x/crypto/ssh: add fipsonly mode

[drakkan]

Proposal Details

Similar to crypto/tls/fipsonly add golang.org/x/crypto/ssh/fipsonly

//go:build boringcrypto

// Package fipsonly restricts all SSH configuration to FIPS-approved settings.
//
// The effect is triggered by importing the package anywhere in a program, as in:
//
//	import _ "golang.org/x/crypto/ssh/fipsonly"
//
// This package only exists when using Go compiled with GOEXPERIMENT=boringcrypto.

[gopherbot]

Change https://go.dev/cl/550515 mentions this issue: ssh: add fipsonly mode

[rsc]

This proposal has been added to the active column of the proposals project
and will now be reviewed at the weekly proposal review meetings.
— rsc for the proposal review group