Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/crypto/openpgp: a signature verification method for PublicKey #6328

Closed
gopherbot opened this issue Sep 4, 2013 · 6 comments
Closed

x/crypto/openpgp: a signature verification method for PublicKey #6328

gopherbot opened this issue Sep 4, 2013 · 6 comments
Milestone

Comments

@gopherbot
Copy link

@gopherbot gopherbot commented Sep 4, 2013

by casey.marshall:

Need to add a signature verification method to *PublicKey for newly added
*packet.UserAttribute, and a test case per
https://golang.org/cl/13464044/#msg3. (My current user attribute signature
verification is in Hockeypuck but really belongs here)

I'll add it as:

func (pk *PublicKey) VerifyUserAttributeSignature(signingKey *PublicKey, uat
*UserAttribute) { ... }
@gopherbot
Copy link
Author

@gopherbot gopherbot commented Sep 4, 2013

Comment 1 by casey.marshall:

I wanted to assign this one to myself, but it looks like I can't.
If that isn't appropriate let me know.. I certainly don't want to disrupt more important
golang development with my openpgp hacking!
Otherwise.. can someone allow me to be an assignee? I'm already in CONTRIBUTORS.
Thanks,
Casey
@robpike
Copy link
Contributor

@robpike robpike commented Sep 5, 2013

Comment 2:

Labels changed: added priority-later, removed priority-triage.

Status changed to Accepted.

@rsc
Copy link
Contributor

@rsc rsc commented Nov 27, 2013

Comment 3:

Labels changed: added go1.3maybe.

@rsc
Copy link
Contributor

@rsc rsc commented Dec 4, 2013

Comment 4:

Labels changed: added release-none, removed go1.3maybe.

@rsc
Copy link
Contributor

@rsc rsc commented Dec 4, 2013

Comment 5:

Labels changed: added repo-crypto.

@mikioh mikioh changed the title go.crypto/openpgp openpgp: a signature verification method for PublicKey Jan 7, 2015
@rsc rsc added this to the Unplanned milestone Apr 10, 2015
@rsc rsc changed the title openpgp: a signature verification method for PublicKey x/crypto/openpgp: a signature verification method for PublicKey Apr 14, 2015
@rsc rsc modified the milestones: Unreleased, Unplanned Apr 14, 2015
@rsc rsc removed the repo-crypto label Apr 14, 2015
@FiloSottile
Copy link
Contributor

@FiloSottile FiloSottile commented Mar 29, 2021

Per the accepted #44226 proposal and due to lack of maintenance, the golang.org/x/crypto/openpgp package is now frozen and deprecated. No new changes will be accepted except for security fixes. The package will not be removed.

If this is a security issue, please email security@golang.org and we will assess it and provide a fix.

If you're looking for alternatives, consider the crypto/ed25519 package for simple signatures, golang.org/x/mod/sumdb/note for inline signatures, or filippo.io/age for encryption. You can read a summary of OpenPGP issues and alternatives here.

If you are required to interoperate with OpenPGP systems and need a maintained package, we suggest considering one of multiple community forks of golang.org/x/crypto/openpgp. We don't endorse any specific one.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
4 participants