Issue 10402043: code review 10402043: go.crypto/ocsp: allow cert-less responses and support m...

Keyboard Shortcuts

	File
u :	up to issue
m :	publish + mail comments
M :	edit review message
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line
<Enter> :	respond to / edit current comment
d :	mark current comment as done

	Issue
u :	up to list of issues
m :	publish + mail comments
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue
# :	close issue

	Comment/message editing
<Ctrl> + s or <Ctrl> + Enter :	save comment
<Esc> :	cancel edit

Issue 10402043: code review 10402043: go.crypto/ocsp: allow cert-less responses and support m... (Closed)

Can't Edit
Can't Publish+Mail
Start Review

Created:
10 years, 10 months ago by agl1

Modified:
10 years, 10 months ago

Reviewers:
bradfitz

CC:
golang-dev

Visibility:
Public.

Description

go.crypto/ocsp: allow cert-less responses and support making requests. Some OCSP responses (notably COMODO's) don't use an intermediate certificate to sign OCSP responses so this change allowed that. Additionally, a CreateRequest function is added for creating OCSP requests. This change makes one API change: SerialNumber becomes a *big.Int to match crypto/x509. The original code dates to before encoding/asn1 could cope with big.Ints and using a []byte was a workaround for that.

Patch Set 1 #

Patch Set 2 : diff -r 1596363fc7e1 https://code.google.com/p/go.crypto/ #

Patch Set 3 : diff -r 1596363fc7e1 https://code.google.com/p/go.crypto/ #

Patch Set 4 : diff -r 1596363fc7e1 https://code.google.com/p/go.crypto/ #

Total comments: 1

Created: 10 years, 10 months ago

Download [raw] [tar.bz2]

		Unified diffs	Side-by-side diffs	Delta from patch set	Stats (+283 lines, -30 lines)			Patch
	M	ocsp/ocsp.go	View	1 2 3	9 chunks	+172 lines, -27 lines	1 comment	Download
	M	ocsp/ocsp_test.go	View	1	6 chunks	+111 lines, -3 lines	0 comments	Download

Messages

Total messages: 3

Expand All Messages | Collapse All Messages

agl1

Hello golang-dev@googlegroups.com (cc: golang-dev@googlegroups.com), I'd like you to review this change to https://code.google.com/p/go.crypto/

10 years, 10 months ago (2013-06-18 17:46:55 UTC) #1

agl1

*** Submitted as https://code.google.com/p/go/source/detail?r=32525e9c4e9f&repo=crypto *** go.crypto/ocsp: allow cert-less responses and support making requests. Some OCSP ...

10 years, 10 months ago (2013-06-20 15:11:30 UTC) #2

bradfitz

10 years, 10 months ago (2013-06-20 17:06:37 UTC) #3

Message was sent while issue was closed.

LGTM

https://codereview.appspot.com/10402043/diff/9001/ocsp/ocsp.go
File ocsp/ocsp.go (right):

https://codereview.appspot.com/10402043/diff/9001/ocsp/ocsp.go#newcode263
ocsp/ocsp.go:263: // Hash contains the hash function that should be used when
document the meaning of the zero value.  right now it's not even obvious that
zero is allowed.

Expand All Messages | Collapse All Messages