fix panic for situation common with self-signed certs

2015-10-28 21:36:02 -06:00 · 2015-10-28 21:36:02 -06:00 · f146acc019
commit f146acc019
parent 3842dc6432
1 changed files with 4 additions and 0 deletions
--- a/acme/crypto.go
+++ b/acme/crypto.go
@ -55,6 +55,10 @@ func GetOCSPForCert(bundle []byte) ([]byte, int, error) {
 	// We only got one certificate, means we have no issuer certificate - get it.
 	if len(certificates) == 1 {
 		// TODO: build fallback. If this fails, check the remaining array entries.
+		if len(certificates[0].IssuingCertificateURL) == 0 {
+			return nil, OCSPUnknown, errors.New("no issuing certificate URL")
+		}
+
 		resp, err := http.Get(certificates[0].IssuingCertificateURL[0])
 		if err != nil {
 			return nil, OCSPUnknown, err