go-x-crypto, branch v0.50.0 Fork of golang.org/x/crypto with my patches. http://git.kilabit.info/go-x-crypto/atom?h=v0.50.0 2026-04-09T15:33:22Z go.mod: update golang.org/x dependencies 2026-04-09T15:33:22Z Gopher Robot gobot@golang.org 2026-04-09T12:03:48Z urn:sha1:03ca0dcccbd37ba6be80adf74dde8d78a4d72817 Update golang.org/x dependencies to their latest tagged versions. Change-Id: Ia33bd1cd73db091960b285c234d2cf2622f30943 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/764501 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Gopher Robot <gobot@golang.org> Reviewed-by: David Chase <drchase@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> ssh: respect signer's algorithm preference in pickSignatureAlgorithm 2026-03-23T15:34:51Z Nicola Murino nicola.murino@gmail.com 2026-02-16T09:38:19Z urn:sha1:8400f4a938077a7a7817ab7d163d148e371b320b Previously, pickSignatureAlgorithm constructed the list of candidate algorithms by iterating over the static list returned by algorithmsForKeyFormat. This caused the Signer's preference order to be ignored in favor of the library's default internal order. This change inverts the filtering logic to iterate over the signer's supported algorithms first. This ensures that if a MultiAlgorithmSigner explicitly prefers a specific algorithm (e.g., rsa-sha2-512 over rsa-sha2-256), that preference is preserved and respected during the handshake negotiation. Fixes golang/go#78248 Change-Id: I48a0aac720be7f973963342b82047ce32fc96699 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/746020 Reviewed-by: Lonny Wong <lonnywang.cn@gmail.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Nicola Murino <nicola.murino@gmail.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Filippo Valsorda <filippo@golang.org> Reviewed-by: Carlos Amedee <carlos@golang.org> ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength 2026-03-20T15:28:06Z Rob Picard rob.picard@goteleport.com 2026-03-12T17:17:52Z urn:sha1:81c6cb34a8fc386ed53293cd79e3c0c232ee7366 The existing code uses cbcMinPaddingSize incorrectly. That value is also used in the first parameter of the max call, meaning it will never be used. Fixes golang/go#78062 Change-Id: I4243ab668168313919df33d78c6965e9eff0e934 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/754780 Reviewed-by: Roland Shoemaker <roland@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Carlos Amedee <carlos@golang.org> Reviewed-by: Nicola Murino <nicola.murino@gmail.com> go.mod: update golang.org/x dependencies 2026-03-11T14:17:49Z Gopher Robot gobot@golang.org 2026-03-11T12:56:32Z urn:sha1:982eaa62dfb7273603b97fc1835561450096f3bd Update golang.org/x dependencies to their latest tagged versions. Change-Id: Ic40aa8385f00dc3d3e3588a0e2555c8039ae6017 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/754160 Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Cherry Mui <cherryyz@google.com> Auto-Submit: Gopher Robot <gobot@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> ssh,acme: clean up tautological/impossible nil conditions 2026-03-10T17:37:09Z Neal Patel nealpatel@google.com 2026-01-27T21:32:36Z urn:sha1:159944f128e9b3fdeb5a5b9b102a961904601a87 Change-Id: I4c6b4b6d8dc1e8a9d2ebfb8d350b7617d3cf7949 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/739780 Auto-Submit: Neal Patel <nealpatel@google.com> Reviewed-by: David Chase <drchase@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Nicola Murino <nicola.murino@gmail.com> acme: only require prompt if server has terms of service 2026-02-13T17:12:11Z Sean Liao sean@liao.dev 2025-11-09T12:55:47Z urn:sha1:a408498e55412f2ae2a058336f78889fb1ba6115 Fixes golang/go#64881 Change-Id: I2b4415e6f987aab258c26c090ac7b1a465aa1697 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/719001 LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Junyang Shao <shaojunyang@google.com> Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Filippo Valsorda <filippo@golang.org> all: upgrade go directive to at least 1.25.0 [generated] 2026-02-11T19:12:56Z Gopher Robot gobot@golang.org 2026-02-11T18:54:17Z urn:sha1:cab0f718548e8a858701b7b48161f44748532f58 By now Go 1.26.0 has been released, and Go 1.24 is no longer supported per the Go Release Policy (see https://go.dev/doc/devel/release#policy). See go.dev/doc/godebug#go-125 for GODEBUG changes relevant to Go 1.25. For golang/go#69095. [git-generate] (cd . && go get go@1.25.0 && go mod tidy) (cd x509roots/fallback && go get go@1.25.0 && go mod tidy) Change-Id: I8df6bf58a117a2f92bb08f787e520aa9446dab46 Reviewed-on: https://go-review.googlesource.com/c/crypto/+/744680 Reviewed-by: Junyang Shao <shaojunyang@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Gopher Robot <gobot@golang.org> Reviewed-by: Michael Pratt <mpratt@google.com> x509roots/fallback: update bundle 2026-02-09T21:49:22Z Gopher Robot gobot@golang.org 2026-02-09T21:14:04Z urn:sha1:2f26647a795e74e712b3aebc2655bca60b2686f9 This is an automated CL which updates the NSS root bundle. [git-generate] go generate ./x509roots Change-Id: I3665d29edabaef0efb634031b2b7d20d32774eec Reviewed-on: https://go-review.googlesource.com/c/crypto/+/743540 Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Auto-Submit: Gopher Robot <gobot@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Roland Shoemaker <roland@golang.org> go.mod: update golang.org/x dependencies 2026-02-09T16:37:10Z Gopher Robot gobot@golang.org 2026-02-09T16:29:51Z urn:sha1:e08b06753d6a72f1fe375b6e0fefefb39917c165 Update golang.org/x dependencies to their latest tagged versions. Change-Id: I1b283104f6d4557ee12c256bbadfccb3cd5548be Reviewed-on: https://go-review.googlesource.com/c/crypto/+/743362 Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Cherry Mui <cherryyz@google.com> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Auto-Submit: Gopher Robot <gobot@golang.org> scrypt: fix panic on parameters <= 0 2026-01-13T15:44:11Z Juergen Graf juergen.graf@gmail.com 2025-12-22T01:27:49Z urn:sha1:7d0074ccc6f17acbf2ebb10db06d492e08f887dc Providing 0 as argument for r or p results in a panic: panic: runtime error: integer divide by zero Providing negative values for r or p returns a misleading error: scrypt: parameters are too large This change avoids the panic and introduces a new error that is returned when r or p are <= 0: scrypt: parameters must be > 0 Change-Id: I68987b27d1eedd66644d2ec9436cba364fc1d46d Reviewed-on: https://go-review.googlesource.com/c/crypto/+/731780 Reviewed-by: Michael Pratt <mpratt@google.com> Reviewed-by: Roland Shoemaker <roland@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com> Reviewed-by: Filippo Valsorda <filippo@golang.org> Auto-Submit: Roland Shoemaker <roland@golang.org>