crypto/x509: invalid authority key identifier parsing older root "Starfield Class 2 Certification Authority" #46854
Labels
FrozenDueToAge
NeedsFix
The path to resolution is known, but the work has not been done.
release-blocker
Milestone
What version of Go are you using (
go version
)?Does this issue reproduce with the latest release?
It does not reproduce with Go 1.16. It only occurs on tip on or after 51ff3a6, when the certificate parser was rewritten.
What operating system and processor architecture are you using (
go env
)?darwin/amd64, macOS 11.4. It has also been reproduced on Linux.
What did you do?
Given the sample program:
And the "Starfield Class 2 Certification Authority" certificate: https://crt.sh/?q=d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb
Running this program on Go 1.16.5 produces no error. On tip (7a5e704) following 1.17beta1, you get the error
x509: invalid authority key identifier
.What did you expect to see?
The program should terminate without error.
What did you see instead?
x509: invalid authority key identifier
The text was updated successfully, but these errors were encountered: