-
Notifications
You must be signed in to change notification settings - Fork 17.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
crypto/x509: x509 certificate with issuerUniqueID and/or subjectUniqueID parse error #51754
Comments
cc @golang/security |
Change https://go.dev/cl/394297 mentions this issue: |
@gopherbot please open backport issues, this is a regression (albeit extremely minor, since these fields are almost never used.) |
Backport issue(s) opened: #51858 (for 1.17), #51859 (for 1.18). Remember to create the cherry-pick CL(s) as soon as the patch is submitted to master, according to https://go.dev/wiki/MinorReleases. |
Change https://go.dev/cl/399501 mentions this issue: |
Change https://go.dev/cl/399500 mentions this issue: |
…nd subjectUniqueID Updates #51754 Fixes #51859 Change-Id: I3bfa15db3497de9fb82d6391d87fca1ae9ba6543 Reviewed-on: https://go-review.googlesource.com/c/go/+/394297 Trust: Roland Shoemaker <[email protected]> Run-TryBot: Roland Shoemaker <[email protected]> Auto-Submit: Roland Shoemaker <[email protected]> TryBot-Result: Gopher Robot <[email protected]> Reviewed-by: Damien Neil <[email protected]> (cherry picked from commit 9a53b47) Reviewed-on: https://go-review.googlesource.com/c/go/+/399500 Reviewed-by: Russ Cox <[email protected]>
…nd subjectUniqueID Updates #51754 Fixes #51858 Change-Id: I3bfa15db3497de9fb82d6391d87fca1ae9ba6543 Reviewed-on: https://go-review.googlesource.com/c/go/+/394297 Trust: Roland Shoemaker <[email protected]> Run-TryBot: Roland Shoemaker <[email protected]> Auto-Submit: Roland Shoemaker <[email protected]> TryBot-Result: Gopher Robot <[email protected]> Reviewed-by: Damien Neil <[email protected]> (cherry picked from commit 9a53b47) Reviewed-on: https://go-review.googlesource.com/c/go/+/399501
go/src/crypto/x509/parser.go
Line 944 in c379c3d
go/src/crypto/x509/parser.go
Line 947 in c379c3d
RFC 5280 quote:
I think Constructed() calls in mentioned strings are erroneous. As a result, all extensions from certificate with issuerUniqueID or subjectUniqueID fields not parsed.
golang 1.17.8, 1,18 affected.
The text was updated successfully, but these errors were encountered: