Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

crypto/x509: CreateCertificate will generate duplicate certificate policies if PolicyIdentifiers and Policies and populated #63909

Closed
rolandshoemaker opened this issue Nov 2, 2023 · 1 comment
Closed

crypto/x509: CreateCertificate will generate duplicate certificate policies if PolicyIdentifiers and Policies and populated #63909

rolandshoemaker opened this issue Nov 2, 2023 · 1 comment
Labels
NeedsFix The path to resolution is known, but the work has not been done. release-blocker

Comments

@rolandshoemaker
Copy link
Member

If PolicyIdentifiers and Policies have the same OIDs (i.e., because you parsed a certificate using ParseCertificate and are using it as a template), CreateCertificate will create a certificate policies extension that contains duplicate OIDs.

Also Policies isn't documented as being used in CreateCertificate
@rolandshoemaker rolandshoemaker added NeedsFix The path to resolution is known, but the work has not been done. release-blocker labels Nov 2, 2023
@gopherbot
Copy link

Change https://go.dev/cl/539297 mentions this issue: crypto/x509: fix certificate policy marshaling

@mateusz834 mateusz834 mentioned this issue Nov 18, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
NeedsFix The path to resolution is known, but the work has not been done. release-blocker
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rolandshoemaker @gopherbot