ctl

package
v1.12.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Sep 14, 2022 License: Apache-2.0 Imports: 14 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func ContainsSCT 

func ContainsSCT(cert []byte) (bool, error)

ContainsSCT checks if the certificate contains embedded SCTs. cert can either be DER or PEM encoded.

func VerifyEmbeddedSCT 

func VerifyEmbeddedSCT(ctx context.Context, chain []*x509.Certificate) error

VerifyEmbeddedSCT verifies an embedded SCT in a certificate.

func VerifySCT 

func VerifySCT(ctx context.Context, certPEM, chainPEM, rawSCT []byte) error

VerifySCT verifies SCTs against the Fulcio CT log public key.

The SCT is a `Signed Certificate Timestamp`, which promises that the certificate issued by Fulcio was also added to the public CT log within some defined time period.

VerifySCT can verify an SCT list embedded in the certificate, or a detached SCT provided by Fulcio.

By default the public keys comes from TUF, but you can override this for test purposes by using an env variable `SIGSTORE_CT_LOG_PUBLIC_KEY_FILE`. If using an alternate, the file can be PEM, or DER format.

Types

This section is empty.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.