x509util

package
v1.0.4 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Nov 14, 2017 License: Apache-2.0 Imports: 13 Imported by: 163

Documentation

Overview

Package x509util includes utility code for working with X.509 certificates from the x509 package.

Index

Constants

This section is empty.

Variables

View Source
var (
	OidAttribute          = asn1.ObjectIdentifier{2, 5, 4}
	OidCountry            = asn1.ObjectIdentifier{2, 5, 4, 6}
	OidOrganization       = asn1.ObjectIdentifier{2, 5, 4, 10}
	OidOrganizationalUnit = asn1.ObjectIdentifier{2, 5, 4, 11}
	OidCommonName         = asn1.ObjectIdentifier{2, 5, 4, 3}
	OidSerialNumber       = asn1.ObjectIdentifier{2, 5, 4, 5}
	OidLocality           = asn1.ObjectIdentifier{2, 5, 4, 7}
	OidProvince           = asn1.ObjectIdentifier{2, 5, 4, 8}
	OidStreetAddress      = asn1.ObjectIdentifier{2, 5, 4, 9}
	OidPostalCode         = asn1.ObjectIdentifier{2, 5, 4, 17}

	OidPseudonym           = asn1.ObjectIdentifier{2, 5, 4, 65}
	OidTitle               = asn1.ObjectIdentifier{2, 5, 4, 12}
	OidDnQualifier         = asn1.ObjectIdentifier{2, 5, 4, 46}
	OidName                = asn1.ObjectIdentifier{2, 5, 4, 41}
	OidSurname             = asn1.ObjectIdentifier{2, 5, 4, 4}
	OidGivenName           = asn1.ObjectIdentifier{2, 5, 4, 42}
	OidInitials            = asn1.ObjectIdentifier{2, 5, 4, 43}
	OidGenerationQualifier = asn1.ObjectIdentifier{2, 5, 4, 44}

	OidNamedCurveP224 = asn1.ObjectIdentifier{1, 3, 132, 0, 33}
	OidNamedCurveP256 = asn1.ObjectIdentifier{1, 2, 840, 10045, 3, 1, 7}
	OidNamedCurveP384 = asn1.ObjectIdentifier{1, 3, 132, 0, 34}
	OidNamedCurveP521 = asn1.ObjectIdentifier{1, 3, 132, 0, 35}
)

//////////////////////////////////// TODO(drysdale): export these constants/functions from x509 and remove this section. Copy of unexported code from x509/x509.go

View Source
var (
	OidExtensionArc                        = asn1.ObjectIdentifier{2, 5, 29}     // id-ce RFC5280 s4.2.1
	OidExtensionSubjectKeyId               = asn1.ObjectIdentifier{2, 5, 29, 14} // nolint: golint
	OidExtensionKeyUsage                   = asn1.ObjectIdentifier{2, 5, 29, 15}
	OidExtensionExtendedKeyUsage           = asn1.ObjectIdentifier{2, 5, 29, 37}
	OidExtensionAuthorityKeyId             = asn1.ObjectIdentifier{2, 5, 29, 35} // nolint:golint
	OidExtensionBasicConstraints           = asn1.ObjectIdentifier{2, 5, 29, 19}
	OidExtensionSubjectAltName             = asn1.ObjectIdentifier{2, 5, 29, 17}
	OidExtensionCertificatePolicies        = asn1.ObjectIdentifier{2, 5, 29, 32}
	OidExtensionNameConstraints            = asn1.ObjectIdentifier{2, 5, 29, 30}
	OidExtensionCRLDistributionPoints      = asn1.ObjectIdentifier{2, 5, 29, 31}
	OidExtensionIssuerAltName              = asn1.ObjectIdentifier{2, 5, 29, 18}
	OidExtensionSubjectDirectoryAttributes = asn1.ObjectIdentifier{2, 5, 29, 9}
	OidExtensionInhibitAnyPolicy           = asn1.ObjectIdentifier{2, 5, 29, 54}
	OidExtensionPolicyConstraints          = asn1.ObjectIdentifier{2, 5, 29, 36}
	OidExtensionPolicyMappings             = asn1.ObjectIdentifier{2, 5, 29, 33}
	OidExtensionFreshestCRL                = asn1.ObjectIdentifier{2, 5, 29, 46}

	OidExtensionAuthorityInfoAccess = asn1.ObjectIdentifier{1, 3, 6, 1, 5, 5, 7, 1, 1}
	OidExtensionSubjectInfoAccess   = asn1.ObjectIdentifier{1, 3, 6, 1, 5, 5, 7, 1, 11}

	// RFC 6962 s3.1
	OidExtensionCTPoison = asn1.ObjectIdentifier{1, 3, 6, 1, 4, 1, 11129, 2, 4, 3}
	// RFC 6962 s3.3
	OidExtensionCTSCT = asn1.ObjectIdentifier{1, 3, 6, 1, 4, 1, 11129, 2, 4, 2}
)

OID values for X.509 extensions.

Functions

func CertificateFromPEM

func CertificateFromPEM(pemBytes string) (*x509.Certificate, error)

CertificateFromPEM takes a string representing a certificate in PEM format and returns the corresponding x509.Certificate object.

func CertificateToString

func CertificateToString(cert *x509.Certificate) string

CertificateToString generates a string describing the given certificate. The output roughly resembles that from openssl x509 -text.

func Fuzz

func Fuzz(data []byte) int

Fuzz is a go-fuzz (https://github.com/dvyukov/go-fuzz) entrypoint for fuzzing the parsing of X509 certificates.

func NameToString

func NameToString(name pkix.Name) string

NameToString creates a string description of a pkix.Name object.

func OidForStandardExtension

func OidForStandardExtension(oid asn1.ObjectIdentifier) bool

OidForStandardExtension indicates whether oid identifies a standard extension. Standard extensions are listed in RFC 5280 (and other RFCs).

func OidFromNamedCurve

func OidFromNamedCurve(curve elliptic.Curve) asn1.ObjectIdentifier

OidFromNamedCurve returns the OID used to specify the use of the given elliptic curve.

func OidInExtensions

func OidInExtensions(oid asn1.ObjectIdentifier, extensions []pkix.Extension) (int, bool)

OidInExtensions checks whether the extension identified by oid is present in extensions and returns how many times it occurs together with an indication of whether any of them are marked critical.

Types

This section is empty.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL