crypto/x509: improve RevocationList documentation

Adds documentation for a handful of RevocationList fields. Updates #50674 Change-Id: I26b838553d870b631deaf8b9a5b4d0b251fdef20 Reviewed-on: https://go-review.googlesource.com/c/go/+/414635 Run-TryBot: Roland Shoemaker <roland@golang.org> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Russ Cox <rsc@golang.org>
2024-09-15 22:20:06 +00:00 · 2022-06-27 16:23:37 -07:00 · 2022-06-27 16:23:37 -07:00 · bd1783e812
parent 160414ca6a
commit bd1783e812
1 changed files with 11 additions and 3 deletions
--- a/src/crypto/x509/x509.go
+++ b/src/crypto/x509/x509.go
@ -2097,11 +2097,19 @@ func (c *CertificateRequest) CheckSignature() error {
 // RevocationList contains the fields used to create an X.509 v2 Certificate
 // Revocation list with CreateRevocationList.
 type RevocationList struct {
-	Raw                  []byte
+	// Raw contains the complete ASN.1 DER content of the CRL (tbsCertList,
+	// signatureAlgorithm, and signatureValue.)
+	Raw []byte
+	// RawTBSRevocationList contains just the tbsCertList portion of the ASN.1
+	// DER.
 	RawTBSRevocationList []byte
-	RawIssuer            []byte
+	// RawIssuer contains the DER encoded Issuer.
+	RawIssuer []byte

-	Issuer         pkix.Name
+	// Issuer contains the DN of the issuing certificate.
+	Issuer pkix.Name
+	// AuthorityKeyId is used to identify the public key associated with the
+	// issuing certificate.
 	AuthorityKeyId []byte

 	Signature []byte