Documentation ¶
Index ¶
Constants ¶
View Source
const ( // NB: TestCertificate1 is expected to have the following properties: // 1. Same Subject as TestCertificate2 // 2. Self signed (issuer == subject) // There are tests to assert these properties. // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // 0f:7a:09:a8:71:09:02:34:f6:e6:b1:06:63:a9:0b:81 // Signature Algorithm: ecdsa-with-SHA256 // Issuer: O = cert-manager, CN = cmct-test-root // Validity // Not Before: Nov 25 13:03:54 2022 GMT // Not After : Nov 22 13:03:54 2032 GMT // Subject: O = cert-manager, CN = cmct-test-root // Subject Public Key Info: // Public Key Algorithm: id-ecPublicKey // Public-Key: (256 bit) // pub: // 04:6d:1a:c4:54:86:d9:31:3e:23:60:4f:da:fc:1d: // 5d:ce:fd:a1:40:93:51:ec:2c:75:d8:19:3a:ad:9f: // f9:d2:a3:59:4e:57:c8:f3:5c:10:0c:4c:a7:7e:ed: // 56:34:2f:b0:2e:1c:45:81:28:fa:e6:12:98:c5:5c: // 42:2e:24:91:51 // ASN1 OID: prime256v1 // NIST CURVE: P-256 // X509v3 extensions: // X509v3 Basic Constraints: critical // CA:TRUE, pathlen:3 // X509v3 Subject Key Identifier: // D7:04:1B:6B:B3:CD:3F:5B:73:32:D2:9C:FB:84:7B:DF:27:26:45:50 // Signature Algorithm: ecdsa-with-SHA256 // 30:45:02:21:00:9e:37:6f:d9:ee:34:89:24:ae:e6:ee:47:19: // fd:48:09:22:a6:f3:29:2d:64:b7:27:14:43:9d:3e:76:1a:8d: // a2:02:20:69:36:11:8c:8c:59:14:9d:ee:56:11:b3:8c:0a:87: // f1:8c:ae:10:e6:da:a7:08:78:6d:36:64:6a:9c:28:0d:94 TestCertificate1 = `` /* 606-byte string literal not displayed */ // NB: TestCertificate2 is expected to have the following properties: // 1. Same Subject as TestCertificate1 // 2. Self signed (issuer == subject) // There are tests to assert these properties. // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // d7:28:b3:57:35:d8:25:d3:0a:6f:2a:c9:9b:68:d8:bb // Signature Algorithm: ED25519 // Issuer: O = cert-manager, CN = cmct-test-root // Validity // Not Before: Dec 5 16:22:42 2022 GMT // Not After : Dec 2 16:22:42 2032 GMT // Subject: O = cert-manager, CN = cmct-test-root // Subject Public Key Info: // Public Key Algorithm: ED25519 // ED25519 Public-Key: // pub: // 5a:35:43:bb:de:3d:e4:a6:78:83:46:05:27:de:23: // 82:01:ab:b7:73:45:5d:69:3a:31:be:75:a4:20:72: // 95:2c // X509v3 extensions: // X509v3 Basic Constraints: critical // CA:TRUE, pathlen:3 // X509v3 Subject Key Identifier: // 58:C2:AA:B4:D5:56:94:11:74:10:0D:2F:38:1D:2B:1D:DA:81:6C:48 // Signature Algorithm: ED25519 // 4a:9b:e4:f9:a1:5e:d9:40:83:24:a2:84:6e:60:94:1c:8e:e5: // 96:a3:14:13:41:22:18:ce:17:af:b2:7c:dd:41:a3:95:e3:27: // b6:c6:c1:52:21:1a:84:4f:1c:2b:5b:be:c9:df:b9:0e:72:4b: // 3f:79:08:50:f5:04:8b:51:9d:03 TestCertificate2 = `` /* 521-byte string literal not displayed */ // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // 82:10:cf:b0:d2:40:e3:59:44:63:e0:bb:63:82:8b:00 // Signature Algorithm: sha256WithRSAEncryption // Issuer: C = US, O = Internet Security Research Group, CN = ISRG Root X1 // Validity // Not Before: Jun 4 11:04:38 2015 GMT // Not After : Jun 4 11:04:38 2035 GMT // Subject: C = US, O = Internet Security Research Group, CN = ISRG Root X1 // Subject Public Key Info: // Public Key Algorithm: rsaEncryption // RSA Public-Key: (4096 bit) // Modulus: // 00:ad:e8:24:73:f4:14:37:f3:9b:9e:2b:57:28:1c: // <snip> // 33:43:4f // Exponent: 65537 (0x10001) // X509v3 extensions: // X509v3 Key Usage: critical // Certificate Sign, CRL Sign // X509v3 Basic Constraints: critical // CA:TRUE // X509v3 Subject Key Identifier: // 79:B4:59:E6:7B:B6:E5:E4:01:73:80:08:88:C8:1A:58:F6:E9:9B:6E // Signature Algorithm: sha256WithRSAEncryption // 55:1f:58:a9:bc:b2:a8:50:d0:0c:b1:d8:1a:69:20:27:29:08: // <snip> // 9d:7e:62:22:da:de:18:27 TestCertificate3 = `` /* 1938-byte string literal not displayed */ // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // 41:d2:9d:d1:72:ea:ee:a7:80:c1:2c:6c:e9:2f:87:52 // Signature Algorithm: ecdsa-with-SHA384 // Issuer: C = US, O = Internet Security Research Group, CN = ISRG Root X2 // Validity // Not Before: Sep 4 00:00:00 2020 GMT // Not After : Sep 17 16:00:00 2040 GMT // Subject: C = US, O = Internet Security Research Group, CN = ISRG Root X2 // Subject Public Key Info: // Public Key Algorithm: id-ecPublicKey // Public-Key: (384 bit) // pub: // 04:cd:9b:d5:9f:80:83:0a:ec:09:4a:f3:16:4a:3e: // 5c:cf:77:ac:de:67:05:0d:1d:07:b6:dc:16:fb:5a: // 8b:14:db:e2:71:60:c4:ba:45:95:11:89:8e:ea:06: // df:f7:2a:16:1c:a4:b9:c5:c5:32:e0:03:e0:1e:82: // 18:38:8b:d7:45:d8:0a:6a:6e:e6:00:77:fb:02:51: // 7d:22:d8:0a:6e:9a:5b:77:df:f0:fa:41:ec:39:dc: // 75:ca:68:07:0c:1f:ea // ASN1 OID: secp384r1 // NIST CURVE: P-384 // X509v3 extensions: // X509v3 Key Usage: critical // Certificate Sign, CRL Sign // X509v3 Basic Constraints: critical // CA:TRUE // X509v3 Subject Key Identifier: // 7C:42:96:AE:DE:4B:48:3B:FA:92:F8:9E:8C:CF:6D:8B:A9:72:37:95 // Signature Algorithm: ecdsa-with-SHA384 // 30:65:02:30:7b:79:4e:46:50:84:c2:44:87:46:1b:45:70:ff: // 58:99:de:f4:fd:a4:d2:55:a6:20:2d:74:d6:34:bc:41:a3:50: // 5f:01:27:56:b4:be:27:75:06:af:12:2e:75:98:8d:fc:02:31: // 00:8b:f5:77:6c:d4:c8:65:aa:e0:0b:2c:ee:14:9d:27:37:a4: // f9:53:a5:51:e4:29:83:d7:f8:90:31:5b:42:9f:0a:f5:fe:ae: // 00:68:e7:8c:49:0f:b6:6f:5b:5b:15:f2:e7 TestCertificate4 = `` /* 789-byte string literal not displayed */ // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // 02:03:e5:93:6f:31:b0:13:49:88:6b:a2:17 // Signature Algorithm: sha384WithRSAEncryption // Issuer: C = US, O = Google Trust Services LLC, CN = GTS Root R1 // Validity // Not Before: Jun 22 00:00:00 2016 GMT // Not After : Jun 22 00:00:00 2036 GMT // Subject: C = US, O = Google Trust Services LLC, CN = GTS Root R1 // Subject Public Key Info: // Public Key Algorithm: rsaEncryption // RSA Public-Key: (4096 bit) // Modulus: // 00:b6:11:02:8b:1e:e3:a1:77:9b:3b:dc:bf:94:3e: // <snip> // 18:05:95 // Exponent: 65537 (0x10001) // X509v3 extensions: // X509v3 Key Usage: critical // Digital Signature, Certificate Sign, CRL Sign // X509v3 Basic Constraints: critical // CA:TRUE // X509v3 Subject Key Identifier: // E4:AF:2B:26:71:1A:2B:48:27:85:2F:52:66:2C:EF:F0:89:13:71:3E // Signature Algorithm: sha384WithRSAEncryption // 9f:aa:42:26:db:0b:9b:be:ff:1e:96:92:2e:3e:a2:65:4a:6a: // <snip> // 71:ae:57:fb:b7:82:6d:dc TestCertificate5 = `` /* 1910-byte string literal not displayed */ // DUPLICATE CERTIFICATE // Certificate: // // Data: // Version: 3 (0x2) // Serial Number: // 02:03:e5:93:6f:31:b0:13:49:88:6b:a2:17 // Signature Algorithm: sha384WithRSAEncryption // Issuer: C = US, O = Google Trust Services LLC, CN = GTS Root R1 // Validity // Not Before: Jun 22 00:00:00 2016 GMT // Not After : Jun 22 00:00:00 2036 GMT // Subject: C = US, O = Google Trust Services LLC, CN = GTS Root R1 // Subject Public Key Info: // Public Key Algorithm: rsaEncryption // RSA Public-Key: (4096 bit) // Modulus: // 00:b6:11:02:8b:1e:e3:a1:77:9b:3b:dc:bf:94:3e: // <snip> // 18:05:95 // Exponent: 65537 (0x10001) // X509v3 extensions: // X509v3 Key Usage: critical // Digital Signature, Certificate Sign, CRL Sign // X509v3 Basic Constraints: critical // CA:TRUE // X509v3 Subject Key Identifier: // E4:AF:2B:26:71:1A:2B:48:27:85:2F:52:66:2C:EF:F0:89:13:71:3E // Signature Algorithm: sha384WithRSAEncryption // 9f:aa:42:26:db:0b:9b:be:ff:1e:96:92:2e:3e:a2:65:4a:6a: // <snip> // 71:ae:57:fb:b7:82:6d:dc TestCertificate5Duplicate = `` /* 1910-byte string literal not displayed */ // DUPLICATE CERTIFICATE // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // 82:10:cf:b0:d2:40:e3:59:44:63:e0:bb:63:82:8b:00 // Signature Algorithm: sha256WithRSAEncryption // Issuer: C = US, O = Internet Security Research Group, CN = ISRG Root X1 // Validity // Not Before: Jun 4 11:04:38 2015 GMT // Not After : Jun 4 11:04:38 2035 GMT // Subject: C = US, O = Internet Security Research Group, CN = ISRG Root X1 // Subject Public Key Info: // Public Key Algorithm: rsaEncryption // RSA Public-Key: (4096 bit) // Modulus: // 00:ad:e8:24:73:f4:14:37:f3:9b:9e:2b:57:28:1c: // <snip> // 33:43:4f // Exponent: 65537 (0x10001) // X509v3 extensions: // X509v3 Key Usage: critical // Certificate Sign, CRL Sign // X509v3 Basic Constraints: critical // CA:TRUE // X509v3 Subject Key Identifier: // 79:B4:59:E6:7B:B6:E5:E4:01:73:80:08:88:C8:1A:58:F6:E9:9B:6E // Signature Algorithm: sha256WithRSAEncryption // 55:1f:58:a9:bc:b2:a8:50:d0:0c:b1:d8:1a:69:20:27:29:08: // <snip> // 9d:7e:62:22:da:de:18:27 TestCertificate3Duplicate = `` /* 1938-byte string literal not displayed */ // Invalid certificate TestCertificateInvalid7 = `` /* 612-byte string literal not displayed */ // Expired certificate // Certificate: // Data: // Version: 3 (0x2) // Serial Number: // 7c:76:92:2b:61:63:6e:68:28:3b:5c:38:db:dc:9a:92:bd:85:75:c1 // Signature Algorithm: sha256WithRSAEncryption // Issuer: C = AU, ST = Some-State, O = Internet Widgits Pty Ltd // Validity // Not Before: Jan 6 11:09:24 2024 GMT // Not After : Jan 12 11:09:24 2024 GMT TestExpiredCertificate = `` /* 1938-byte string literal not displayed */ )
Variables ¶
This section is empty.
Functions ¶
func DefaultJoinedCerts ¶
func DefaultJoinedCerts() string
func DummyInstant ¶ added in v0.8.0
DummyInstant returns a time at which all dummy certs should be unexpired except for any which are specifically created to have expired.
Types ¶
This section is empty.
Click to show internal directories.
Click to hide internal directories.