{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":27522241,"defaultBranch":"master","name":"crypto","ownerLogin":"golang","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2014-12-04T04:02:55.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/4314092?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1713532346.0","currentOid":""},"activityList":{"items":[{"before":"0da2a6a1bbc8e689a335bea68b5cc0e3e8728854","after":"ebb717d630028d3e29c90c55d73cb6de90d53c3e","ref":"refs/heads/master","pushedAt":"2024-05-03T13:41:05.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: validate key type in SSH_MSG_USERAUTH_PK_OK response\n\nAccording to RFC 4252 Section 7 the algorithm in SSH_MSG_USERAUTH_PK_OK\nshould match that of the request but some servers send the key type instead.\nOpenSSH checks for the key type, so we do the same.\n\nFixes golang/go#66438\nFixes golang/go#64785\nFixes golang/go#56342\nFixes golang/go#54027\n\nChange-Id: I2f733f0faece097e44ba7a97c868d30a53e21d79\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/573360\nAuto-Submit: Nicola Murino \nLUCI-TryBot-Result: Go LUCI \nRun-TryBot: Nicola Murino \nReviewed-by: Roland Shoemaker \nReviewed-by: Filippo Valsorda \nTryBot-Result: Gopher Robot \nReviewed-by: Joedian Reid ","shortMessageHtmlLink":"ssh: validate key type in SSH_MSG_USERAUTH_PK_OK response"}},{"before":"dd153975d0e09ed8ea3a6989f7a69379790bc2a2","after":null,"ref":"refs/heads/dependabot/go_modules/golang.org/x/net-0.23.0","pushedAt":"2024-04-19T13:12:26.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"}},{"before":null,"after":"dd153975d0e09ed8ea3a6989f7a69379790bc2a2","ref":"refs/heads/dependabot/go_modules/golang.org/x/net-0.23.0","pushedAt":"2024-04-19T13:10:45.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump golang.org/x/net from 0.21.0 to 0.23.0\n\nBumps [golang.org/x/net](https://github.com/golang/net) from 0.21.0 to 0.23.0.\n- [Commits](https://github.com/golang/net/compare/v0.21.0...v0.23.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/net\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump golang.org/x/net from 0.21.0 to 0.23.0"}},{"before":"5defcc193aabc79299b09bc1e2e30445a3f78d4e","after":"0da2a6a1bbc8e689a335bea68b5cc0e3e8728854","ref":"refs/heads/master","pushedAt":"2024-04-16T17:48:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"openpgp: fix function name in comment\n\nChange-Id: Ic788ebe311fafa0f5d9750d5f7f25fb70dc0606d\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/579175\nRun-TryBot: shuang cui \nAuto-Submit: Ian Lance Taylor \nTryBot-Result: Gopher Robot \nReviewed-by: Ian Lance Taylor \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Cherry Mui ","shortMessageHtmlLink":"openpgp: fix function name in comment"}},{"before":"d042a396a6de487c29b6907508ba7e86925f6e09","after":"5defcc193aabc79299b09bc1e2e30445a3f78d4e","ref":"refs/heads/master","pushedAt":"2024-04-15T21:53:51.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"sha3: fix Sum results for SHAKE functions on s390x\n\nSum was taking the digest from the state which is correct for SHA-3\nfunctions but not for SHAKE functions.\n\nUpdates golang/go#66804\n\nChange-Id: If782464d773262075950e3168128c0d46e4a6530\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/578715\nTryBot-Result: Gopher Robot \nReviewed-by: Cherry Mui \nReviewed-by: Than McIntosh \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Filippo Valsorda \nRun-TryBot: Michael Munday ","shortMessageHtmlLink":"sha3: fix Sum results for SHAKE functions on s390x"}},{"before":"b92bf9480d25521fc2b8965f86fe152bdfb43f28","after":"d042a396a6de487c29b6907508ba7e86925f6e09","ref":"refs/heads/master","pushedAt":"2024-04-04T16:59:50.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: Ib20227810c7e72942dd6fc33731fc613784aedec\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/576515\nReviewed-by: Than McIntosh \nReviewed-by: Dmitri Shuralyov \nLUCI-TryBot-Result: Go LUCI \nAuto-Submit: Gopher Robot ","shortMessageHtmlLink":"go.mod: update golang.org/x dependencies"}},{"before":"6f79b5a20cd106b083a02ec17482450d25a1a8f3","after":"b92bf9480d25521fc2b8965f86fe152bdfb43f28","ref":"refs/heads/master","pushedAt":"2024-04-04T14:49:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: respect MaxAuthTries also for \"none\" auth attempts\n\nOnly the first \"none\" auth attempt is allowed without penality\n\nChange-Id: Ibe776e968ba406445eeb94e8f1959383b88c98f7\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/575995\nReviewed-by: Filippo Valsorda \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Dmitri Shuralyov \nAuto-Submit: Nicola Murino \nCommit-Queue: Nicola Murino \nReviewed-by: Than McIntosh ","shortMessageHtmlLink":"ssh: respect MaxAuthTries also for \"none\" auth attempts"}},{"before":"8d0d405eedb9e8f9d0d381a5e85235684df0a868","after":"6f79b5a20cd106b083a02ec17482450d25a1a8f3","ref":"refs/heads/master","pushedAt":"2024-04-03T07:40:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: add server side multi-step authentication\n\nAdd support for sending back partial success to the client while\nhandling authentication in the server. This is implemented by a special\nerror that can be returned by any of the authentication methods, which\ncontains the authentication methods to offer next.\n\nThis patch is based on CL 399075 with some minor changes and the\naddition of test cases.\n\nFixes golang/go#17889\nFixes golang/go#61447\nFixes golang/go#64974\n\nCo-authored-by: Peter Verraedt \nChange-Id: I05c8f913bb407d22c2e41c4cbe965e36ab4739b0\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/516355\nReviewed-by: Andrew Lytvynov \nReviewed-by: Than McIntosh \nReviewed-by: Dmitri Shuralyov \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Filippo Valsorda \nAuto-Submit: Filippo Valsorda ","shortMessageHtmlLink":"ssh: add server side multi-step authentication"}},{"before":"b91329d961d4ba7270e79ed661eb324c299ab812","after":"8d0d405eedb9e8f9d0d381a5e85235684df0a868","ref":"refs/heads/master","pushedAt":"2024-03-26T21:57:46.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"x/crypto/chacha20: cleanup chacha_ppc64le.s\n\n- Adding PCALIGN before the loops\n- Changing WORD directive with corresponding Vector Merge EVEN/ODD word instructions\n- Replacing Branch Conditional (BC) with its extended mnemonic form BDNZ\n- VPERMXOR instruction usage in place of VXOR instructions followed by\n VRLW (rotate left) for cases of rotating in multiples of 8. This\n replacements give performace improvement both in time and space of around 7%-8% as listed below\n using benchstat tool.\n\ngoos: linux\ngoarch: ppc64le\npkg: golang.org/x/crypto/chacha20\ncpu: POWER10\n | chacha20.prev.out | chacha20.new.out |\n | sec/op | sec/op vs base |\nChaCha20/64 171.9n ± 0% 156.6n ± 1% -8.90% (p=0.002 n=6)\nChaCha20/256 165.5n ± 0% 152.4n ± 0% -7.92% (p=0.002 n=6)\nChaCha20/10x25 505.8n ± 0% 504.3n ± 2% -0.32% (p=0.589 n=6)\nChaCha20/4096 2.265µ ± 0% 2.052µ ± 0% -9.40% (p=0.002 n=6)\nChaCha20/100x40 5.359µ ± 3% 5.018µ ± 2% -6.37% (p=0.002 n=6)\nChaCha20/65536 35.71µ ± 0% 32.29µ ± 0% -9.57% (p=0.002 n=6)\nChaCha20/1000x65 44.63µ ± 0% 41.05µ ± 0% -8.02% (p=0.002 n=6)\ngeomean 2.235µ 2.073µ -7.26%\n\n | chacha20.prev.out | chacha20.new.out |\n | B/s | B/s vs base |\nChaCha20/64 355.1Mi ± 0% 389.8Mi ± 1% +9.78% (p=0.002 n=6)\nChaCha20/256 1.440Gi ± 0% 1.565Gi ± 0% +8.62% (p=0.002 n=6)\nChaCha20/10x25 471.3Mi ± 0% 472.8Mi ± 2% +0.31% (p=0.589 n=6)\nChaCha20/4096 1.684Gi ± 0% 1.859Gi ± 0% +10.38% (p=0.002 n=6)\nChaCha20/100x40 711.8Mi ± 3% 760.3Mi ± 2% +6.80% (p=0.002 n=6)\nChaCha20/65536 1.709Gi ± 0% 1.890Gi ± 0% +10.59% (p=0.002 n=6)\nChaCha20/1000x65 1.356Gi ± 0% 1.475Gi ± 0% +8.72% (p=0.002 n=6)\ngeomean 957.3Mi 1.008Gi +7.83%\nChange-Id: Ib31cb10a2a11eacdacf0272fbfd887eb5ccd8bcb\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/564797\nReviewed-by: Lynn Boger \nRun-TryBot: Paul Murphy \nTryBot-Result: Gopher Robot \nReviewed-by: David Chase \nLUCI-TryBot-Result: Go LUCI \nRun-TryBot: Lynn Boger \nReviewed-by: Cherry Mui ","shortMessageHtmlLink":"x/crypto/chacha20: cleanup chacha_ppc64le.s"}},{"before":"7067223927c4e3f3bb91a5c6e0d2aae83df74e7a","after":"b91329d961d4ba7270e79ed661eb324c299ab812","ref":"refs/heads/master","pushedAt":"2024-03-18T09:27:32.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"all: remove redundant words in comments and fix some typos\n\nChange-Id: I3078492dc020770aca630e0b362df0212bd41e32\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/569156\nAuto-Submit: Ian Lance Taylor \nReviewed-by: David Chase \nReviewed-by: Nicola Murino \nReviewed-by: Ian Lance Taylor \nAuto-Submit: Nicola Murino \nLUCI-TryBot-Result: Go LUCI ","shortMessageHtmlLink":"all: remove redundant words in comments and fix some typos"}},{"before":"0d2316b26734542fda0a2df69f586b811740edf4","after":"7067223927c4e3f3bb91a5c6e0d2aae83df74e7a","ref":"refs/heads/master","pushedAt":"2024-03-04T18:29:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I54256afe881714f60fc37c471cd65b060090d9d6\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/568816\nReviewed-by: Than McIntosh \nReviewed-by: Michael Knyszek \nLUCI-TryBot-Result: Go LUCI \nAuto-Submit: Gopher Robot ","shortMessageHtmlLink":"go.mod: update golang.org/x dependencies"}},{"before":"0aab8d07aefab378c763e8f36aa007544a862aa9","after":"0d2316b26734542fda0a2df69f586b811740edf4","ref":"refs/heads/master","pushedAt":"2024-02-28T20:47:27.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh/test: work around for TestCiphers failures on macOS\n\nTestCiphers is already skipped on macOS when testing data received\nfrom the server, so move the test for sending data after the\nreceiving one to work around this new integration test failure.\n\nFixes golang/go#65732\n\nChange-Id: Ie0c614c5373735ae8aefdd7ded643579b130f4b3\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/564457\nReviewed-by: Bryan Mills \nReviewed-by: Carlos Amedee \nLUCI-TryBot-Result: Go LUCI \nAuto-Submit: Nicola Murino \nCommit-Queue: Nicola Murino ","shortMessageHtmlLink":"ssh/test: work around for TestCiphers failures on macOS"}},{"before":"5bead598a0d4042616ba0daf31d8398ff6c06eaf","after":"0aab8d07aefab378c763e8f36aa007544a862aa9","ref":"refs/heads/master","pushedAt":"2024-02-26T19:05:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"all: update go.mod x/net dependency\n\nNot necessary for anything, but need to test something harmless.\n\nChange-Id: I4faa64ef2c8f1f14df5ccaa37836fc56beed4f50\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/566917\nLUCI-TryBot-Result: Go LUCI \nAuto-Submit: Gopher Robot \nReviewed-by: Dmitri Shuralyov \nReviewed-by: Roland Shoemaker \nReviewed-by: Dmitri Shuralyov ","shortMessageHtmlLink":"all: update go.mod x/net dependency"}},{"before":"1a865804d5a867febcb0162512f4e5d947ba641e","after":"5bead598a0d4042616ba0daf31d8398ff6c06eaf","ref":"refs/heads/master","pushedAt":"2024-02-18T02:21:02.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ocsp: don't use iota for externally defined constants\n\nStyle fix: iota shouldn't be used for values that come from RFCs or\nthings that go over the wire or to disk.\n\nChange-Id: Ib903ec1bce7e71ff81094db3de8d0b71e16f52f3\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/564695\nReviewed-by: Dmitri Shuralyov \nAuto-Submit: Roland Shoemaker \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Roland Shoemaker ","shortMessageHtmlLink":"ocsp: don't use iota for externally defined constants"}},{"before":"1c981e6f81fc4d43487d6ad84d6b499fa55099e8","after":"1a865804d5a867febcb0162512f4e5d947ba641e","ref":"refs/heads/master","pushedAt":"2024-02-15T13:30:27.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"x/crypto/internal/poly1305: improve sum_ppc64le.s\n\nThis contains a few minor improvements to sum_ppc64le.s\nwhich result in up to 10% performance improvement for\nsome of the benchmarks in this directory.\n\n- ADDZE followed by ADD can be combined into ADDE\n- PCALIGN added to the loop\n- Eliminate a few unnecessary register moves\n\ngoos: linux\ngoarch: ppc64le\npkg: golang.org/x/crypto/internal/poly1305\ncpu: POWER10\n │ poly.orig.out │ poly.out │\n │ sec/op │ sec/op vs base │\n64 40.34n ± 0% 38.13n ± 0% -5.47% (p=0.002 n=6)\n1K 482.2n ± 0% 444.6n ± 0% -7.81% (p=0.002 n=6)\n2M 978.4µ ± 0% 879.3µ ± 0% -10.12% (p=0.002 n=6)\n64Unaligned 40.35n ± 0% 38.16n ± 0% -5.42% (p=0.002 n=6)\n1KUnaligned 482.0n ± 0% 444.2n ± 0% -7.84% (p=0.002 n=6)\n2MUnaligned 978.4µ ± 0% 879.4µ ± 0% -10.12% (p=0.002 n=6)\nWrite64 32.69n ± 0% 30.71n ± 0% -6.04% (p=0.002 n=6)\nWrite1K 472.4n ± 0% 436.5n ± 0% -7.60% (p=0.002 n=6)\nWrite2M 978.3µ ± 0% 879.4µ ± 0% -10.11% (p=0.002 n=6)\nWrite64Unaligned 32.67n ± 0% 30.71n ± 0% -6.00% (p=0.002 n=6)\nWrite1KUnaligned 472.6n ± 0% 436.4n ± 0% -7.66% (p=0.002 n=6)\nWrite2MUnaligned 978.5µ ± 0% 879.6µ ± 0% -10.10% (p=0.002 n=6)\ngeomean 2.569µ 2.367µ -7.87%\n\nChange-Id: I63314e7252ef10fb2d157f623c4bc2e31a63ae32\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/558775\nReviewed-by: David Chase \nReviewed-by: Michael Knyszek \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Paul Murphy \nRun-TryBot: Lynn Boger \nTryBot-Result: Gopher Robot \nReviewed-by: Than McIntosh ","shortMessageHtmlLink":"x/crypto/internal/poly1305: improve sum_ppc64le.s"}},{"before":"62c9f1799c91aef0744179032e30fda3761e79f7","after":"1c981e6f81fc4d43487d6ad84d6b499fa55099e8","ref":"refs/heads/master","pushedAt":"2024-02-14T13:16:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh/test: don't use DSA keys in integrations tests, update test RSA key\n\non RHEL 9 OpenSSH does not support DSA keys and RSA keys with size less\nthan 2048 bits, furthermore signing with ssh-rsa (SHA-1 signatures) and\nssh-dss is not allowed, therefore:\n\n1) replaced the 1024-bit RSA key used in the test with a new 2048-bit\n one\n2) removed DSA key from itegration tests\n3) allowed signature errors using ssh-rsa in agent integration tests, we\n also check SHA-2 variants that are not skipped\n\nFixes golang/go#65581\n\nChange-Id: I54bf997b61ef4d91d38eb624275737ba7291bb20\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/562755\nReviewed-by: Roland Shoemaker \nReviewed-by: David Chase \nReviewed-by: Filippo Valsorda \nAuto-Submit: Nicola Murino \nLUCI-TryBot-Result: Go LUCI ","shortMessageHtmlLink":"ssh/test: don't use DSA keys in integrations tests, update test RSA key"}},{"before":"405cb3bdea78b1b48ee79096733841247a944de0","after":"62c9f1799c91aef0744179032e30fda3761e79f7","ref":"refs/heads/master","pushedAt":"2024-02-08T16:32:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"x509roots/nss: manually exclude a confusingly constrained root\n\nFixes golang/go#61963\n\nChange-Id: I16920d160af74772ef5aa650d1274e07c3ca9adc\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/562475\nReviewed-by: Filippo Valsorda \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Dmitri Shuralyov ","shortMessageHtmlLink":"x509roots/nss: manually exclude a confusingly constrained root"}},{"before":"913d3ae7415ace5edad6750b7c9192ac7518e9df","after":"405cb3bdea78b1b48ee79096733841247a944de0","ref":"refs/heads/master","pushedAt":"2024-02-07T19:12:12.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I87d766a485104662172bf983d2a9deb085eddd99\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/562417\nReviewed-by: Than McIntosh \nReviewed-by: Dmitri Shuralyov \nAuto-Submit: Gopher Robot \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: David Chase ","shortMessageHtmlLink":"go.mod: update golang.org/x dependencies"}},{"before":"dbb6ec16ecef7a66638d8514be54b13660551b0a","after":"913d3ae7415ace5edad6750b7c9192ac7518e9df","ref":"refs/heads/master","pushedAt":"2024-02-07T17:47:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\nChange-Id: I6d9163026799e5d134f6bb6819e22448d7ebe719\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/561395\nReviewed-by: Roland Shoemaker \nAuto-Submit: Gopher Robot \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Dmitri Shuralyov ","shortMessageHtmlLink":"x509roots/fallback: update bundle"}},{"before":"403f69900ed17a8c7dace8740fa0bed65ad19bbf","after":"dbb6ec16ecef7a66638d8514be54b13660551b0a","ref":"refs/heads/master","pushedAt":"2024-01-08T16:44:35.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI builder\n\nWe don't yet understand why these tests fail, but the Apple sshd seems\nto have some non-trivial vendor patches, so it is plausibly a\nplatform-specific bug in the test. Let's skip that failure mode on the\nwhole platform until/unless someone has time to reproduce and\ninvestigate the failure.\n\nFor golang/go#64959.\n\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-darwin-amd64-longtest,x_crypto-gotip-linux-amd64-longtest,x_crypto-gotip-windows-amd64-longtest\nChange-Id: I9e43579469de3fe9329c093b5916bbed0edd3751\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/554077\nReviewed-by: Dmitri Shuralyov \nReviewed-by: Dmitri Shuralyov \nReviewed-by: Nicola Murino \nLUCI-TryBot-Result: Go LUCI \nAuto-Submit: Bryan Mills ","shortMessageHtmlLink":"ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest…"}},{"before":"055043dfed6c4d9fcec3323f6c5e67b753f171e1","after":"403f69900ed17a8c7dace8740fa0bed65ad19bbf","ref":"refs/heads/master","pushedAt":"2024-01-08T16:33:18.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr\n\nFor golang/go#64959.\n\nChange-Id: I2153166f4960058cdc2b82ae34ca250dcc6ba1c6\nCq-Include-Trybots: luci.golang.try:x_crypto-gotip-linux-amd64-longtest,x_crypto-gotip-windows-amd64-longtest\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/554062\nRun-TryBot: Bryan Mills \nAuto-Submit: Bryan Mills \nReviewed-by: Dmitri Shuralyov \nTryBot-Result: Gopher Robot \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Dmitri Shuralyov ","shortMessageHtmlLink":"ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr"}},{"before":"08396bb92b82dea0967fda0bc947baa1ae721de4","after":"055043dfed6c4d9fcec3323f6c5e67b753f171e1","ref":"refs/heads/master","pushedAt":"2024-01-04T15:36:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"go.mod: update golang.org/x dependencies\n\nUpdate golang.org/x dependencies to their latest tagged versions.\n\nChange-Id: I2df91d0602cd1ef94370de4a60a935edeb441333\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/553996\nReviewed-by: Than McIntosh \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Dmitri Shuralyov \nAuto-Submit: Gopher Robot \nReviewed-by: Dmitri Shuralyov ","shortMessageHtmlLink":"go.mod: update golang.org/x dependencies"}},{"before":"9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d","after":"08396bb92b82dea0967fda0bc947baa1ae721de4","ref":"refs/heads/master","pushedAt":"2024-01-02T20:57:16.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"internal/poly1305: drop Go 1.12 compatibility\n\nOther packages already dropped compatibility with go1.12, so it should be safe to remove it for this package as well.\n\nChange-Id: Ieecc7cd06a0a4e69e8c1c09ef6fefe95d78ceb75\nGitHub-Last-Rev: 1971e0309bdd31facbc60d70cd36a91f6a22f4b2\nGitHub-Pull-Request: golang/crypto#239\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/448239\nReviewed-by: Joedian Reid \nAuto-Submit: Filippo Valsorda \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Filippo Valsorda \nReviewed-by: Roland Shoemaker \nReviewed-by: Matthew Dempsky ","shortMessageHtmlLink":"internal/poly1305: drop Go 1.12 compatibility"}},{"before":"4e5a26183ecb4f9a0f85c8f8dbe7982885435436","after":"9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d","ref":"refs/heads/master","pushedAt":"2023-12-18T16:33:14.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: implement strict KEX protocol changes\n\nImplement the \"strict KEX\" protocol changes, as described in section\n1.9 of the OpenSSH PROTOCOL file (as of OpenSSH version 9.6/9.6p1).\n\nNamely this makes the following changes:\n * Both the server and the client add an additional algorithm to the\n initial KEXINIT message, indicating support for the strict KEX mode.\n * When one side of the connection sees the strict KEX extension\n algorithm, the strict KEX mode is enabled for messages originating\n from the other side of the connection. If the sequence number for\n the side which requested the extension is not 1 (indicating that it\n has already received non-KEXINIT packets), the connection is\n terminated.\n * When strict kex mode is enabled, unexpected messages during the\n handshake are considered fatal. Additionally when a key change\n occurs (on the receipt of the NEWKEYS message) the message sequence\n numbers are reset.\n\nThanks to Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk from Ruhr\nUniversity Bochum for reporting this issue.\n\nFixes CVE-2023-48795\nFixes golang/go#64784\n\nChange-Id: I96b53afd2bd2fb94d2b6f2a46a5dacf325357604\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/550715\nReviewed-by: Nicola Murino \nReviewed-by: Tatiana Bradley \nTryBot-Result: Gopher Robot \nRun-TryBot: Roland Shoemaker \nReviewed-by: Damien Neil \nLUCI-TryBot-Result: Go LUCI ","shortMessageHtmlLink":"ssh: implement strict KEX protocol changes"}},{"before":"152cdb1503ebc13bc0fbb68f92ee189ebf9e3d00","after":"4e5a26183ecb4f9a0f85c8f8dbe7982885435436","ref":"refs/heads/master","pushedAt":"2023-12-14T18:23:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: close net.Conn on all NewServerConn errors\n\nThis PR ensures that the net.Conn passed to ssh.NewServerConn is closed\non all error return paths, not just after a failed handshake. This matches\nthe behavior of ssh.NewClientConn.\n\nChange-Id: Id8a51d10ae8d575cbbe26f2ef6b37de7cca840ec\nGitHub-Last-Rev: 81bb2e58a881a9a85935740bda06b034b32a8ce3\nGitHub-Pull-Request: golang/crypto#279\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/549095\nRun-TryBot: Nicola Murino \nAuto-Submit: Nicola Murino \nReviewed-by: Roland Shoemaker \nReviewed-by: Nicola Murino \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Michael Pratt \nTryBot-Result: Gopher Robot ","shortMessageHtmlLink":"ssh: close net.Conn on all NewServerConn errors"}},{"before":"fdfe1f8531a1adcc300c8eba98cb372044826d62","after":"152cdb1503ebc13bc0fbb68f92ee189ebf9e3d00","ref":"refs/heads/master","pushedAt":"2023-11-29T16:35:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"x509roots/fallback: update bundle\n\nThis is an automated CL which updates the NSS root bundle.\n\nChange-Id: Ib8c85dc815297de7b59c3e23b0ad029baaf948ec\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/543735\nAuto-Submit: Gopher Robot \nLUCI-TryBot-Result: Go LUCI \nReviewed-by: Dmitri Shuralyov \nReviewed-by: Roland Shoemaker ","shortMessageHtmlLink":"x509roots/fallback: update bundle"}},{"before":"b8ffc16e10063067bac0e15c6d7f7995937503ce","after":"fdfe1f8531a1adcc300c8eba98cb372044826d62","ref":"refs/heads/master","pushedAt":"2023-11-27T17:27:57.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: defer channel window adjustment\n\nSending a window adjustment after every read is unnecessarily chatty,\nespecially with a series of small reads like with TTY interactions.\n\nCopy OpenSSH's logic for deferring these, which seemingly hasn't changed\nsince 2007. Note that since channelWindowSize and c.maxIncomingPayload\nare currently constants here, the two checks could be combined into a\nsingle check for c.myWindow < 2 MiB - 96 KiB (with the current values\nof the constants).\n\nFixes golang/go#57424.\n\nChange-Id: Ifcef5be76fcc3f0b1a6dc396096bed9c50d64f21\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/459915\nReviewed-by: Nicola Murino \nReviewed-by: Michael Knyszek \nRun-TryBot: Nicola Murino \nAuto-Submit: Nicola Murino \nReviewed-by: Dmitri Shuralyov \nCommit-Queue: Nicola Murino \nTryBot-Result: Gopher Robot ","shortMessageHtmlLink":"ssh: defer channel window adjustment"}},{"before":"7e6fbd82c804e1760feb603fe21caecb0af0a124","after":"b8ffc16e10063067bac0e15c6d7f7995937503ce","ref":"refs/heads/master","pushedAt":"2023-11-27T17:26:13.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"blake2b: drop Go 1.6, Go 1.8 compatibility\n\nOther packages already dropped compatibility with go < 1.12, so it\nshould be safe to remove it for this package as well.\n\nChange-Id: I7e894fd11d2e7d1fe28c647bd921399a9a6e30d0\nGitHub-Last-Rev: 2b4f576a19338f185e79f39cbfd476573b986369\nGitHub-Pull-Request: golang/crypto#240\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/448240\nRun-TryBot: Nicola Murino \nReviewed-by: Joedian Reid \nReviewed-by: Nicola Murino \nCommit-Queue: Nicola Murino \nAuto-Submit: Nicola Murino \nTryBot-Result: Gopher Robot \nReviewed-by: Michael Knyszek \nReviewed-by: Roland Shoemaker \nReviewed-by: Dmitri Shuralyov ","shortMessageHtmlLink":"blake2b: drop Go 1.6, Go 1.8 compatibility"}},{"before":"bda2f3f5cfce3f27039acccd823693f6d67c2a74","after":"7e6fbd82c804e1760feb603fe21caecb0af0a124","ref":"refs/heads/master","pushedAt":"2023-11-27T17:24:53.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"ssh: wrap errors from client handshake\n\nWhen an error is returned by a user defined host key callback,\nit is now possible to handle it using standard Go mechanisms\nsuch as errors.Is or errors.As.\n\nFixes golang/go#61309\n\nChange-Id: I4269c5f8eacd8e7e8d85070ad249f0e27777b15f\nGitHub-Last-Rev: d2a34d5c8225d6aaaee287ce3ea8b218fbe210d4\nGitHub-Pull-Request: golang/crypto#266\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/508876\nRun-TryBot: Nicola Murino \nAuto-Submit: Dmitri Shuralyov \nReviewed-by: Muhammad Shulhan \nReviewed-by: Michael Knyszek \nReviewed-by: Dmitri Shuralyov \nReviewed-by: Nicola Murino \nTryBot-Result: Gopher Robot ","shortMessageHtmlLink":"ssh: wrap errors from client handshake"}},{"before":"325b735346247f48971d2b37d24dd180a35f391f","after":"bda2f3f5cfce3f27039acccd823693f6d67c2a74","ref":"refs/heads/master","pushedAt":"2023-11-27T17:24:05.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"gopherbot","name":"GopherBot","path":"/gopherbot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/8566911?s=80&v=4"},"commit":{"message":"argon2: avoid clobbering BP\n\ngo vet was reporting\n\n blamka_amd64.s:203:1: [amd64] mixBlocksSSE2: invalid offset a+24(FP); expected a+8(FP)\n blamka_amd64.s:226:1: [amd64] xorBlocksSSE2: invalid offset a+24(FP); expected a+8(FP)\n blamka_amd64.s:204:1: frame pointer is clobbered before saving\n blamka_amd64.s:227:1: frame pointer is clobbered before saving\n\nAlso fix a similar naming issue in sha3:\n\n sha3\\keccakf_amd64.s:325:1: [amd64] keccakF1600: unknown variable state; offset 0 is a+0(FP)\n\nUpdates golang/go#47027\n\nChange-Id: Ia74852cdb0721ae0216787054197b0cac9e1c0f8\nReviewed-on: https://go-review.googlesource.com/c/crypto/+/332289\nReviewed-by: Michael Knyszek \nReviewed-by: Nicola Murino \nReviewed-by: Dmitri Shuralyov \nLUCI-TryBot-Result: Go LUCI \nAuto-Submit: Dmitri Shuralyov \nReviewed-by: Filippo Valsorda ","shortMessageHtmlLink":"argon2: avoid clobbering BP"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEQMw30gA","startCursor":null,"endCursor":null}},"title":"Activity · golang/crypto"}