types

package
v0.0.0-...-db52ee3 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 18, 2024 License: MIT Imports: 3 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type CertificateInfo 

type CertificateInfo struct {
	Subject           string    // Субъект CertPropSubjectDN
	SerialNumber      string    // Серийный номер  CertPropCertCN
	ValidFrom         time.Time // Начало действия сертификата  CertPropNotBefore
	ValidUntil        time.Time // Конец действия сертификата  CertPropNotAfter
	Issuer            string    // Издатель  CertPropIssuerDN
	Policy            string    // Политика регистрационного свидетельства CertPropPoliciesID
	KeyUsage          string    // Использования ключа CertPropKeyUsage
	ExtKeyUsage       string    // Расширенные использования ключа CertPropExtKeyUsage
	AuthKeyID         string    // Идентификатор ключа центра сертификации
	SubjKeyID         string    // Идентификатор ключа субъекта
	AlgorithmSignCert string    // Алгоритм подписи сертификата CertPropSignatureAlg
	PublicKey         string    // Открытого ключа
	OcspUrl           string    // URL-адрес OCSP
	CrlUrl            string    // URL-адрес CRL
	DeltaCrlUrl       string    // URL-адрес delta CRL
	Policies          []string
	KeyUsages         []string
	ExtKeyUsages      []string
}

type Kalkan 

type Kalkan interface {
	LoadKeyStore(path, password string) (err error)
	LoadKeyStoreFromBytes(key []byte, password string) (err error)
	X509ExportCertificateFromStore() (*x509.Certificate, error)

	Sign(input *SignInput) (signature []byte, err error)
	SignXML(input *SignXMLInput) (string, error)
	SignWSSE(xml, id string) (signedXML string, err error)
	SignHash(input *SignHashInput) (signedHash []byte, err error)

	Verify(input *VerifyInput) (string, error)
	VerifyXML(input *VerifyXMLInput) (result string, err error)
	VerifyDetached(signature, data []byte) (string, error)

	ValidateCert(input *ValidateCertInput) (string, error)

	HashSHA256(data []byte) ([]byte, error)
	HashGOST95(data []byte) ([]byte, error)

	SetProxyOn(proxyURL string) error
	SetProxyOff(proxyURL string) error

	GetCertFromCMS(cms []byte) ([]*x509.Certificate, error)
	GetCertFromXML(xml string) ([]*x509.Certificate, error)

	X509CertificateGetInfo(*x509.Certificate) (*CertificateInfo, error)
	GetTimeFromSig(cmsDer []byte) (time.Time, error)
	GetSigAlgFromXML(xml string) (string, error)

	Close() error
}

Kalkan - это обертка над методами KalkanCrypt.

type SignHashInput 

type SignHashInput struct {
	Algo       ckalkan.HashAlgo
	InHash     []byte
	IsDetached bool
	WithTSP    bool
}

type SignInput 

type SignInput struct {
	DataBytes  []byte
	IsDetached bool
	WithTSP    bool
}

type SignXMLInput 

type SignXMLInput struct {
	Data    string
	WithTSP bool
}

type ValidateCertInput 

type ValidateCertInput struct {
	Certificate   *x509.Certificate
	CheckCertTime bool
	ValidateType  ValidateType
	OCSPUrl       string
	CRLPath       string
}

type ValidateType 

type ValidateType string
const (
	ValidateOCSP    ValidateType = "OCSP"
	ValidateCRL     ValidateType = "CRL"
	ValidateNothing ValidateType = "Nothing"
)

type VerifyInput 

type VerifyInput struct {
	SignatureBytes    []byte
	DataBytes         []byte
	IsDetached        bool
	MustCheckCertTime bool
}

type VerifyXMLInput 

type VerifyXMLInput struct {
	Signature         string
	MustCheckCertTime bool
}

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.