Filippo Valsorda
Filippo Valsorda
Ok, since we can't do this properly in Sign and SignASN1, I propose 1. when the rand parameter to `(*PrivateKey).Sign)` is nil we produce RFC 6979 deterministic signatures 2. we...
Actually, the top level functions might be worth rethinking in a v2 anyway, especially if we adopt some standard hedged signature scheme such as draft-irtf-cfrg-det-sigs-with-noise, maybe while doing FIPS work....
Given rand==nil currently panics, do we need the GODEBUG? I can't imagine an application relying on a panic here.
Sounds good, will target early Go 1.24 for this. (I chose not to land it in Go 1.23 because it turned out to be a larger change than expected, touching...
This would be nice, but my understanding is that smart cards (presumably all of CCID/OpenPGP/PIV/CTAP2) are not accessible via [WebUSB](https://developer.mozilla.org/en-US/docs/Web/API/WebUSB_API) like all other device classes handled natively by the OS....
I think this is now mitigated by switching to pure JS.
Hello! Sorry for the late response but I was apparently not "Watching" this repository. No idea how that happened. It's not you, the armored encoding (PEM with `AGE ENCRYPTED FILE`...
Can you provide some details for what this test root would be used for? Thank you!
Closing for lack of details, but feel free to reopen with more information!
I had a chat with Russ, and we're going to change golang.org/x/mod/sumdb/tlog upstream, to avoid ecosystem fragmentation on this.