Versions in this module Expand all Collapse all v1 v1.0.0 Jun 28, 2024 Changes in this version + const RevocationRevoked + const RevocationUndetermined + const RevocationUnrevoked + func NewClientCreds(o *Options) (credentials.TransportCredentials, error) + func NewServerCreds(o *Options) (credentials.TransportCredentials, error) + type CRL struct + func NewCRL(b []byte) (*CRL, error) + func ReadCRLFile(path string) (*CRL, error) + type CRLProvider interface + CRL func(cert *x509.Certificate) (*CRL, error) + type CertificateChains [][]*x509.Certificate + type ConnectionInfo struct + RawCerts [][]byte + RawConn net.Conn + type FileWatcherCRLProvider struct + func NewFileWatcherCRLProvider(o FileWatcherOptions) (*FileWatcherCRLProvider, error) + func (p *FileWatcherCRLProvider) CRL(cert *x509.Certificate) (*CRL, error) + func (p *FileWatcherCRLProvider) Close() + type FileWatcherOptions struct + CRLDirectory string + CRLReloadingFailedCallback func(err error) + RefreshDuration time.Duration + type HandshakeVerificationInfo struct + Leaf *x509.Certificate + RawCerts [][]byte + ServerName string + VerifiedChains CertificateChains + type IdentityCertificateOptions struct + Certificates []tls.Certificate + GetIdentityCertificatesForClient func(*tls.CertificateRequestInfo) (*tls.Certificate, error) + GetIdentityCertificatesForServer func(*tls.ClientHelloInfo) ([]*tls.Certificate, error) + IdentityProvider certprovider.Provider + type Options struct + AdditionalPeerVerification PostHandshakeVerificationFunc + CipherSuites []uint16 + IdentityOptions IdentityCertificateOptions + MaxTLSVersion uint16 + MinTLSVersion uint16 + RequireClientCert bool + RevocationOptions *RevocationOptions + RootOptions RootCertificateOptions + VerificationType VerificationType + type PostHandshakeVerificationFunc func(params *HandshakeVerificationInfo) (*PostHandshakeVerificationResults, error) + type PostHandshakeVerificationResults struct + type RevocationOptions struct + CRLProvider CRLProvider + DenyUndetermined bool + type RootCertificateOptions struct + GetRootCertificates func(params *ConnectionInfo) (*RootCertificates, error) + RootCertificates *x509.CertPool + RootProvider certprovider.Provider + type RootCertificates struct + TrustCerts *x509.CertPool + type StaticCRLProvider struct + func NewStaticCRLProvider(rawCRLs [][]byte) *StaticCRLProvider + func (p *StaticCRLProvider) CRL(cert *x509.Certificate) (*CRL, error) + type VerificationType int + const CertAndHostVerification + const CertVerification + const SkipVerification