verifier

package
v10.289.12+incompatible Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 11, 2021 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type PolicyReporter

type PolicyReporter interface {
	IDLookup(remoteContoller, remotePUID string, tags *policy.TagStore) bool
	IPLookup() bool
	Policy(tags *policy.TagStore) (*policy.FlowPolicy, *policy.FlowPolicy)
	ReportStats(remoteType collector.EndPointType, remoteController string, remotePUID string, mode string, report *policy.FlowPolicy, packet *policy.FlowPolicy, accept bool)
}

PolicyReporter is the interface to allow looking up policies and report stats

type Verifier

type Verifier interface {

	// TrustCA replaces the trusted CA list.
	TrustCAs(caPool *x509.CertPool)

	// VerifyPeerCertificate verifies if this TLS connection should be admitted.
	VerifyPeerCertificate(rawCerts [][]byte, verifiedChains [][]*x509.Certificate, policy PolicyReporter, mustHaveClientIDCert bool) error
}

Verifier interface defines the methods a verifier must implement

func New

func New(caPool *x509.CertPool) Verifier

New returns a new instance of Verifier

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL