certverify

package

v0.6.0 Latest Latest Go to latest Published: Jan 9, 2024 License: MIT Imports: 6 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/micromdm/nanomdm

Links

Open Source Insights

Documentation ¶

Overview ¶

Package certverify contains services for verifying MDM certs

Index ¶

type CertVerifier
type FallbackVerifier
- func NewFallbackVerifier(verifiers ...CertVerifier) *FallbackVerifier
- func (v *FallbackVerifier) Verify(ctx context.Context, cert *x509.Certificate) error
type PoolVerifier
- func NewPoolVerifier(rootsPEM []byte, intsPEM []byte, keyUsages ...x509.ExtKeyUsage) (*PoolVerifier, error)
- func (v *PoolVerifier) Verify(_ context.Context, cert *x509.Certificate) error
type SignatureVerifier
- func NewSignatureVerifier(rootPEM []byte) (*SignatureVerifier, error)
- func (v *SignatureVerifier) Verify(_ context.Context, cert *x509.Certificate) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type CertVerifier ¶ added in v0.6.0

type CertVerifier interface {
	Verify(context.Context, *x509.Certificate) error
}

CertVerifier is a simple interface for verifying a certificate.

type FallbackVerifier ¶ added in v0.6.0

type FallbackVerifier struct {
	// contains filtered or unexported fields
}

FallbackVerifier verfies certificate validity using multiple verifiers.

func NewFallbackVerifier ¶ added in v0.6.0

func NewFallbackVerifier(verifiers ...CertVerifier) *FallbackVerifier

NewFallbackVerifier creates a new verifier using other verifiers.

func (*FallbackVerifier) Verify ¶ added in v0.6.0

func (v *FallbackVerifier) Verify(ctx context.Context, cert *x509.Certificate) error

Verify performs certificate verification. Any verifier returning nil ("passes") will pass (return nil) and not check any other verifier. If all verifiers return non-nil ("fail") then an error for all verifiers will be returned.

type PoolVerifier ¶

type PoolVerifier struct {
	// contains filtered or unexported fields
}

PoolVerifier is a simple certificate verifier

func NewPoolVerifier ¶

func NewPoolVerifier(rootsPEM []byte, intsPEM []byte, keyUsages ...x509.ExtKeyUsage) (*PoolVerifier, error)

NewPoolVerifier creates a new Verifier

func (*PoolVerifier) Verify ¶

func (v *PoolVerifier) Verify(_ context.Context, cert *x509.Certificate) error

Verify performs certificate verification

type SignatureVerifier ¶

type SignatureVerifier struct {
	// contains filtered or unexported fields
}

SignatureVerifier is a simple certificate verifier

func NewSignatureVerifier ¶

func NewSignatureVerifier(rootPEM []byte) (*SignatureVerifier, error)

NewSignatureVerifier creates a new Verifier

func (*SignatureVerifier) Verify ¶

func (v *SignatureVerifier) Verify(_ context.Context, cert *x509.Certificate) error

Verify checks only the signature of the certificate against the CA

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL