Documentation ¶
Index ¶
- type Ocspmodule
- func (o *Ocspmodule) CheckResponse(ocspResponseBytes []byte, verifySignature bool) (string, error)
- func (o *Ocspmodule) CreateRequest(hexSerialNumber, issuerCertPath, hashAlgorithm string) ([]byte, error)
- func (o *Ocspmodule) ExtractSerialNumberAndOCSPURIFromCert(certPath string) (string, string, error)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Ocspmodule ¶
type Ocspmodule struct { }
func (*Ocspmodule) CheckResponse ¶
func (o *Ocspmodule) CheckResponse(ocspResponseBytes []byte, verifySignature bool) (string, error)
CheckOCSPResponse checks the OCSP response. signature verification fails in case custom ECC curves like brainpool are used. RSAPSS signatures aren't supported either. to workaround this set verifySignature to false
func (*Ocspmodule) CreateRequest ¶
func (o *Ocspmodule) CreateRequest(hexSerialNumber, issuerCertPath, hashAlgorithm string) ([]byte, error)
CreateOCSPRequest creates an OCSP request using the given hex serialNumber and issuer certificate path where the PEM encoded issuer certificate is placed into. this does not work with "exotic" ECC keys like brainpool
func (*Ocspmodule) ExtractSerialNumberAndOCSPURIFromCert ¶ added in v0.0.2
func (o *Ocspmodule) ExtractSerialNumberAndOCSPURIFromCert(certPath string) (string, string, error)
ExtractSerialNumberAndOCSPURIFromCert extracts the serialNumber and OCSP URI from a PEM encoded certificate the serialNumber is returned as HEX string this does not work with "exotic" ECC keys like brainpool