH\nmailing list.\n\nCo-authored-by: Damien Miller \u003cdjm@mindrot.org\u003e\nChange-Id: I4235cf906903524a9a97283834cc8f43b5f76f91\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/646075\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "6b13eef40bc0e0e8c4b384879b77c8d961fb4a14", "tree": "3e201322a4d70342671b0c5504178b88ecc5d321", "parents": [ "959f8f3db0fb8c3fb1f9507101058dda21e1fdcf" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Jan 26 17:41:36 2025 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Fri Apr 11 07:29:06 2025 -0700" }, "message": "ssh: add integration tests against a reference implementation\n\nAs in crypto/tls, we record the connection against a reference\nimplementation, OpenSSH in our case, and run part of our integration\ntests by replaying these recorded SSH connections.\n\nChange-Id: If042b5f650b267bd3ede34a05ec3a6fa6d1a86b3\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/644436\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\nAuto-Submit: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\n" }, { "commit": "959f8f3db0fb8c3fb1f9507101058dda21e1fdcf", "tree": "d22bc63a80c9332c5fe007c2335126f0b21883c1", "parents": [ "769bcd6997ac6f3154e27b73b3587295f7720e66" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Sat Apr 05 17:52:06 2025 -0700" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Sun Apr 06 09:04:20 2025 -0700" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I1e9480e5897a08cac746309acdc8bbdf0bce8060\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/663256\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "769bcd6997ac6f3154e27b73b3587295f7720e66", "tree": "121a4b7a8a71c90ee0a41c088bf5340bdfad5541", "parents": [ "d0a798f774735c176ed0d3500ac986957a02660f" ], "author": { "name": "Nicola Murino", "email": "nicola.murino@gmail.com", "time": "Sun Jan 26 10:45:16 2025 +0100" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Apr 03 13:05:29 2025 -0700" }, "message": "ssh: use the configured rand in kex init\n\nChange-Id: I4f89c395886b9dd07b584d1fcf1a0f2df215b91b\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/644435\nReviewed-by: Filippo Valsorda \u003cfilippo@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nAuto-Submit: Carlos Amedee \u003ccarlos@golang.org\u003e\nReviewed-by: Carlos Amedee \u003ccarlos@golang.org\u003e\n" }, { "commit": "d0a798f774735c176ed0d3500ac986957a02660f", "tree": "ef63a25577cb89452a654371e3db006e9d4efb2d", "parents": [ "acbcbef23f9b1b3b7c64673f0ed8baa83475edbe" ], "author": { "name": "Simon Josefsson", "email": "simon@josefsson.org", "time": "Sun Mar 16 21:00:28 2025 +0000" }, "committer": { "name": "Roland Shoemaker", "email": "roland@golang.org", "time": "Mon Mar 17 08:22:34 2025 -0700" }, "message": "cryptobyte: fix typo \u0027octects\u0027 into \u0027octets\u0027 for asn1.go\n\nThis typo ends up into lots of executables that trigger \u0027codespell\u0027-style linter checks.\n\nChange-Id: I2a7e3a6597272ca7c97ebddc54c5eef4cb5cab88\nGitHub-Last-Rev: e42f734f00aa575030b72dd1e328d2acefb02625\nGitHub-Pull-Request: golang/crypto#310\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/646375\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Ian Lance Taylor \u003ciant@google.com\u003e\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\n" }, { "commit": "acbcbef23f9b1b3b7c64673f0ed8baa83475edbe", "tree": "a9ffcfc4ed5737c6907ea41edb755ad6303f882c", "parents": [ "376eb1400636d0d687bee5520daadb5fdeac3311" ], "author": { "name": "Mateusz Poliwczak", "email": "mpoliwczak34@gmail.com", "time": "Sun Dec 11 12:29:08 2022 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Mon Mar 17 08:22:03 2025 -0700" }, "message": "acme: remove unnecessary []byte conversion\n\nChange-Id: Iddbe6bcb7a5487678c48df65903571b4625fc9f9\nGitHub-Last-Rev: 2552a8d99c7472f029d7da270fa814398793b564\nGitHub-Pull-Request: golang/crypto#243\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/456438\nReviewed-by: Roland Shoemaker \u003croland@golang.org\u003e\nReviewed-by: Ian Lance Taylor \u003ciant@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Sean Liao \u003csean@liao.dev\u003e\nAuto-Submit: Sean Liao \u003csean@liao.dev\u003e\n" }, { "commit": "376eb1400636d0d687bee5520daadb5fdeac3311", "tree": "e561de6fc6d3cc01fd3d821dfe924f2573fd9465", "parents": [ "b369b723c8ad46b179f3a49d57bfc7d6a2740cdf" ], "author": { "name": "Roland Shoemaker", "email": "roland@golang.org", "time": "Wed Feb 26 12:18:35 2025 -0800" }, "committer": { "name": "Roland Shoemaker", "email": "roland@golang.org", "time": "Thu Mar 13 16:44:06 2025 -0700" }, "message": "x509roots: support constrained roots\n\nAdds support for roots with the distrust-after bit set. The constraint\nfunction construction is a little funky, but I couldn\u0027t think of an\nobvious better way to do it.\n\nFixes golang/go#70777\nFixes golang/go#70623\n\nChange-Id: I780f866416b626360eaee9368185768da7bc75ef\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/652996\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nReviewed-by: Daniel McCarney \u003cdaniel@binaryparadox.net\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\n" }, { "commit": "b369b723c8ad46b179f3a49d57bfc7d6a2740cdf", "tree": "689cd5cf5359689bb4d1cb4fbf0f96d84c1982d4", "parents": [ "6b853fbea37a941d918ac0760a5492802df42b9b" ], "author": { "name": "Xiaolin Zhao", "email": "zhaoxiaolin@loongson.cn", "time": "Mon Dec 23 10:24:07 2024 +0800" }, "committer": { "name": "abner chenc", "email": "chenguoqi@loongson.cn", "time": "Tue Mar 11 17:59:26 2025 -0700" }, "message": "crypto/internal/poly1305: implement function update in assembly on loong64\n\nThe performance improvements on Loongson-3A5000 and Loongson-3A6000 are as follows:\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/internal/poly1305\ncpu: Loongson-3A5000 @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\n64 122.8n ± 0% 100.0n ± 0% -18.57% (p\u003d0.000 n\u003d10)\n1K 1152.0n ± 0% 732.2n ± 0% -36.44% (p\u003d0.000 n\u003d10)\n2M 2.356m ± 0% 1.443m ± 0% -38.74% (p\u003d0.000 n\u003d10)\n64Unaligned 122.7n ± 0% 101.5n ± 0% -17.24% (p\u003d0.000 n\u003d10)\n1KUnaligned 1152.0n ± 0% 745.4n ± 0% -35.30% (p\u003d0.000 n\u003d10)\n2MUnaligned 2.336m ± 0% 1.473m ± 0% -36.94% (p\u003d0.000 n\u003d10)\nWrite64 77.92n ± 0% 54.88n ± 0% -29.57% (p\u003d0.000 n\u003d10)\nWrite1K 1106.0n ± 0% 683.3n ± 0% -38.22% (p\u003d0.000 n\u003d10)\nWrite2M 2.356m ± 0% 1.444m ± 0% -38.72% (p\u003d0.000 n\u003d10)\nWrite64Unaligned 77.87n ± 0% 55.69n ± 0% -28.49% (p\u003d0.000 n\u003d10)\nWrite1KUnaligned 1106.0n ± 0% 708.1n ± 0% -35.97% (p\u003d0.000 n\u003d10)\nWrite2MUnaligned 2.335m ± 0% 1.471m ± 0% -37.01% (p\u003d0.000 n\u003d10)\ngeomean 6.373µ 4.272µ -32.96%\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\n64 497.1Mi ± 0% 610.3Mi ± 0% +22.78% (p\u003d0.000 n\u003d10)\n1K 847.6Mi ± 0% 1333.7Mi ± 0% +57.35% (p\u003d0.000 n\u003d10)\n2M 849.0Mi ± 0% 1385.9Mi ± 0% +63.24% (p\u003d0.000 n\u003d10)\n64Unaligned 497.4Mi ± 0% 600.9Mi ± 0% +20.81% (p\u003d0.000 n\u003d10)\n1KUnaligned 847.6Mi ± 0% 1310.1Mi ± 0% +54.57% (p\u003d0.000 n\u003d10)\n2MUnaligned 856.3Mi ± 0% 1357.9Mi ± 0% +58.58% (p\u003d0.000 n\u003d10)\nWrite64 783.3Mi ± 0% 1112.2Mi ± 0% +41.99% (p\u003d0.000 n\u003d10)\nWrite1K 882.8Mi ± 0% 1429.1Mi ± 0% +61.88% (p\u003d0.000 n\u003d10)\nWrite2M 849.0Mi ± 0% 1385.4Mi ± 0% +63.18% (p\u003d0.000 n\u003d10)\nWrite64Unaligned 783.8Mi ± 0% 1096.1Mi ± 0% +39.85% (p\u003d0.000 n\u003d10)\nWrite1KUnaligned 882.8Mi ± 0% 1379.0Mi ± 0% +56.20% (p\u003d0.000 n\u003d10)\nWrite2MUnaligned 856.5Mi ± 0% 1359.9Mi ± 0% +58.76% (p\u003d0.000 n\u003d10)\ngeomean 772.2Mi 1.125Gi +49.18%\n\ngoos: linux\ngoarch: loong64\npkg: golang.org/x/crypto/internal/poly1305\ncpu: Loongson-3A6000-HV @ 2500.00MHz\n | bench.old | bench.new |\n | sec/op | sec/op vs base |\n64 92.06n ± 0% 71.55n ± 0% -22.28% (p\u003d0.000 n\u003d10)\n1K 998.4n ± 0% 607.7n ± 0% -39.13% (p\u003d0.000 n\u003d10)\n2M 1.976m ± 0% 1.165m ± 0% -41.07% (p\u003d0.000 n\u003d10)\n64Unaligned 92.05n ± 0% 71.55n ± 0% -22.27% (p\u003d0.000 n\u003d10)\n1KUnaligned 998.3n ± 0% 607.6n ± 0% -39.13% (p\u003d0.000 n\u003d10)\n2MUnaligned 1.975m ± 0% 1.222m ± 0% -38.11% (p\u003d0.000 n\u003d10)\nWrite64 65.24n ± 0% 45.23n ± 0% -30.67% (p\u003d0.000 n\u003d10)\nWrite1K 970.8n ± 0% 577.6n ± 0% -40.51% (p\u003d0.000 n\u003d10)\nWrite2M 1.965m ± 0% 1.163m ± 0% -40.81% (p\u003d0.000 n\u003d10)\nWrite64Unaligned 65.24n ± 0% 45.24n ± 0% -30.66% (p\u003d0.000 n\u003d10)\nWrite1KUnaligned 970.8n ± 0% 577.6n ± 0% -40.50% (p\u003d0.000 n\u003d10)\nWrite2MUnaligned 1.965m ± 0% 1.222m ± 0% -37.81% (p\u003d0.000 n\u003d10)\ngeomean 5.317µ 3.426µ -35.58%\n\n | bench.old | bench.new |\n | B/s | B/s vs base |\n64 663.0Mi ± 0% 853.1Mi ± 0% +28.67% (p\u003d0.000 n\u003d10)\n1K 978.1Mi ± 0% 1606.9Mi ± 0% +64.28% (p\u003d0.000 n\u003d10)\n2M 1012.0Mi ± 0% 1717.4Mi ± 0% +69.70% (p\u003d0.000 n\u003d10)\n64Unaligned 663.1Mi ± 0% 853.1Mi ± 0% +28.65% (p\u003d0.000 n\u003d10)\n1KUnaligned 978.2Mi ± 0% 1607.1Mi ± 0% +64.29% (p\u003d0.000 n\u003d10)\n2MUnaligned 1012.6Mi ± 0% 1636.2Mi ± 0% +61.58% (p\u003d0.000 n\u003d10)\nWrite64 935.5Mi ± 0% 1349.3Mi ± 0% +44.23% (p\u003d0.000 n\u003d10)\nWrite1K 1005.9Mi ± 0% 1690.9Mi ± 0% +68.09% (p\u003d0.000 n\u003d10)\nWrite2M 1017.7Mi ± 0% 1719.5Mi ± 0% +68.95% (p\u003d0.000 n\u003d10)\nWrite64Unaligned 935.6Mi ± 0% 1349.3Mi ± 0% +44.22% (p\u003d0.000 n\u003d10)\nWrite1KUnaligned 1006.0Mi ± 0% 1690.9Mi ± 0% +68.08% (p\u003d0.000 n\u003d10)\nWrite2MUnaligned 1017.7Mi ± 0% 1636.4Mi ± 0% +60.80% (p\u003d0.000 n\u003d10)\ngeomean 925.6Mi 1.403Gi +55.22%\n\nChange-Id: If05a8bfc868b3e6f903ff169eed7a894af741f9b\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/638455\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nReviewed-by: abner chenc \u003cchenguoqi@loongson.cn\u003e\n" }, { "commit": "6b853fbea37a941d918ac0760a5492802df42b9b", "tree": "068f4ed2b70ac9080e6d35696292a415114063c6", "parents": [ "49bf5b80c8108983f588ecabd7bf996e6e63a515" ], "author": { "name": "Carlos A Becker", "email": "caarlos0@users.noreply.github.com", "time": "Tue Mar 04 14:03:42 2025 +0000" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Thu Mar 06 10:51:46 2025 -0800" }, "message": "ssh/knownhosts: check more than one key\n\nI believe this fixes https://github.com/golang/go/issues/36126 .\n\nThe problem was that it was keeping only the first known key of each\ntype found.\nIf you have a server advertising multiple keys of the same type,\nyou might get a missmatch key error.\n\nPer sshd(8) man page, it should allow reapeatable hosts with\ndifferent host keys, although it don\u0027t specify anything about\nhosts being from different types:\n\n\"It is permissible (but not recommended) to have several lines or\ndifferent host keys for the same names. This will inevitably happen when\nshort forms of host names from different domains are put in the file. It\nis possible that the files contain conflicting information;\nauthentication is accepted if valid information can be found from either\nfile.\"\n\nSo, this changes knownhosts behavior to accept any of the keys for a\ngiven host, regardless of type.\n\nFixes #36126\n\nChange-Id: I3450ff954259a403f2471082d013a5f79def0e16\nGitHub-Last-Rev: 361bd2bcd20348956aaf114ef159a5350397eaf4\nGitHub-Pull-Request: golang/crypto#254\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/478535\nReviewed-by: Junyang Shao \u003cshaojunyang@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: Nicola Murino \u003cnicola.murino@gmail.com\u003e\nReviewed-by: Michael Pratt \u003cmpratt@google.com\u003e\nAuto-Submit: Nicola Murino \u003cnicola.murino@gmail.com\u003e\n" }, { "commit": "49bf5b80c8108983f588ecabd7bf996e6e63a515", "tree": "ca80ab570104c5af5d58f4c79159886eeaaed6fe", "parents": [ "24852b6b3fe89f0f239f5e7181473a28e39ae814" ], "author": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Mar 05 08:14:04 2025 -0800" }, "committer": { "name": "Gopher Robot", "email": "gobot@golang.org", "time": "Wed Mar 05 09:04:21 2025 -0800" }, "message": "go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: Ieae7a2d210a65d5cd2cb7e2670d283176922c767\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/655018\nAuto-Submit: Gopher Robot \u003cgobot@golang.org\u003e\nReviewed-by: Dmitri Shuralyov \u003cdmitshur@google.com\u003e\nLUCI-TryBot-Result: Go LUCI \u003cgolang-scoped@luci-project-accounts.iam.gserviceaccount.com\u003e\nReviewed-by: David Chase \u003cdrchase@google.com\u003e\n" } ], "next": "24852b6b3fe89f0f239f5e7181473a28e39ae814" }