crypto/x509: stop looking at first root store #38869
Open
Comments
Change https://golang.org/cl/234257 mentions this issue: |
Like #39540, let's give crypto/x509 a rest in Go 1.16. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
For some reason, when looking for a CA root store on UNIX we stop at the first good file, still look at directories, and not stop at the first good directory. On most systems the file, if it exists, is a bundling of the roots in the directory, and the directories are for different systems, not for combining.
We should probably make the function exit sooner.
The text was updated successfully, but these errors were encountered: