]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 3b456ff) | patch
crypto/x509: change how we retrieve chains on darwin
authorRoland Shoemaker <roland@golang.org>
Tue, 4 Mar 2025 00:27:36 +0000 (16:27 -0800)
committerRoland Shoemaker <roland@golang.org>
Thu, 13 Mar 2025 23:44:25 +0000 (16:44 -0700)
commit937368f84e545db15d3f39c2b33a267ba8ead4a4
tree35ade0dbd589cc8e89d51ce608eb1aaa5ab86deatree
parent3b456ff42137df2b89295ede29c915d43c10b538commit | diff
crypto/x509: change how we retrieve chains on darwin

Instead of using the deprecated SecTrustGetCertificateAtIndex and
SecTrustGetCertificateCount method, use the SecTrustCopyCertificateChain
method.

This method require macOS 12+, which will be the minimum supported
version in 1.25.

Change-Id: I9a5ef75431cdb84f1cbe4eee47e6e9e2da4dea03
Reviewed-on: https://go-review.googlesource.com/c/go/+/654376
Reviewed-by: David Chase <drchase@google.com>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Daniel McCarney <daniel@binaryparadox.net>
src/crypto/x509/internal/macos/security.go diff | blob | history
src/crypto/x509/internal/macos/security.s diff | blob | history
src/crypto/x509/root_darwin.go diff | blob | history
Go GOST TLS 1.3