Cypherpunks repositories - gostls13.git/commit

]> Cypherpunks repositories - gostls13.git/commit

author	Adam Langley <agl@golang.org>
	Fri, 30 Sep 2016 23:54:54 +0000 (16:54 -0700)
committer	Adam Langley <agl@golang.org>
	Sun, 2 Oct 2016 18:48:04 +0000 (18:48 +0000)
commit	e4dafa32620e80e4e39937d8e2033fb2ee6085f8
tree	dff81f9665116877c7ebaa51348beb2bd6d2b017	tree
parent	2d573eee8ae532a3720ef4efbff9c8f42b6e8217	commit \| diff

crypto/x509: fix name constraints handling.

This change brings the behaviour of X.509 name constraints into line
with NSS[1]. In this area, the behavior specified by the RFC and by NIST
differs and this code follows the NIST behaviour.

[1] https://github.com/servo/nss/blob/master/lib/certdb/genname.c

Fixes #16347, fixes #14833.

Change-Id: I5acd1970041291c2e3936f5b1fd36f2a0338e613
Reviewed-on: https://go-review.googlesource.com/30155
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>

src/crypto/x509/verify.go		diff \| blob \| history
src/crypto/x509/verify_test.go		diff \| blob \| history

Go GOST TLS 1.3

RSS Atom