]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 5f6a856) | patch
crypto/x509: reject negative serial numbers
authorRoland Shoemaker <roland@golang.org>
Wed, 7 Feb 2024 20:22:48 +0000 (12:22 -0800)
committerGopher Robot <gobot@golang.org>
Wed, 22 May 2024 17:23:27 +0000 (17:23 +0000)
commitdb13584baedce4909915cb4631555f6dbd7b8c38
treed18b90ca3e67cae537e5b10017d0f7839918aa2dtree
parent5f6a85637c5f2b7e093044651f5557e08faa8351commit | diff
crypto/x509: reject negative serial numbers

There is only one trusted certificate I could find in the web pki which
has a negative serial number. Removing this exception seems reasonable.

Updates #65085

Change-Id: I55435b3d75479dcb41d523383e4ff7894a1496ad
Reviewed-on: https://go-review.googlesource.com/c/go/+/562343
Auto-Submit: Roland Shoemaker <roland@golang.org>
Reviewed-by: Filippo Valsorda <filippo@golang.org>
LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
Reviewed-by: Damien Neil <dneil@google.com>
doc/godebug.md diff | blob | history
src/crypto/x509/parser.go diff | blob | history
src/crypto/x509/x509_test.go diff | blob | history
src/internal/godebugs/table.go diff | blob | history
src/runtime/metrics/doc.go diff | blob | history
Go GOST TLS 1.3