Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/crypto/ssh: add package for Key Revocation Lists #22741

Open
micahhausler opened this Issue Nov 15, 2017 · 3 comments

Comments

Projects
None yet
4 participants
@micahhausler
Copy link

micahhausler commented Nov 15, 2017

What version of Go are you using (go version)?

go version go1.9.2 darwin/amd64

What did you expect to see?

x/crypto/ssh has support for SSH Certificates and an ssh.CertChecker.IsRevoked() method, but there seems to not be support for OpenSSH's Key Revocation List (KRL) format. It would be useful to be able to marshal/unmarshal revocation lists for use by an OpenSSH server in Go.

@gopherbot gopherbot added this to the Proposal milestone Nov 15, 2017

@gopherbot gopherbot added the Proposal label Nov 15, 2017

@bradfitz

This comment has been minimized.

Copy link
Member

bradfitz commented Nov 15, 2017

@hanwen

This comment has been minimized.

Copy link
Contributor

hanwen commented Nov 15, 2017

sounds like a useful feature. I think it could be separate subpackage of SSH.

@bradfitz bradfitz modified the milestones: Proposal, Unreleased Nov 15, 2017

@bradfitz bradfitz changed the title proposal: x/crypto/ssh Add support for Key Revocation Lists x/crypto/ssh: add package for Key Revocation Lists Nov 15, 2017

@micahhausler

This comment has been minimized.

Copy link
Author

micahhausler commented Nov 15, 2017

After digging around I found stripe/krl which supports what I need. It might still be useful to have that functionality as a package under x/crypto/ssh, but its up to you all to keep this open or not.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.