Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security Policy
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

tlssupport

package

Go to main page

Versions in this module

v0

v0.0.5

Sep 22, 2021

Changes in this version

+ func AppendNewCertsToTrustRoots(tlsTrustRoots *ChainTrustRoots, chainId string, certPemBytes []byte) (bool, error)

+ func GetCertAndPeerIdWithKeyPair(certPEMBlock []byte, keyPEMBlock []byte) (*tls.Certificate, string, error)

+ func NewTlsConfig(certificate tls.Certificate, certValidator *CertValidator) (*tls.Config, error)

+ type CertValidator struct

+ func NewCertValidator(tlsTrustRoots *ChainTrustRoots, ...) *CertValidator

+ func (v *CertValidator) QueryDerivedInfoWithPeerId(peerId string) *DerivedInfoWithCert

+ func (v *CertValidator) VerifyPeerCertificateFunc() func(rawCerts [][]byte, _ [][]*x509.Certificate) error

+ type ChainTrustRoots struct

+ func BuildTlsTrustRoots(chainTrustRoots map[string][][]byte) (*ChainTrustRoots, error)

+ func NewChainTrustRoots() *ChainTrustRoots

+ func (ctr *ChainTrustRoots) AddIntermediates(chainId string, intermediates *x509.Certificate)

+ func (ctr *ChainTrustRoots) AddRoot(chainId string, root *x509.Certificate)

+ func (ctr *ChainTrustRoots) AppendIntermediatesFromPem(chainId string, intermediatesPem []byte) bool

+ func (ctr *ChainTrustRoots) AppendRootsFromPem(chainId string, rootPem []byte) bool

+ func (ctr *ChainTrustRoots) IntermediatesPool(chainId string) (*x509.CertPool, bool)

+ func (ctr *ChainTrustRoots) RefreshIntermediatesFromPem(chainId string, intermediatesPem [][]byte) bool

+ func (ctr *ChainTrustRoots) RefreshRootsFromPem(chainId string, rootsPem [][]byte) bool

+ func (ctr *ChainTrustRoots) RootsPool(chainId string) (*x509.CertPool, bool)

+ func (ctr *ChainTrustRoots) VerifyCert(cert *x509.Certificate) ([]string, error)

+ func (ctr *ChainTrustRoots) VerifyCertOfChain(chainId string, cert *x509.Certificate) bool

+ type DerivedInfoWithCert struct

+ CertId string

+ ChainIds []string

+ PeerId string

+ TlsCertBytes []byte