Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
GitHub is where the world builds software
Millions of developers and companies build, ship, and maintain their software on GitHub — the largest and most advanced development platform in the world.
proposal: crypto/x509: writing certificates in PKCS12 format #14125
The code contributed to the go-pkcs12 repo for reading PKCS12 format had a pull request for writing PKCS12 format too, but it was decided to hold off on write support until after read support was merged. I propose that this change now be included.
@AGWA is the original author, but I am happy to bring his changes over too.
There are plenty of other cryptography packages in Go who's use is discouraged. #14395
It's a bit unfortunate that after Microsoft made an effort to add pkcs12 to x/crypto, they are left forking it to support writing, which will likely leave x/crypto outdated compared to a more complete implementation elsewhere.
In my particular case, Apple appears to be moving away from pkcs12 certificates, at least in the case of push notifications, so I don't have a strong argument to support them.