Updates Readme

Signed-off-by: irbekrm <[email protected]>

Updates README to explain why we are using this fork

Signed-off-by: irbekrm <[email protected]>

Signed-off-by: irbekrm <[email protected]>

Signed-off-by: Maartje Eyskens <[email protected]>

More compliant with the spec and allows autocert to work
with Pebble (see letsencrypt/pebble#304...

This CL simplifies the smix implementation.
It:
- replaces the manual byte-int conversion
wi...

This upgrades golang.org/x/net to the latest revision
which itself depends on (upgraded) golang....

Make all our package sources use Go 1.17 gofmt format
(adding //go:build lines).

Not strictly n...

For golang/go#44269.

Change-Id: I92e168674612af390bcb80a0579df5c777c26970
Reviewed-on: https://...

For golang/go#44269.

Change-Id: I7e405afd0b55c96ce0a4c6058ba01e8be1173a8c
Reviewed-on: https://...

For golang/go#44269.

Change-Id: Ica352261d696317addbdd422d4cde5bf07fef839
Reviewed-on: https://...

For golang/go#44269.

Change-Id: I877a8056dbd8ab1dedadb562aa1b3d9e1e0d55da
Reviewed-on: https://...

HMAC-SHA256 is a perfectly fine MAC algorithm, and there is no need to
ask the user to choose on...

Implements https://tools.ietf.org/html/rfc8555#section-7.3.4

Fixes golang/go#41430

Co-authored...

The ability to trigger the 'gssapi-with-mic' authentication method is
not properly gated by the ...

A badge linking to https://pkg.go.dev/golang.org/x/crypto is added.

Change-Id: Ifa07c0c04e3dd30...

appengine is obsolete and superseded by purego, and gc is a more
precise tag for files that use ...

Change-Id: I003c389585a42089fc9cc595d1f5f1027cd482f2
Reviewed-on: https://go-review.googlesource...

Brings in CL 258002 which should fix builds for unsupported targets.

Change-Id: I06e6b79347f908...

The package moved to x/term in CL 258001.

Fixes golang/go#31044

Change-Id: I9d39bfb6f54f09de60...

Fixes golang/go#42496

Change-Id: Iae2ddb916904d9b3947bec9638c9fbf892df7b7c
Reviewed-on: https:/...

Fixes golang/go#41823

Change-Id: I4653f23239bdf2ab472d3d15c6653b89ebf7ccd4
GitHub-Last-Rev: 179...

Fixes golang/go#41906

Change-Id: I2eee82160a4450f531f11d5ba7bd6ed19c019992
Reviewed-on: https:/...

Uses only the test vectors that use the same MGF and label hashes.

Change-Id: I971f78556e7b8fdb...

Fixes golang/go#41692

Change-Id: If6e885ca2e016dfecf534093c989356142ec7823
GitHub-Last-Rev: fe6...

This change clarifies the behaviors of ParseResponse and ParseResponseForCert,
particularly when...

The existing implementation validates that the prime returned by the server is, in fact, prime, ...

As of Go 1.14.1, -d=checkptr no longer errors on unaligned reads of
non-pointer data.

This reve...

Add a generic AEAD test that exercises the vectors for AES GCM,
ChaCha20Poly-1305, and XChaCha20...

Looking at our own use case as well as people running into the same issue
[1][2], it seems like ...

Fixes golang/go#28018

Change-Id: I2daf99789328ef476de834c3cc703e01b468b3ee
Reviewed-on: https:/...

By using a slice instead of a map for tried authentication methods the order is always the same....

Required updating wycheproofModVer to pull the most recent test
vectors. Tests against SHA1, SHA...

rfc4254 section 5.4 states that channel request messages sent to an
unrecognized channel should ...

Fix for problem with ReadASN1Boolean, which uses invalid tag (Integer / 0x02) when trying to rea...

The vector (vx) implementation has been updated to read in the
state and update it - as opposed ...

Document the fact that SignCert sets the Nonce field. This makes it
clear that callers need not...

Certain operations with counter values close to overflowing were causing
an unnecessary panic, w...

Fixes golang/go#38510

Change-Id: Ie52db22bf85a5f79046fad95e5bbe2788c3bec92
Reviewed-on: https:/...

Also, make sure New inlines so it does not cause an allocation. With
this, we have a zero alloca...

Some small changes to improve computation throughput of noasm chacha20 by between 4-11%.

name ...

This reverts CL 224279.

Reason for revert: broken on arm64, ppc64le and s390x 😢

Change-Id: I86...

Certain operations with counter values close to overflowing were causing
an unnecessary panic, w...

The original referenced paper is no longer available. I contacted the author, and this is the re...

The example was failing to direct users on what to do with the nonce,
which should be almost uni...

ctrl+C: terminate readline, which may result in application termination.
ctrl+F: keyRight
ctrl+B...

Also document that ed25519 is supported.

Change-Id: Ibc4f44069eae4ff1aad27f22fc651a2f7611679d
G...

Fixes golang/go#37784

Change-Id: I2fdaf96979390f3744ba8135da78107a15f5e9a8
Reviewed-on: https:/...

The existing code for decrypting OpenSSH-format keys only allows aes256-ctr, the current ssh-key...

Change-Id: Ie2b79a1132b3d59e5bedc71cb5aa8d9aafeb8c68
Reviewed-on: https://go-review.googlesource...

Change-Id: Ibd6ce156550615cb85c06e734641c34fca0cfcd0
Reviewed-on: https://go-review.googlesource...

Fixes golang/go#37607

Change-Id: Iedf6522ec9b9a676ac51c054407a6aef894885f5
GitHub-Last-Rev: 8cb...

It is unclear whether unaligned reads should be allowed, or if they
are even actually a good ide...

Fixes golang/go#37340

Change-Id: I19c4f150b8607ad4a1613cf97ad3362f4b779d7c
GitHub-Last-Rev: 421...

This requirement is from RFC 4880 4.2.2.4.

Also simplify the partialLengthWriter loop. The old ...

appengine was only necessary for the legacy system based on Go 1.9, drop
that. Add purego tags i...

Fixes golang/go#35506

Change-Id: I5cfc6b4dc07ab368e370edaee11841c2c1377f82
GitHub-Last-Rev: 161...

Change-Id: I71d62f95954a39c476bee55e22b6fcf96a196de1
Reviewed-on: https://go-review.googlesource...

An attacker can craft an ssh-ed25519 or [email protected]
public key, such that the lib...

Change-Id: Ie60bdc10065018e193271b4f90f50298f1272396
Reviewed-on: https://go-review.googlesource...

Change-Id: Ie7f4848d7388811bdcf1937eab9d603de64d6e96
Reviewed-on: https://go-review.googlesource...

CL 204177 broke autocert tests because they expected the old OID.

Fixes golang/go#37160

Change...

It looks like the source code has fallen out of date with the draft spec.
The latest version htt...

CL 212377 changed end of input character on windows - from \n to \r.
But CL 212377 did not adjus...

This adds support for parsing OpenSSH ECDSA private keys. It
implements parsing for P-256, P-384...

Change-Id: I501bcc2f4bd8107937756087d20e849e3a4bc182
Reviewed-on: https://go-review.googlesource...

Includes the bcrypt_pbkdf package by Dmitry Chestnykh,
submitted with permission on his behalf u...

When int is 32 bits wide (on 32-bit architectures like 386 and arm), an
overflow could occur, ca...

RFC 4800, Section 6 specifies that the CRC at the end of the
armor is optional, so do not fail t...

ReadConsole does not read more than 254 bytes when ENABLE_LINE_INPUT is
enabled.

Fixes golang/g...

The ARM assembly uses the reserved G register. This started causing
frequent crashes due to asyn...

An illegal instruction would occur due to a bug in the way input
slices were rounded down in siz...

Fixes golang/go#36164

Change-Id: I4248cb3e25346f6859c473b729811b36ac6cf872
Reviewed-on: https:/...

This adds SealAnonymous and OpenAnonymous functions that implement the
libsodium "sealed box" fu...

https://github.com/google/wycheproof provides test vectors exposing
vulnerabilities in crypto pa...

Previously, an ECDSA crypto.Signer would have been expected to return a
signature in RFC7518 for...

The behavior of ParsePrivateKeyWithPassphrase when the key is
unencrypted is unspecified. Curren...

This adds server-side support for the newly introduced OpenSSH
keytypes sk-ecdsa-sha2-nistp256@o...

First, modify the test to report a better error by waiting for the
Marshal+Write goroutine to fi...

Since there is no ClientAgent identifier, ExampleClientAgent wasn't
displayed as an example by g...

Certain environment variables can influence the behavior of ssh-agent,
causing the test to fail....

Adds an error channel to the test helper function
testPortForward() to collect errors that happe...

If the mod inverse of the private key's P value does not exist,
return an error in Decrypt rathe...

Simply add the NonceSizeX constant, and accept 24 bytes nonces in
NewUnauthenticatedCipher. Base...

const KeySize = 32
const NonceSize = 12
func HChaCha20(key, nonce []byte) ([]byte, error)
type C...

name old speed new speed delta
ChaCha20/64-4 428MB/s ± 1% 432MB/s ...

Separated the complex buffering logic from key stream generation more
clearly, added plenty of c...

The new code is meant to be readable without external references for
Poly1305, and explains the ...

This fixes a dropped error in Decode().

Change-Id: Iae5cac72f63a80dd5230034a3cfe1d6e76cc3415
Re...

This fixes an error variable that was being dropped
prior to the return of dhGroup.Server().

Ch...

This fixes a dropped err in runPreauthz().

Change-Id: I46f98d0a21e037a49e4b779895214538d1162376...

const ScalarSize = 32
const PointSize = 32
var Basepoint []byte
func X25519(scal...

This was extracted from CL 205157.

Updates golang/go#31470

Change-Id: I8109b874d4c3897ffc920bb...

This corrects a compile error due to a mismatch between function
description and the assembler c...

Even on platforms that allow unaligned reads, the Go runtime assumes
that a pointer to a given t...

Previously, the o.AuthzURLs slice was sometimes used from the call to
client.WaitOrder at the bo...

Change-Id: I45f1816a359ad6fab548338fd3a6b01dda32d01f
Reviewed-on: https://go-review.googlesource...

The Manager's internal tokensMu is a bit overloaded and needs
a better name. This came up in gol...