Documentation ¶
Overview ¶
Package revoke provides functionality for checking the validity of a cert. Specifically, the temporal validity of the certificate is checked first, then any CRL in the cert is checked. OCSP is not supported at this time.
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var CRLSet = map[string]*pkix.CertificateList{}
CRLSet associates a PKIX certificate list with the URL the CRL is fetched from.
View Source
var HardFail = false
HardFail determines whether the failure to check the revocation status of a certificate (i.e. due to network failure) causes verification to fail (a hard failure).
Functions ¶
func VerifyCertificate ¶
func VerifyCertificate(cert *x509.Certificate) (revoked, ok bool)
VerifyCertificate ensures that the certificate passed in hasn't expired and checks the CRL for the server.
Types ¶
This section is empty.
Click to show internal directories.
Click to hide internal directories.