-
Notifications
You must be signed in to change notification settings - Fork 17.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
proposal: x/crypto/openpgp: Remove or fix signing support #57797
Comments
/cc @golang/security |
We don't remove functionality per the Go 1 Compatibility Promise. I'm open to applying fixes for ecosystem-disrupting issues, but from a quick look we have two not-great options:
This kind of lose-lose problems are part of why we deprecated the package and encouraged moving to a different one. |
Is this package subject to that guarantee? Arguably, it isn’t really usable in practice, not least due to the lack of ed25519 support.
What about storing the original byte representation, so that round-trip stability is not a requirement? That was also recommended as a solution to problems with
Maybe |
If it wasn't used it wouldn't matter what signatures it generates. x/crypto is a large module, and breaking functionality would block developers from upgrading other packages, including to apply security patches. It's not an option. If we ever make a v2, the openpgp package will not be in it.
That is indeed the correct way to do things, but it's not how x/crypto/openpgp works, and changing it would be a significant effort. (Or maybe not, and someone can show that in a CL!)
|
x/crypto/openpgp may be deprecated, but the broken signatures that it generates are causing problems in the OpenPGP ecosystem. I recommend one of the following either making x/crypto/openpgp produce correct signatures, or removing signing support from x/crypto/openpgp altogether.
The text was updated successfully, but these errors were encountered: