Skip to content

Release version 2.6.0
Compare
Choose a tag to compare
@marinthiercelin marinthiercelin released this 15 Mar 09:46
· 231 commits to main since this release
v2.6.0
62f2ca8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Added

  • API for adding context to detached signatures: 
     sig, err := keyRing.SignDetachedWithContext(message, context)
  • API to verify the context of detached signatures: 
     err := keyRing.VerifyDetachedWithContext(message, signature, verifyTime, verificationContext)

Changed

  • Update github.com/ProtonMail/go-crypto to the latest version
  • More strictly verify detached signatures: reject detached signatures from revoked and expired keys.
  • In GetVerifiedSignatureTimestamp, use the new VerifyDetachedSignatureAndHash function to get the verified signature, instead of parsing the signature packets manually to get the timestamp.
  • Upgraded golang.org/x/crypto dependency to v0.7.0
Assets 2
Loading