Don't use keys that expire in a few years in tests
mdosch opened this issue · 1 comments
mdosch commented
Dear go-crypto devs,
it was reported to the debian package that the tests will fail in 2028 [debian-bug].
By looking at the output [build-log] I saw that it's an issue with the validity of keys. E.g the curve 448 key expires in three years [curve448-key].
This is an issue for distributions with long term support (e.g. Debian, Ubuntu, RedHat) as the tests will start to fail during the life cycle.
Is it possible to set the expiry for keys that should be valid for the tests to the distant future (e.g. 100 years) to make sure tests won't trip on that?
Best regards,
Martin
mdosch commented
If feasible maybe it would be best to just generate the keys when running the tests.