]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 1c10598) | patch
crypto/x509: be strict about trailing data.
authorAdam Langley <agl@golang.org>
Wed, 29 Apr 2015 17:36:38 +0000 (10:36 -0700)
committerAdam Langley <agl@golang.org>
Thu, 30 Apr 2015 03:49:36 +0000 (03:49 +0000)
commit1ddb8c20c6f686170c506c6440e194a58c040bec
tree04e8e55a2021c3db8861584010ce71b1c7e89ddbtree
parent1c10598064dcc560cf4b447f573e0d0dd34762e4commit | diff
crypto/x509: be strict about trailing data.

The X.509 parser was allowing trailing data after a number of structures
in certificates and public keys. There's no obvious security issue here,
esp in certificates which are signed anyway, but this change makes
trailing data an error just in case.

Fixes #10583

Change-Id: Idc289914899600697fc6d30482227ff4bf479241
Reviewed-on: https://go-review.googlesource.com/9473
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Reviewed-by: Adam Langley <agl@golang.org>
src/crypto/x509/x509.go diff | blob | history
Go GOST TLS 1.3