Struct rcgen::CertificateParams

source · []
#[non_exhaustive]
pub struct CertificateParams {
Show 14 fields
    pub alg: &'static SignatureAlgorithm,
    pub not_before: OffsetDateTime,
    pub not_after: OffsetDateTime,
    pub serial_number: Option<u64>,
    pub subject_alt_names: Vec<SanType>,
    pub distinguished_name: DistinguishedName,
    pub is_ca: IsCa,
    pub key_usages: Vec<KeyUsagePurpose>,
    pub extended_key_usages: Vec<ExtendedKeyUsagePurpose>,
    pub name_constraints: Option<NameConstraints>,
    pub custom_extensions: Vec<CustomExtension>,
    pub key_pair: Option<KeyPair>,
    pub use_authority_key_identifier_extension: bool,
    pub key_identifier_method: KeyIdMethod,

}
Expand description

Parameters used for certificate generation

Fields (Non-exhaustive)

This struct is marked as non-exhaustive
Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.
alg: &'static SignatureAlgorithmnot_before: OffsetDateTimenot_after: OffsetDateTimeserial_number: Option<u64>subject_alt_names: Vec<SanType>distinguished_name: DistinguishedNameis_ca: IsCakey_usages: Vec<KeyUsagePurpose>extended_key_usages: Vec<ExtendedKeyUsagePurpose>name_constraints: Option<NameConstraints>custom_extensions: Vec<CustomExtension>key_pair: Option<KeyPair>

The certificate’s key pair, a new random key pair will be generated if this is None

use_authority_key_identifier_extension: bool

If true (and not self-signed), the ‘Authority Key Identifier’ extension will be added to the generated cert

key_identifier_method: KeyIdMethod

Method to generate key identifiers from public keys

Defaults to SHA-256.

Implementations

Parses a ca certificate from the ASCII PEM format for signing

See from_ca_cert_der for more details.

This constructor is only available if rcgen is built with the “pem” and “x509-parser” features

Parses a ca certificate from the DER format for signing

This function is only of use if you have an existing ca certificate with which you want to sign a certificate newly generated by rcgen using the serialize_der_with_signer or serialize_pem_with_signer functions.

This function only extracts from the given ca cert the informations needed for signing. Any information beyond that is not extracted and left to defaults.

Will not check if certificate is a ca certificate!

This constructor is only available if rcgen is built with the “x509-parser” feature

Generate certificate parameters with reasonable defaults

Trait Implementations

Returns the “default value” for a type. Read more

Auto Trait Implementations

Blanket Implementations

Gets the TypeId of self. Read more

Immutably borrows from an owned value. Read more

Mutably borrows from an owned value. Read more

Returns the argument unchanged.

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

The type returned in the event of a conversion error.

Performs the conversion.

The type returned in the event of a conversion error.

Performs the conversion.