Function ctclient::internal::verify_dss

pub fn verify_dss(
    dss: &[u8], 
    pub_key: &PKey<Public>, 
    data: &[u8]
) -> Result<(), Error>

Verifies a TLS digitally-signed struct (see the TLS RFC for more info.)

This function is only useful to those who want to do some custom CT API calling. CTClient will automatically verify all signature.

Params

• dss: the DigitallySigned struct. Often returned as a base64 "signature" json field by the CT server. De-base64 yourself before calling.

• pub_key: use openssl::pkey::PKey::public_key_from_der to turn the key provided by google's ct log list into openssl key object.

• data: the stuff to verify against. Server should have signed this.