]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 4f9ec2c) | patch
crypto/x509: add GODEBUG option x509ignoreCN=1
authorFilippo Valsorda <filippo@golang.org>
Thu, 12 Jul 2018 23:19:45 +0000 (19:19 -0400)
committerFilippo Valsorda <filippo@golang.org>
Mon, 16 Jul 2018 19:30:55 +0000 (19:30 +0000)
commit0852a104fde7675724d973637bff3ebbf1ba61c9
treedbd64a521b5f1af23e20a13717853d378625b0f0tree
parent4f9ec2c7568fce3db51cee0bf151ccf8534868aacommit | diff
crypto/x509: add GODEBUG option x509ignoreCN=1

When x509ignoreCN=1 is present in GODEBUG, ignore the deprecated Common
Name field. This will let people test a behavior we might make the
default in the future, and lets a final class of certificates avoid the
NameConstraintsWithoutSANs error.

Updates #24151

Change-Id: I1c397aa1fa23777b9251c311d02558f9a5bdefc0
Reviewed-on: https://go-review.googlesource.com/123695
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Reviewed-by: Adam Langley <agl@golang.org>
src/crypto/x509/name_constraints_test.go diff | blob | history
src/crypto/x509/verify.go diff | blob | history
src/crypto/x509/verify_test.go diff | blob | history
Go GOST TLS 1.3