x/crypto/ocsp: the responder cert is not provided along with the OCSP response signature #22335
Milestone
Comments
That does look like a bug to me. Perhaps we'd want to use responderCert if template.Cert is nil? /cc @agl |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The docs on
ocsp.CreateResponse
state that:But in the code, the responder cert is only used to populate the
rawResponderID
.The certificate provided with the OCSP response signature seem to come from
template.Certificate
instead of the responder cert.Is this an error in the docs/code or am I missing something?
The text was updated successfully, but these errors were encountered: