Google Git
Sign in
go / go / d1d466f6207ff0c90e3ae079578399e86328c631
commitd1d466f6207ff0c90e3ae079578399e86328c631[log] [tgz]
authorAdam Langley <agl@golang.org>Thu Jul 07 18:06:50 2011 -0400
committerAdam Langley <agl@golang.org>Thu Jul 07 18:06:50 2011 -0400
treef57f6e43f84c5eb120ae2be8d2f2546c084f81db
parent141f676bab9100cb9323297f839ef8d11b0c3e4d [diff]
crypto/x509: prevent chain cycles in Verify

It's possible to include a self-signed root certificate as an
intermediate and push Verify into a loop.

I already had a test for this so I thought that it was ok, but it
turns out that the test was void because the Verisign root certificate
doesn't contain the "IsCA" flag and so it wasn't an acceptable
intermediate certificate for that reason.

R=bradfitz
CC=golang-dev
https://golang.org/cl/4657080
2 files changed
tree: f57f6e43f84c5eb120ae2be8d2f2546c084f81db
  1. doc/
  2. include/
  3. lib/
  4. misc/
  5. src/
  6. test/
  7. .hgignore
  8. .hgtags
  9. AUTHORS
  10. CONTRIBUTORS
  11. favicon.ico
  12. LICENSE
  13. PATENTS
  14. README
  15. robots.txt