certstrap icon indicating copy to clipboard operation
certstrap copied to clipboard
verified publisher icon square

x509.(Encrypt|Decrypt)PEMBlock have been deprecated

Open jdtw opened this issue 4 years ago • 0 comments

From the linter:

  Error: SA1019: x509.DecryptPEMBlock has been deprecated since Go 1.16 because it shouldn't be used: Legacy PEM encryption as specified in RFC 1423 is insecure by design. Since it does not authenticate the ciphertext, it is vulnerable to padding oracle attacks that can let an attacker recover the plaintext.  (staticcheck)
  Error: SA1019: x509.EncryptPEMBlock has been deprecated since Go 1.16 because it shouldn't be used: Legacy PEM encryption as specified in RFC 1423 is insecure by design. Since it does not authenticate the ciphertext, it is vulnerable to padding oracle attacks that can let an attacker recover the plaintext.  (staticcheck)

jdtw avatar Nov 17 '21 22:11 jdtw