Google Git
Sign in
go / crypto / b13fc1fd382d01861b16b2e6474487d3d4d27f20
commitb13fc1fd382d01861b16b2e6474487d3d4d27f20[log] [tgz]
authorAlex Vaghin <ddos@google.com>Thu Aug 25 09:06:35 2016 +0200
committerAlex Vaghin <ddos@google.com>Tue Aug 30 15:40:08 2016 +0000
treeb2d5f2eefe4c9e531c3ba53db737438f6db3301e
parent351dc6a5bf92a5f2ae22fadeee08eb6a45aa2d93 [diff]
acme: take a user provided key in TLSSNIxChallengeCert

Some systems can only operate with a certain key type, for instance RSA,
which makes it impossible for them to use Client provided certificates
to fulfill tls-sni-x challenges since TLSSNIxChallengeCert methods
of the Client always generate ECDSA-based certificates.

At the same time we want to keep using ECDSA-based certificates
in autocert.Manager.

This change allows for a user supplied key when generating tls-sni-x
challenge certficates.

Change-Id: I04f617ff99794a71ef23ad259cb333839f13ae1c
Reviewed-on: https://go-review.googlesource.com/27750
Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org>
2 files changed
tree: b2d5f2eefe4c9e531c3ba53db737438f6db3301e
  1. acme/
  2. bcrypt/
  3. blowfish/
  4. bn256/
  5. cast5/
  6. curve25519/
  7. ed25519/
  8. hkdf/
  9. md4/
  10. nacl/
  11. ocsp/
  12. openpgp/
  13. otr/
  14. pbkdf2/
  15. pkcs12/
  16. poly1305/
  17. ripemd160/
  18. salsa20/
  19. scrypt/
  20. sha3/
  21. ssh/
  22. tea/
  23. twofish/
  24. xtea/
  25. xts/
  26. .gitattributes
  27. .gitignore
  28. AUTHORS
  29. codereview.cfg
  30. CONTRIBUTING.md
  31. CONTRIBUTORS
  32. LICENSE
  33. PATENTS
  34. README