Fix certificate validation. asn1: add support for T61String because this is the string type which several www.google.com certificates are now using for fields like CommonName tls: force a handshake in Dial so that certificates are ready afterwards. Fixes #1114. R=rsc CC=golang-dev https://golang.org/cl/2216043

commit: 6989f6e312d52b9f4a200cb4691206b654669b36 [log] [tgz]
author: Adam Langley <agl@golang.org> Mon Sep 20 10:32:08 2010 -0400
committer: Adam Langley <agl@golang.org> Mon Sep 20 10:32:08 2010 -0400
tree: 2823ac804643b61c80c163a658ad023c28d50b7f
parent: 724886b0c05f5eb5236e99d8c01b239eca9d3b91 [diff] [blame]
diff --git a/src/pkg/crypto/tls/tls.go b/src/pkg/crypto/tls/tls.go
index 27e32cc..2aec160 100644
--- a/src/pkg/crypto/tls/tls.go
+++ b/src/pkg/crypto/tls/tls.go

@@ -67,7 +67,13 @@
 	if err != nil {
 		return nil, err
 	}
-	return Client(c, nil), nil
+	conn := Client(c, nil)
+	err = conn.Handshake()
+	if err == nil {
+		return conn, nil
+	}
+	c.Close()
+	return nil, err
 }
 
 // LoadX509KeyPair
commit	6989f6e312d52b9f4a200cb4691206b654669b36	[log] [tgz]
author	Adam Langley <agl@golang.org>	Mon Sep 20 10:32:08 2010 -0400
committer	Adam Langley <agl@golang.org>	Mon Sep 20 10:32:08 2010 -0400
tree	2823ac804643b61c80c163a658ad023c28d50b7f
parent	724886b0c05f5eb5236e99d8c01b239eca9d3b91 [diff] [blame]