mozilla

package

v0.0.0-...-b578434 Latest Latest Go to latest Published: Jun 8, 2021 License: Apache-2.0, ISC, MIT Imports: 13 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/Combinatorious/zcrypto

Documentation ¶

Index ¶

Constants
type Entry
- func (entry *Entry) UnmarshalJSON(b []byte) error
type EntryDetails
type IssuerList
type OneCRL
- func FetchAndParse() (*OneCRL, error)
- func Parse(raw []byte) (*OneCRL, error)
- func (c *OneCRL) Check(cert *x509.Certificate) *Entry
- func (c *OneCRL) FindIssuer(issuer *pkix.Name) *IssuerList
type Provider
- func NewProvider(requestURL string) Provider
type SubjectAndPublicKey

Constants ¶

View Source

const (
	// KintoRequestURL specifies a pre-populated URL where to send request
	KintoRequestURL = "https://settings.prod.mozaws.net/v1/buckets/security-state-staging/collections/onecrl/records"
	// OneCRLDistPoint specifies a pre-populated URL where to send request
	OneCRLDistPoint = "https://firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/certificates/records"
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Entry ¶

type Entry struct {
	ID                  string
	Schema              time.Time
	Details             EntryDetails
	Enabled             bool
	Issuer              *pkix.Name
	SerialNumber        *big.Int
	SubjectAndPublicKey *SubjectAndPublicKey
	LastModified        time.Time
}

Entry - entry for a single certificate

func (*Entry) UnmarshalJSON ¶

func (entry *Entry) UnmarshalJSON(b []byte) error

UnmarshalJSON implements the json.Unmarshaler interface

type EntryDetails ¶

type EntryDetails struct {
	Bug     string     `json:"bug,omitempty"`
	Who     string     `json:"who,omitempty"`
	Why     string     `json:"why,omitempty"`
	Name    string     `json:"name,omitempty"`
	Created *time.Time `json:"created,omitempty"`
}

EntryDetails - revocation details for a single entry

type IssuerList ¶

type IssuerList struct {
	Issuer  *pkix.Name
	Entries []*Entry
}

IssuerList - list of Entry for a given issuer

type OneCRL ¶

type OneCRL struct {
	IssuerLists map[string]*IssuerList

	// Blocked provides a list of revoked entries by Subject and PubKeyHash
	Blocked []*SubjectAndPublicKey
}

OneCRL - data structure for storing OneCRL data, used by methods below

func FetchAndParse ¶

func FetchAndParse() (*OneCRL, error)

FetchAndParse - fetch from distribution point, parse to OneCRL struct as defined above

func Parse ¶

func Parse(raw []byte) (*OneCRL, error)

Parse - given raw bytes of OneCRL, parse and create OneCRL Object

func (*OneCRL) Check ¶

func (c *OneCRL) Check(cert *x509.Certificate) *Entry

Check - Given a parsed OneCRL, check if a given cert is present

func (*OneCRL) FindIssuer ¶

func (c *OneCRL) FindIssuer(issuer *pkix.Name) *IssuerList

FindIssuer - given an issuer pkix.name, find its corresponding IssuerList

type Provider ¶

type Provider interface {
	FetchAndParse() (*OneCRL, error)
}

Provider specifies OneCRL provider interface

func NewProvider ¶

func NewProvider(requestURL string) Provider

NewProvider returns default Provider

type SubjectAndPublicKey ¶

type SubjectAndPublicKey struct {
	RawSubject []byte
	Subject    *pkix.Name
	PubKeyHash []byte
}

SubjectAndPublicKey specifies a revocation entry by Subject and PubKeyHash

Source Files ¶

View all Source files

mozilla.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL