Cypherpunks repositories - gostls13.git/commit

author	Josh Bleecher Snyder <josharian@gmail.com>
	Wed, 18 Dec 2013 15:57:07 +0000 (10:57 -0500)
committer	Adam Langley <agl@golang.org>
	Wed, 18 Dec 2013 15:57:07 +0000 (10:57 -0500)
commit	4f234814831c48a3bbc2b9a2d00242fad890facf
tree	9c1f56f619b21f263204a755d8c2cd3f00bc9942	tree
parent	626da8d73741b0cdeaa1acc048fec9ec8286f2b5	commit \| diff

crypto/x509: add non-cgo darwin system anchor certs

The set of certs fetched via exec'ing `security` is not quite identical
to the certs fetched via the cgo call. The cgo fetch includes
any trusted root certs that the user may have added; exec does not.
The exec fetch includes an Apple-specific root cert; the cgo fetch
does not. Other than that, they appear to be the same.

Unfortunately, os/exec depends on crypto/x509, via net/http. Break the
circular dependency by moving the exec tests to their own package.

This will not work in iOS; we'll cross that bridge when we get to it.

R=golang-dev, minux.ma, agl
CC=golang-dev
https://golang.org/cl/22020045

src/pkg/crypto/x509/root_cgo_darwin.go	[new file with mode: 0644]	blob
src/pkg/crypto/x509/root_darwin.go		diff \| blob \| history
src/pkg/crypto/x509/root_darwin_test.go	[new file with mode: 0644]	blob
src/pkg/crypto/x509/root_nocgo_darwin.go	[new file with mode: 0644]	blob
src/pkg/crypto/x509/root_stub.go	[deleted file]	blob \| history
src/pkg/os/exec/exec_test.go		diff \| blob \| history