Imported Upstream version 2011.04.27upstream/2011.04.27

author: Ondřej Surý <ondrej@sury.org> 2011-04-28 10:35:15 +0200
committer: Ondřej Surý <ondrej@sury.org> 2011-04-28 10:35:15 +0200
commit: c1ba1a0fec4aed430709030f98a3bdb90bfeea16 (patch)
tree: 3df18657e50a0313ed6defcda30e4474cb28a467 /src/pkg/crypto/tls/handshake_server.go
parent: 7b15ed9ef455b6b66c6b376898a88aef5d6a9970 (diff)
download: golang-c1ba1a0fec4aed430709030f98a3bdb90bfeea16.tar.gz
1 files changed, 11 insertions, 0 deletions
diff --git a/src/pkg/crypto/tls/handshake_server.go b/src/pkg/crypto/tls/handshake_server.go
index 809c8c15e..37c8d154a 100644
--- a/src/pkg/crypto/tls/handshake_server.go
+++ b/src/pkg/crypto/tls/handshake_server.go
@@ -103,6 +103,9 @@ FindCipherSuite:
 		hello.nextProtoNeg = true
 		hello.nextProtos = config.NextProtos
 	}
+	if clientHello.ocspStapling && len(config.Certificates[0].OCSPStaple) > 0 {
+		hello.ocspStapling = true
+	}
 
 	finishedHash.Write(hello.marshal())
 	c.writeRecord(recordTypeHandshake, hello.marshal())
@@ -116,6 +119,14 @@ FindCipherSuite:
 	finishedHash.Write(certMsg.marshal())
 	c.writeRecord(recordTypeHandshake, certMsg.marshal())
 
+	if hello.ocspStapling {
+		certStatus := new(certificateStatusMsg)
+		certStatus.statusType = statusTypeOCSP
+		certStatus.response = config.Certificates[0].OCSPStaple
+		finishedHash.Write(certStatus.marshal())
+		c.writeRecord(recordTypeHandshake, certStatus.marshal())
+	}
+
 	keyAgreement := suite.ka()
 
 	skx, err := keyAgreement.generateServerKeyExchange(config, clientHello, hello)
author	Ondřej Surý <ondrej@sury.org>	2011-04-28 10:35:15 +0200
committer	Ondřej Surý <ondrej@sury.org>	2011-04-28 10:35:15 +0200
commit	c1ba1a0fec4aed430709030f98a3bdb90bfeea16 (patch)
tree	3df18657e50a0313ed6defcda30e4474cb28a467 /src/pkg/crypto/tls/handshake_server.go
parent	7b15ed9ef455b6b66c6b376898a88aef5d6a9970 (diff)
download	golang-c1ba1a0fec4aed430709030f98a3bdb90bfeea16.tar.gz