github.com/cloudflare/cfrpki is vulnerable to denial of service. The vulnerability exists because the validationLoop
function in octorpki.go
exceeds the max iterations parameter when creating long chains of CAs, allowing an attacker to crash the application.