Certificate

quantcrypt::certificates

Struct Certificate 

Source 
pub struct Certificate { /* private fields */ }
Expand description

A certificate

§Example

use quantcrypt::certificates::Certificate;
use quantcrypt::is_ipd_mode_enabled;
let cert_path = if is_ipd_mode_enabled() {
   "test/data_ipd/MlDsa44EcdsaP256SHA256-2.16.840.1.114027.80.8.1.4_ta.pem"
} else {
  "test/data/MlDsa44EcdsaP256SHA256-2.16.840.1.114027.80.8.1.4_ta.pem"
};
let cert = Certificate::from_file(cert_path).unwrap();
assert!(cert.verify_self_signed().unwrap());

Implementations§

Source§

impl Certificate

Source

pub fn to_der(&self) -> Result<Vec<u8>, QuantCryptError>

Convert the certificate to DER format bytes

§Returns

The DER format bytes

Source

pub fn to_pem(&self) -> Result<String, QuantCryptError>

Convert the certificate to PEM format

§Returns

The PEM format certificate as a string

Source

pub fn from_der(der: &[u8]) -> Result<Certificate, QuantCryptError>

Create a certificate from DER format bytes

§Arguments
  • der - The DER format bytes
§Returns

The new certificate

§Errors

CertificateError::InvalidCertificate will be returned if the certificate is invalid

Source

pub fn from_pem(pem: &str) -> Result<Certificate, QuantCryptError>

Create a certificate from a PEM format string

§Arguments
  • pem - The PEM format string
§Returns

The new certificate

§Errors

CertificateError::InvalidCertificate will be returned if the certificate is invalid

Source

pub fn get_subject(&self) -> RdnSequence

Get the subject name

§Returns

The subject name

Source

pub fn get_issuer(&self) -> RdnSequence

Get the issuer name

§Returns

The issuer name

Source

pub fn get_serial_number(&self) -> SerialNumber

Get the serial number

§Returns

The serial number

Source

pub fn get_subject_key_identifier( &self, ) -> Result<SubjectKeyIdentifier, QuantCryptError>

Get the subject key identifier

§Returns

The subject key identifier

Source

pub fn verify_self_signed(&self) -> Result<bool, QuantCryptError>

Verify that the certificate is self-signed

§Returns

True if the certificate is self-signed, false otherwise

Source

pub fn get_public_key(&self) -> Result<PublicKey, QuantCryptError>

Get the public key

§Returns

The public key

Source

pub fn verify_child(&self, child: &Certificate) -> Result<bool, QuantCryptError>

Verify that the specified certificate is a child of this certificate.

This checks that the specified child certificate has the same issuer as this certificate’s subject, that the child’s Subject Key Identifier matches the Authority Key Identifier of this certificate, and that the child’s signature is valid.

§Arguments
  • child - The child certificate
§Returns

True if the child certificate is a child of this certificate, false otherwise

Source

pub fn from_file(path: &str) -> Result<Certificate, QuantCryptError>

Load a certificate from the specified file. The file can be in either DER or PEM format.

§Arguments
  • path - The path to the file
§Returns

The certificate

Source

pub fn to_der_file(&self, path: &str) -> Result<(), QuantCryptError>

Save the certificate to the specified file in DER format

§Arguments
  • path - The path to the file
Source

pub fn to_pem_file(&self, path: &str) -> Result<(), QuantCryptError>

Save the certificate to the specified file in PEM format

§Arguments
  • path - The path to the file
Source

pub fn is_identified_by(&self, rid: &RecipientIdentifier) -> bool

Check if this certificate is identified by the specified recipient identifier

This could match by either issuer and serial number or subject key identifier

§Arguments
  • rid - The recipient identifier
§Returns

True if the certificate is identified by the recipient identifier, false otherwise

Source

pub fn is_valid(&self) -> bool

Check if this certificate is valid

§Returns

True if the certificate is valid, false otherwise

Source

pub fn is_key_encipherment_enabled(&self) -> bool

Check if key encipherment is enabled

§Returns

True if key encipherment is enabled, false otherwise

Source

pub fn get_public_key_oid(&self) -> String

Get the OID of algorithm used for the public key

§Returns

The OID of the algorithm used for the public key

Source

pub fn get_signature_oid(&self) -> String

Get the OID of algorithm used for the signature

§Returns

The OID of the algorithm used for the signature

Source

pub fn get_public_key_oid_friendly_name(&self) -> String

Get the friendly name of the algorithm used for the public key

§Returns

The friendly name of the algorithm used for the public key

Trait Implementations§

Source§

impl Clone for Certificate

Source§

fn clone(&self) -> Certificate

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V