Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.Sign up
x/crypto/ssh: CertChecker.CheckCert ability to check against multiple principals #38829
What version of Go are you using (
There was a suggestion in uber/pam-ussh#15 (comment) that you can bypass the principal check by passing in the first principal of the certificate itself:
(or empty string, if the cert has no principals). Then you perform a custom principal check afterwards. If that's considered an acceptable workaround then this can be closed.