Documentation
¶
Overview ¶
Package ocsp provides methods for checking the OCSP revocation status of a certificate chain, as well as errors related to these checks
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func CheckStatus ¶
func CheckStatus(opts Options) ([]*result.CertRevocationResult, error)
CheckStatus checks OCSP based on the passed options and returns an array of result.CertRevocationResult objects that contains the results and error. The length of this array will always be equal to the length of the certificate chain.
Types ¶
type GenericError ¶
type GenericError = ocsp.GenericError
GenericError is returned when there is an error during the OCSP revocation check, not necessarily a revocation
type NoServerError ¶
type NoServerError = ocsp.NoServerError
NoServerError is returned when the OCSPServer is not specified.
type Options ¶
type Options struct {
CertChain []*x509.Certificate
// CertChainPurpose is the purpose of the certificate chain. Supported
// values are CodeSigning and Timestamping.
// When not provided, the default value is CodeSigning.
CertChainPurpose purpose.Purpose
SigningTime time.Time
HTTPClient *http.Client
}
Options specifies values that are needed to check OCSP revocation
type RevokedError ¶
type RevokedError = ocsp.RevokedError
RevokedError is returned when the certificate's status for OCSP is ocsp.Revoked
type TimeoutError ¶
type TimeoutError = ocsp.TimeoutError
TimeoutError is returned when the connection attempt to an OCSP URL exceeds the specified threshold
type UnknownStatusError ¶
type UnknownStatusError = ocsp.UnknownStatusError
UnknownStatusError is returned when the certificate's status for OCSP is ocsp.Unknown
Source Files