[dev.link] all: merge branch 'master' into dev.linkdev.link

Clean merge. Change-Id: Ia7b2808bc649790198d34c226a61d9e569084dc5
author: Cherry Zhang <cherryyz@google.com> 2020-10-28 09:12:20 -0400
committer: Cherry Zhang <cherryyz@google.com> 2020-10-28 09:12:20 -0400
commit: a16e30d162c1c7408db7821e7b9513cefa09c6ca (patch)
tree: af752ba9ba44c547df39bb0af9bff79f610ba9d5 /src/crypto/dsa/dsa.go
parent: 91e4d2d57bc341dd82c98247117114c851380aef (diff)
parent: cf6cfba4d5358404dd890f6025e573a4b2156543 (diff)
download: go-git-dev.link.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/src/crypto/dsa/dsa.go b/src/crypto/dsa/dsa.go
index 43826bcb55..a83359996d 100644
--- a/src/crypto/dsa/dsa.go
+++ b/src/crypto/dsa/dsa.go
@@ -5,6 +5,12 @@
 // Package dsa implements the Digital Signature Algorithm, as defined in FIPS 186-3.
 //
 // The DSA operations in this package are not implemented using constant-time algorithms.
+//
+// Deprecated: DSA is a legacy algorithm, and modern alternatives such as
+// Ed25519 (implemented by package crypto/ed25519) should be used instead. Keys
+// with 1024-bit moduli (L1024N160 parameters) are cryptographically weak, while
+// bigger keys are not widely supported. Note that FIPS 186-5 no longer approves
+// DSA for signature generation.
 package dsa
 
 import (
author	Cherry Zhang <cherryyz@google.com>	2020-10-28 09:12:20 -0400
committer	Cherry Zhang <cherryyz@google.com>	2020-10-28 09:12:20 -0400
commit	a16e30d162c1c7408db7821e7b9513cefa09c6ca (patch)
tree	af752ba9ba44c547df39bb0af9bff79f610ba9d5 /src/crypto/dsa/dsa.go
parent	91e4d2d57bc341dd82c98247117114c851380aef (diff)
parent	cf6cfba4d5358404dd890f6025e573a4b2156543 (diff)
download	go-git-dev.link.tar.gz