Descriptioncrypto/x509: keep the raw Subject and Issuer.
X509 names, like everything else X509, are ludicrously general. This
change keeps the raw version of the subject and issuer around for
matching. Since certificates use a distinguished encoding, comparing
the encoding is the same as comparing the values directly. This came
up recently when parsing the NSS built-in certificates which use the
raw subject and issuer for matching trust records to certificates.
Patch Set 1 #Patch Set 2 : diff -r 65ea102b8d02 https://go.googlecode.com/hg/ #Patch Set 3 : diff -r 65ea102b8d02 https://go.googlecode.com/hg/ #Patch Set 4 : diff -r 2ecc6b52d9d0 https://go.googlecode.com/hg/ #
MessagesTotal messages: 3
|