Tony Arcieri
Tony Arcieri
We don't have anything built-in for this AFAICT, however you can look at how the `spki` crate computes a similar fingerprint and apply it to the whole certificate: https://github.com/RustCrypto/formats/blob/a0b4200/spki/src/fingerprint.rs#L17-L42 We...
The logic for calculating fingerprints from `spki` could be extracted and generalized into `der`
> All that to say, do you have any reference to as spec doing that? It's sometimes referred to as `certHash` and is computed as SHA-1 of the entire DER...
Sure, that's one usage, but `certHash` / "thumbprints" can be found elsewhere, e.g. the OpenSSL command line tooling, the Windows certificate manager UI, OCSP
@baloo I still think we should add a general method for calculating `certHash` in `x509-cert` itself
Oh sorry, that’s fine
Yeah, alas, not great timing. I can yank the v0.6.0 release and retroactively upgrade it.
Another thing I could do which is a little annoying is start a new development branch and upgrade there, and cut a v0.7.0 prerelease
@erik-3milabs I just set `master` to v0.7.0-pre in #765 This means you can now make breaking changes, such as removing the existing safegcd implementation and changing trait impls like `Gcd`...