Struct CrlStore

Source

pub struct CrlStore { /* private fields */ }

Expand description

An in-memory CRL (Certificate Revocation List) store.

For production deployments, the TLS layer should handle CRL/OCSP. This provides an application-layer defence-in-depth check against known-revoked serial numbers.

Implementations§

Source §

impl CrlStore

Source

pub fn new() -> Self

Create a new empty CRL store.

Source

pub fn add_revoked(&self, issuer_dn: &str, serial_hex: &str)

Mark a certificate serial number as revoked for a given issuer DN.

Source

pub fn check(&self, issuer_dn: &str, serial_hex: &str) -> RevocationStatus

Check if a certificate (by issuer DN and serial hex) is revoked.

Source

pub fn check_der(&self, cert_der: &[u8]) -> RevocationStatus

Check a DER-encoded certificate against the CRL store.

Source

pub fn revoked_count(&self) -> usize

Total count of revoked serial numbers across all issuers.

Source

pub fn clear_issuer(&self, issuer_dn: &str)

Remove all entries for an issuer.

Trait Implementations§

Source §

impl Clone for CrlStore

Source §

fn clone(&self) -> CrlStore

Returns a duplicate of the value. Read more

1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

Source §

impl Debug for CrlStore

Source §

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Source §

impl Default for CrlStore

Source §

fn default() -> CrlStore

Returns the “default value” for a type. Read more

Auto Trait Implementations§

§

impl UnwindSafe for CrlStore

Blanket Implementations§

Source §

impl<T> Any for T
where T: 'static + ?Sized,

Source §

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

Source §

impl<'a, T, E> AsTaggedExplicit<'a, E> for T
where T: 'a,

Source §

fn explicit(self, class: Class, tag: u32) -> TaggedParser<'a, Explicit, Self, E>

Source §

impl<'a, T, E> AsTaggedImplicit<'a, E> for T
where T: 'a,

Source §

fn implicit( self, class: Class, constructed: bool, tag: u32, ) -> TaggedParser<'a, Implicit, Self, E>

Source §

impl<T> Borrow<T> for T
where T: ?Sized,

Source §

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

Source §

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source §

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

Source §

impl<T> CloneToUninit for T
where T: Clone,

Source §

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

Source §

impl<T> From<T> for T

Source §

fn from(t: T) -> T

Returns the argument unchanged.

Source §

impl<T> FromRef<T> for T
where T: Clone,

Source §

fn from_ref(input: &T) -> T

Converts to this type from a reference to the input type.

Source §

impl<T> Instrument for T

Source §

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

Source §

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

Source §

impl<T, U> Into for T
where U: From<T>,

Source §

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source §

impl<T> IntoEither for T

Source §

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more

Source §

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more

Source §