-
Adam Langley authored
By default, crypto/x509 assumes that users wish to validate certificates for ServerAuth. However, due to historical reasons, COMODO's intermediates don't specify ServerAuth as an allowed key usage. Rather NSS and CryptoAPI both allow these SGC OIDs to be equivalent to ServerAuth. R=rsc CC=golang-dev https://golang.org/cl/7312070
e1c309e7