]> Cypherpunks repositories - gostls13.git/commit
projects / gostls13.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: 691e5e3) | patch
crypto/x509: allow MS/NS SCG key usage as ServerAuth.
authorAdam Langley <agl@golang.org>
Sat, 9 Feb 2013 18:20:25 +0000 (13:20 -0500)
committerAdam Langley <agl@golang.org>
Sat, 9 Feb 2013 18:20:25 +0000 (13:20 -0500)
commite1c309e79251a07ba9a84567aff302fa51815ced
treec380aec373eda3e38d1b41fc509e92f460423342tree
parent691e5e3b01706803a15350656668474e1fc2084fcommit | diff
crypto/x509: allow MS/NS SCG key usage as ServerAuth.

By default, crypto/x509 assumes that users wish to validate
certificates for ServerAuth. However, due to historical reasons,
COMODO's intermediates don't specify ServerAuth as an allowed key
usage.

Rather NSS and CryptoAPI both allow these SGC OIDs to be equivalent to
ServerAuth.

R=rsc
CC=golang-dev
https://golang.org/cl/7312070
src/pkg/crypto/x509/verify.go diff | blob | history
src/pkg/crypto/x509/verify_test.go diff | blob | history
src/pkg/crypto/x509/x509.go diff | blob | history
Go GOST TLS 1.3