From 91218665d27e39ccf799fdd4c6f7c8bb8e4ca4cf Mon Sep 17 00:00:00 2001
From: tjpcc <tjp@ctrl-c.club>
Date: Wed, 3 May 2023 19:37:26 -0600
Subject: use sha256 for client cert fingerprints, and log them when available

---
 examples/inspectls/main.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'examples/inspectls/main.go')

diff --git a/examples/inspectls/main.go b/examples/inspectls/main.go
index 5becb71..d400fe9 100644
--- a/examples/inspectls/main.go
+++ b/examples/inspectls/main.go
@@ -3,7 +3,7 @@ package main
 import (
 	"bytes"
 	"context"
-	"crypto/md5"
+	"crypto/sha256"
 	"crypto/tls"
 	"crypto/x509"
 	"encoding/hex"
@@ -88,7 +88,7 @@ func displayTLSState(state *tls.ConnectionState) string {
 }
 
 func fingerprint(cert *x509.Certificate) []byte {
-	raw := md5.Sum(cert.Raw)
+	raw := sha256.Sum256(cert.Raw)
 	dst := make([]byte, hex.EncodedLen(len(raw)))
 	hex.Encode(dst, raw[:])
 	return dst
-- 
cgit v1.2.3