Google Git
Sign in
go / crypto / 9b1a210a06ea1176ec1f0a1ddf83ad7463b8ea3e
commit9b1a210a06ea1176ec1f0a1ddf83ad7463b8ea3e[log] [tgz]
authorAlex Vaghin <ddos@google.com>Fri Dec 16 14:31:18 2016 +0100
committerAlex Vaghin <ddos@google.com>Fri Dec 16 17:19:27 2016 +0000
tree2f3665aab9ebe7923caa2b47817631d8f9f0f703
parent01be46f62051d02cb6a36c9b47b37b24e5758c81 [diff]
acme/autocert: add an option for RSA-based certs

Currently, autocert.Manager always generates EC-based certificates.
This change adds an optional field forcing the Manager to use RSA
instead.

An alternative idea, a "double" certificate, where the Manager
presents either RSA or EC certificate based on client's compatibility,
doesn't seem to be worth the implementation time given the constant
increase in Elliptic Curve cryptography.

Fixes golang/go#17744

Change-Id: Idc68abfc698bcff4aad99715baefc06f8fae50ad
Reviewed-on: https://go-review.googlesource.com/34570
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
2 files changed
tree: 2f3665aab9ebe7923caa2b47817631d8f9f0f703
  1. acme/
  2. bcrypt/
  3. blake2b/
  4. blake2s/
  5. blowfish/
  6. bn256/
  7. cast5/
  8. chacha20poly1305/
  9. curve25519/
  10. ed25519/
  11. hkdf/
  12. md4/
  13. nacl/
  14. ocsp/
  15. openpgp/
  16. otr/
  17. pbkdf2/
  18. pkcs12/
  19. poly1305/
  20. ripemd160/
  21. salsa20/
  22. scrypt/
  23. sha3/
  24. ssh/
  25. tea/
  26. twofish/
  27. xtea/
  28. xts/
  29. .gitattributes
  30. .gitignore
  31. AUTHORS
  32. codereview.cfg
  33. CONTRIBUTING.md
  34. CONTRIBUTORS
  35. LICENSE
  36. PATENTS
  37. README