client: Ignore certificate expiration time

2021-03-04 14:35:51 -05:00 · 2021-03-04 14:35:51 -05:00 · 9f3564936e
commit 9f3564936e
parent d8fb072826
2 changed files with 0 additions and 7 deletions
--- a/client.go
+++ b/client.go
@ -6,7 +6,6 @@ import (
 	"crypto/x509"
 	"net"
 	"net/url"
-	"time"
 	"unicode/utf8"

 	"golang.org/x/net/idna"
@ -180,10 +179,6 @@ func (c *Client) verifyConnection(cs tls.ConnectionState, hostname string) error
 	if err := verifyHostname(cert, hostname); err != nil {
 		return err
 	}
-	// Check expiration date
-	if !time.Now().Before(cert.NotAfter) {
-		return ErrCertificateExpired
-	}
 	// See if the client trusts the certificate
 	if c.TrustCertificate != nil {
 		return c.TrustCertificate(hostname, cert)
--- a/gemini.go
+++ b/gemini.go
@ -18,8 +18,6 @@ var (
 	ErrInvalidRequest  = errors.New("gemini: invalid request")
 	ErrInvalidResponse = errors.New("gemini: invalid response")

-	ErrCertificateExpired = errors.New("gemini: certificate expired")
-
 	// ErrBodyNotAllowed is returned by ResponseWriter.Write calls
 	// when the response status code does not permit a body.
 	ErrBodyNotAllowed = errors.New("gemini: response status code does not allow body")