Google Git
Sign in
go / crypto.git / b07d8c96772f426812d3fc5530710ec1f3b205e7
commitb07d8c96772f426812d3fc5530710ec1f3b205e7[log] [tgz]
authorRoland Shoemaker <rolandshoemaker@gmail.com>Wed Oct 26 16:47:36 2016 -0700
committerBrad Fitzpatrick <bradfitz@golang.org>Thu Dec 08 20:19:12 2016 +0000
tree0e252b26f72630b9688a5e0007e562094cd5ac4b
parent95cb608f365d51e0e69abc646ec90c0e26fb427f [diff]
x/crypto/ocsp: Don't hard-code OCSP response hash function

Allows user to set the hash function to use in the OCSP response
when using ocsp.CreateResponse instead of hard-coding the use of
SHA-1. The field IssuerHash is added to the ocsp.Response struct
to set which hash to use. If none is provided CreateResponse falls
back to SHA1. ParseResponse also attempts to populate this field
and will fail if a unsupported hash algorithm is provided.

Change-Id: I3905b1706f347387724e57c33cb82a3b46ffcdf9
Reviewed-on: https://go-review.googlesource.com/32214
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org>
TryBot-Result: Gobot Gobot <gobot@golang.org>
2 files changed
tree: 0e252b26f72630b9688a5e0007e562094cd5ac4b
  1. acme/
  2. bcrypt/
  3. blake2b/
  4. blake2s/
  5. blowfish/
  6. bn256/
  7. cast5/
  8. chacha20poly1305/
  9. curve25519/
  10. ed25519/
  11. hkdf/
  12. md4/
  13. nacl/
  14. ocsp/
  15. openpgp/
  16. otr/
  17. pbkdf2/
  18. pkcs12/
  19. poly1305/
  20. ripemd160/
  21. salsa20/
  22. scrypt/
  23. sha3/
  24. ssh/
  25. tea/
  26. twofish/
  27. xtea/
  28. xts/
  29. .gitattributes
  30. .gitignore
  31. AUTHORS
  32. codereview.cfg
  33. CONTRIBUTING.md
  34. CONTRIBUTORS
  35. LICENSE
  36. PATENTS
  37. README