Struct sequoia_openpgp::cert::amalgamation::key::ValidKeyAmalgamation [−][src]
pub struct ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy, { /* fields omitted */ }
Expand description
A KeyAmalgamation
plus a Policy
and a reference time.
In the same way that a ValidComponentAmalgamation
extends a
ComponentAmalgamation
, a ValidKeyAmalgamation
extends a
KeyAmalgamation
: a ValidKeyAmalgamation
combines a
KeyAmalgamation
, a Policy
, and a reference time. This
allows it to implement the ValidAmalgamation
trait, which
provides methods like ValidAmalgamation::binding_signature
that require a
Policy
and a reference time. Although KeyAmalgamation
could
implement these methods by requiring that the caller explicitly
pass them in, embedding them in the ValidKeyAmalgamation
helps
ensure that multipart operations, even those that span multiple
functions, use the same Policy
and reference time.
A ValidKeyAmalgamation
can be obtained by transforming a
KeyAmalgamation
using ValidateAmalgamation::with_policy
. A
KeyAmalgamationIter
can also be changed to yield
ValidKeyAmalgamation
s.
A ValidKeyAmalgamation
is guaranteed to come from a valid
certificate, and have a valid and live binding signature at the
specified reference time. Note: this only means that the binding
signatures are live; it says nothing about whether the
certificate or the Key
is live and non-revoked. If you care
about those things, you need to check them separately.
Examples:
Find all non-revoked, live, signing-capable keys:
use openpgp::policy::StandardPolicy; use openpgp::types::RevocationStatus; let p = &StandardPolicy::new(); // `with_policy` ensures that the certificate and any components // that it returns have valid *binding signatures*. But, we still // need to check that the certificate and `Key` are not revoked, // and live. // // Note: `ValidKeyAmalgamation::revocation_status`, etc. use the // embedded policy and timestamp. Even though we used `None` for // the timestamp (i.e., now), they are guaranteed to use the same // timestamp, because `with_policy` eagerly transforms it into // the current time. let cert = cert.with_policy(p, None)?; if let RevocationStatus::Revoked(_revs) = cert.revocation_status() { // Revoked by the certificate holder. (If we care about // designated revokers, then we need to check those // ourselves.) } else if let Err(_err) = cert.alive() { // Certificate was created in the future or is expired. } else { // `ValidCert::keys` returns `ValidKeyAmalgamation`s. for ka in cert.keys() { if let RevocationStatus::Revoked(_revs) = ka.revocation_status() { // Revoked by the key owner. (If we care about // designated revokers, then we need to check those // ourselves.) } else if let Err(_err) = ka.alive() { // Key was created in the future or is expired. } else if ! ka.for_signing() { // We're looking for a signing-capable key, skip this one. } else { // Use it! } } }
Implementations
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
pub fn parts_as_secret(
&'a self
) -> Result<&'a ValidSubordinateKeyAmalgamation<'a, SecretParts>>
[src]
pub fn parts_as_secret(
&'a self
) -> Result<&'a ValidSubordinateKeyAmalgamation<'a, SecretParts>>
[src]Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
pub fn parts_as_unspecified(
&'a self
) -> &ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]
pub fn parts_as_unspecified(
&'a self
) -> &ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s parts tag to UnspecifiedParts
.
impl<'a, P, R, R2> ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
Self: ValidAmalgamation<'a, Key<P, R>>,
Self: PrimaryKey<'a, P, R>,
[src]
impl<'a, P, R, R2> ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
Self: ValidAmalgamation<'a, Key<P, R>>,
Self: PrimaryKey<'a, P, R>,
[src]Returns whether the key is alive as of the amalgamation’s reference time.
A ValidKeyAmalgamation
is guaranteed to have a live binding
signature. This is independent of whether the component is
live.
If the certificate is not alive as of the reference time, no subkey can be alive.
This function considers both the binding signature and the direct key signature. Information in the binding signature takes precedence over the direct key signature. See Section 5.2.3.3 of RFC 4880.
For a definition of liveness, see the key_alive
method.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); let ka = cert.primary_key().with_policy(p, None)?; if let Err(_err) = ka.alive() { // Not alive. }
Returns the wrapped KeyAmalgamation
.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); let ka = cert.primary_key(); // `with_policy` takes ownership of `ka`. let vka = ka.with_policy(p, None)?; // And here we get it back: let ka = vka.into_key_amalgamation();
pub fn set_expiration_time(
&self,
primary_signer: &mut dyn Signer,
expiration: Option<SystemTime>
) -> Result<Vec<Signature>>
[src]
pub fn set_expiration_time(
&self,
primary_signer: &mut dyn Signer,
expiration: Option<SystemTime>
) -> Result<Vec<Signature>>
[src]Creates signatures that cause the key to expire at the specified time.
This function creates new binding signatures that cause the key to expire at the specified time when integrated into the certificate. For the primary key, it is necessary to create a new self-signature for each non-revoked User ID, and to create a direct key signature. This is needed, because the primary User ID is first consulted when determining the primary key’s expiration time, and certificates can be distributed with a possibly empty subset of User IDs.
Setting a key’s expiry time means updating an existing binding
signature—when looking up information, only one binding
signature is normally considered, and we don’t want to drop
the other information stored in the current binding signature.
This function uses the binding signature determined by
ValidKeyAmalgamation
’s policy and reference time for this.
Examples
use std::time; use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); let vc = cert.with_policy(p, None)?; // Assert that the primary key is not expired. assert!(vc.primary_key().alive().is_ok()); // Make the primary key expire in a week. let t = time::SystemTime::now() + time::Duration::from_secs(7 * 24 * 60 * 60); // We assume that the secret key material is available, and not // password protected. let mut signer = vc.primary_key() .key().clone().parts_into_secret()?.into_keypair()?; let sigs = vc.primary_key().set_expiration_time(&mut signer, Some(t))?; let cert = cert.insert_packets(sigs)?; // The primary key isn't expired yet. let vc = cert.with_policy(p, None)?; assert!(vc.primary_key().alive().is_ok()); // But in two weeks, it will be... let t = time::SystemTime::now() + time::Duration::from_secs(2 * 7 * 24 * 60 * 60); let vc = cert.with_policy(p, t)?; assert!(vc.primary_key().alive().is_err());
pub fn set_expiration_time(
&self,
primary_signer: &mut dyn Signer,
subkey_signer: Option<&mut dyn Signer>,
expiration: Option<SystemTime>
) -> Result<Vec<Signature>>
[src]
pub fn set_expiration_time(
&self,
primary_signer: &mut dyn Signer,
subkey_signer: Option<&mut dyn Signer>,
expiration: Option<SystemTime>
) -> Result<Vec<Signature>>
[src]Creates signatures that cause the key to expire at the specified time.
This function creates new binding signatures that cause the
key to expire at the specified time when integrated into the
certificate. For subkeys, a single Signature
is returned.
Setting a key’s expiry time means updating an existing binding
signature—when looking up information, only one binding
signature is normally considered, and we don’t want to drop
the other information stored in the current binding signature.
This function uses the binding signature determined by
ValidKeyAmalgamation
’s policy and reference time for this.
When updating the expiration time of signing-capable subkeys,
we need to create a new primary key binding signature.
Therefore, we need a signer for the subkey. If
subkey_signer
is None
, and this is a signing-capable
subkey, this function fails with Error::InvalidArgument
.
Likewise, this function fails if subkey_signer
is not None
when updating the expiration of an non signing-capable subkey.
Examples
use std::time; use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); let vc = cert.with_policy(p, None)?; // Assert that the keys are not expired. for ka in vc.keys() { assert!(ka.alive().is_ok()); } // Make the keys expire in a week. let t = time::SystemTime::now() + time::Duration::from_secs(7 * 24 * 60 * 60); // We assume that the secret key material is available, and not // password protected. let mut primary_signer = vc.primary_key() .key().clone().parts_into_secret()?.into_keypair()?; let mut signing_subkey_signer = vc.keys().for_signing().nth(0).unwrap() .key().clone().parts_into_secret()?.into_keypair()?; let mut sigs = Vec::new(); for ka in vc.keys() { if ! ka.for_signing() { // Non-signing-capable subkeys are easy to update. sigs.append(&mut ka.set_expiration_time(&mut primary_signer, None, Some(t))?); } else { // Signing-capable subkeys need to create a primary // key binding signature with the subkey: assert!(ka.set_expiration_time(&mut primary_signer, None, Some(t)).is_err()); // Here, we need the subkey's signer: sigs.append(&mut ka.set_expiration_time(&mut primary_signer, Some(&mut signing_subkey_signer), Some(t))?); } } let cert = cert.insert_packets(sigs)?; // They aren't expired yet. let vc = cert.with_policy(p, None)?; for ka in vc.keys() { assert!(ka.alive().is_ok()); } // But in two weeks, they will be... let t = time::SystemTime::now() + time::Duration::from_secs(2 * 7 * 24 * 60 * 60); let vc = cert.with_policy(p, t)?; for ka in vc.keys() { assert!(ka.alive().is_err()); }
pub fn set_expiration_time(
&self,
primary_signer: &mut dyn Signer,
subkey_signer: Option<&mut dyn Signer>,
expiration: Option<SystemTime>
) -> Result<Vec<Signature>>
[src]
pub fn set_expiration_time(
&self,
primary_signer: &mut dyn Signer,
subkey_signer: Option<&mut dyn Signer>,
expiration: Option<SystemTime>
) -> Result<Vec<Signature>>
[src]Creates signatures that cause the key to expire at the specified time.
This function creates new binding signatures that cause the
key to expire at the specified time when integrated into the
certificate. For subkeys, only a single Signature
is
returned. For the primary key, however, it is necessary to
create a new self-signature for each non-revoked User ID, and
to create a direct key signature. This is needed, because the
primary User ID is first consulted when determining the
primary key’s expiration time, and certificates can be
distributed with a possibly empty subset of User IDs.
Setting a key’s expiry time means updating an existing binding
signature—when looking up information, only one binding
signature is normally considered, and we don’t want to drop
the other information stored in the current binding signature.
This function uses the binding signature determined by
ValidKeyAmalgamation
’s policy and reference time for this.
When updating the expiration time of signing-capable subkeys,
we need to create a new primary key binding signature.
Therefore, we need a signer for the subkey. If
subkey_signer
is None
, and this is a signing-capable
subkey, this function fails with Error::InvalidArgument
.
Likewise, this function fails if subkey_signer
is not None
when updating the expiration of the primary key, or an non
signing-capable subkey.
Examples
use std::time; use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); let vc = cert.with_policy(p, None)?; // Assert that the keys are not expired. for ka in vc.keys() { assert!(ka.alive().is_ok()); } // Make the keys expire in a week. let t = time::SystemTime::now() + time::Duration::from_secs(7 * 24 * 60 * 60); // We assume that the secret key material is available, and not // password protected. let mut primary_signer = vc.primary_key() .key().clone().parts_into_secret()?.into_keypair()?; let mut signing_subkey_signer = vc.keys().for_signing().nth(0).unwrap() .key().clone().parts_into_secret()?.into_keypair()?; let mut sigs = Vec::new(); for ka in vc.keys() { if ! ka.for_signing() { // Non-signing-capable subkeys are easy to update. sigs.append(&mut ka.set_expiration_time(&mut primary_signer, None, Some(t))?); } else { // Signing-capable subkeys need to create a primary // key binding signature with the subkey: assert!(ka.set_expiration_time(&mut primary_signer, None, Some(t)).is_err()); // Here, we need the subkey's signer: sigs.append(&mut ka.set_expiration_time(&mut primary_signer, Some(&mut signing_subkey_signer), Some(t))?); } } let cert = cert.insert_packets(sigs)?; // They aren't expired yet. let vc = cert.with_policy(p, None)?; for ka in vc.keys() { assert!(ka.alive().is_ok()); } // But in two weeks, they will be... let t = time::SystemTime::now() + time::Duration::from_secs(2 * 7 * 24 * 60 * 60); let vc = cert.with_policy(p, t)?; for ka in vc.keys() { assert!(ka.alive().is_err()); }
impl<'a, P, R, R2> ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
Self: ValidAmalgamation<'a, Key<P, R>>,
[src]
impl<'a, P, R, R2> ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
Self: ValidAmalgamation<'a, Key<P, R>>,
[src]Returns the key’s Key Flags
.
A Key’s Key Flags
holds information about the key. As of
RFC 4880, this information is primarily concerned with the
key’s capabilities (e.g., whether it may be used for signing).
The other information that has been defined is: whether the
key has been split using something like SSS, and whether the
primary key material is held by multiple parties. In
practice, the latter two flags are ignored.
As per Section 5.2.3.3 of RFC 4880, when looking for the
Key Flags
, the key’s binding signature is first consulted
(in the case of the primary Key, this is the binding signature
of the primary User ID). If the Key Flags
subpacket is not
present, then the direct key signature is consulted.
Since the key flags are taken from the active self signature, a key’s flags may change depending on the policy and the reference time.
Examples
let ka = cert.primary_key(); println!("Primary Key's Key Flags: {:?}", ka.key_flags());
Returns whether the key has at least one of the specified key flags.
The key flags are looked up as described in
ValidKeyAmalgamation::key_flags
.
Examples
Finds keys that may be used for transport encryption (data in motion) or storage encryption (data at rest):
use openpgp::policy::StandardPolicy; use openpgp::types::KeyFlags; let p = &StandardPolicy::new(); for ka in cert.keys().with_policy(p, None) { if ka.has_any_key_flag(KeyFlags::empty() .set_storage_encryption() .set_transport_encryption()) { // `ka` is encryption capable. } }
Returns whether the key is certification capable.
Note: Section 12.1 of RFC 4880 says that the primary key is
certification capable independent of the Key Flags
subpacket:
In a V4 key, the primary key MUST be a key capable of certification.
This function only reflects what is stored in the Key Flags
packet; it does not implicitly set this flag. In practice,
there are keys whose primary key’s Key Flags
do not have the
certification capable flag set. Some versions of netpgp, for
instance, create keys like this. Sequoia’s higher-level
functionality correctly handles these keys by always
considering the primary key to be certification capable.
Users of this interface should too.
The key flags are looked up as described in
ValidKeyAmalgamation::key_flags
.
Examples
Finds keys that are certification capable:
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for ka in cert.keys().with_policy(p, None) { if ka.primary() || ka.for_certification() { // `ka` is certification capable. } }
Returns whether the key is signing capable.
The key flags are looked up as described in
ValidKeyAmalgamation::key_flags
.
Examples
Finds keys that are signing capable:
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for ka in cert.keys().with_policy(p, None) { if ka.for_signing() { // `ka` is signing capable. } }
Returns whether the key is authentication capable.
The key flags are looked up as described in
ValidKeyAmalgamation::key_flags
.
Examples
Finds keys that are authentication capable:
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for ka in cert.keys().with_policy(p, None) { if ka.for_authentication() { // `ka` is authentication capable. } }
Returns whether the key is storage-encryption capable.
OpenPGP distinguishes two types of encryption keys: those for storage (data at rest) and those for transport (data in transit). Most OpenPGP implementations, however, don’t distinguish between them in practice. Instead, when they create a new encryption key, they just set both flags. Likewise, when encrypting a message, it is not typically possible to indicate the type of protection that is needed. Sequoia supports creating keys with only one of these flags set, and makes it easy to select the right type of key when encrypting messages.
The key flags are looked up as described in
ValidKeyAmalgamation::key_flags
.
Examples
Finds keys that are storage-encryption capable:
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for ka in cert.keys().with_policy(p, None) { if ka.for_storage_encryption() { // `ka` is storage-encryption capable. } }
Returns whether the key is transport-encryption capable.
OpenPGP distinguishes two types of encryption keys: those for storage (data at rest) and those for transport (data in transit). Most OpenPGP implementations, however, don’t distinguish between them in practice. Instead, when they create a new encryption key, they just set both flags. Likewise, when encrypting a message, it is not typically possible to indicate the type of protection that is needed. Sequoia supports creating keys with only one of these flags set, and makes it easy to select the right type of key when encrypting messages.
The key flags are looked up as described in
ValidKeyAmalgamation::key_flags
.
Examples
Finds keys that are transport-encryption capable:
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for ka in cert.keys().with_policy(p, None) { if ka.for_transport_encryption() { // `ka` is transport-encryption capable. } }
Returns how long the key is live.
This returns how long the key is live relative to its creation
time. Use ValidKeyAmalgamation::key_expiration_time
to
get the key’s absolute expiry time.
This function considers both the binding signature and the direct key signature. Information in the binding signature takes precedence over the direct key signature. See Section 5.2.3.3 of RFC 4880.
Examples
use std::time; use std::convert::TryInto; use openpgp::policy::StandardPolicy; use openpgp::types::Timestamp; let p = &StandardPolicy::new(); // OpenPGP Timestamps have a one-second resolution. Since we // want to round trip the time, round it down. let now: Timestamp = time::SystemTime::now().try_into()?; let now: time::SystemTime = now.try_into()?; let a_week = time::Duration::from_secs(7 * 24 * 60 * 60); let (cert, _) = CertBuilder::general_purpose(None, Some("alice@example.org")) .set_creation_time(now) .set_validity_period(a_week) .generate()?; assert_eq!(cert.primary_key().with_policy(p, None)?.key_validity_period(), Some(a_week));
Returns the key’s expiration time.
If this function returns None
, the key does not expire.
This returns the key’s expiration time. Use
ValidKeyAmalgamation::key_validity_period
to get the
duration of the key’s lifetime.
This function considers both the binding signature and the direct key signature. Information in the binding signature takes precedence over the direct key signature. See Section 5.2.3.3 of RFC 4880.
Examples
use std::time; use std::convert::TryInto; use openpgp::policy::StandardPolicy; use openpgp::types::Timestamp; let p = &StandardPolicy::new(); // OpenPGP Timestamps have a one-second resolution. Since we // want to round trip the time, round it down. let now: Timestamp = time::SystemTime::now().try_into()?; let now: time::SystemTime = now.try_into()?; let a_week = time::Duration::from_secs(7 * 24 * 60 * 60); let a_week_later = now + a_week; let (cert, _) = CertBuilder::general_purpose(None, Some("alice@example.org")) .set_creation_time(now) .set_validity_period(a_week) .generate()?; assert_eq!(cert.primary_key().with_policy(p, None)?.key_expiration_time(), Some(a_week_later));
Methods from Deref<Target = KeyAmalgamation<'a, P, R, R2>>
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Returns the KeyAmalgamation
’s ComponentAmalgamation
.
Methods from Deref<Target = ComponentAmalgamation<'a, Key<P, R>>>
Changes the key’s parts tag to PublicParts
.
pub fn parts_as_secret(
&'a self
) -> Result<&'a ComponentAmalgamation<'a, Key<SecretParts, R>>>
[src]
pub fn parts_as_secret(
&'a self
) -> Result<&'a ComponentAmalgamation<'a, Key<SecretParts, R>>>
[src]Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s role tag to PrimaryRole
.
pub fn role_as_subordinate(
&'a self
) -> &'a ComponentAmalgamation<'a, Key<P, SubordinateRole>>
[src]
pub fn role_as_subordinate(
&'a self
) -> &'a ComponentAmalgamation<'a, Key<P, SubordinateRole>>
[src]Changes the key’s role tag to SubordinateRole
.
pub fn role_as_unspecified(
&'a self
) -> &'a ComponentAmalgamation<'a, Key<P, UnspecifiedRole>>
[src]
pub fn role_as_unspecified(
&'a self
) -> &'a ComponentAmalgamation<'a, Key<P, UnspecifiedRole>>
[src]Changes the key’s role tag to UnspecifiedRole
.
Returns the component’s associated certificate.
for u in cert.userids() { // It's not only an identical `Cert`, it's the same one. assert!(std::ptr::eq(u.cert(), &cert)); }
Returns this amalgamation’s bundle.
Note: although ComponentAmalgamation
derefs to a
&ComponentBundle
, this method provides a more accurate
lifetime, which is helpful when returning the reference from a
function. See the module’s documentation for more details.
Examples
use openpgp::cert::prelude::*; use openpgp::packet::prelude::*; cert.userids() .map(|ua| { // The following doesn't work: // // let b: &ComponentBundle<_> = &ua; b // // Because ua's lifetime is this closure and autoderef // assigns `b` the same lifetime as `ua`. `bundle()`, // however, returns a reference whose lifetime is that // of `cert`. ua.bundle() }) .collect::<Vec<&ComponentBundle<_>>>();
Returns this amalgamation’s component.
Note: although ComponentAmalgamation
derefs to a
&Component
(via &ComponentBundle
), this method provides a
more accurate lifetime, which is helpful when returning the
reference from a function. See the module’s documentation
for more details.
The component’s self-signatures.
The component’s third-party certifications.
The component’s revocations that were issued by the certificate holder.
The component’s revocations that were issued by other certificates.
Returns a reference to the User ID.
Note: although ComponentAmalgamation<UserID>
derefs to a
&UserID
(via &ComponentBundle
), this method provides a
more accurate lifetime, which is helpful when returning the
reference from a function. See the module’s documentation
for more details.
pub fn attest_certifications<C, S>(
&self,
policy: &dyn Policy,
primary_signer: &mut dyn Signer,
certifications: C
) -> Result<Vec<Signature>> where
C: IntoIterator<Item = S>,
S: Borrow<Signature>,
[src]
pub fn attest_certifications<C, S>(
&self,
policy: &dyn Policy,
primary_signer: &mut dyn Signer,
certifications: C
) -> Result<Vec<Signature>> where
C: IntoIterator<Item = S>,
S: Borrow<Signature>,
[src]Attests to third-party certifications.
This feature is experimental.
Allows the certificate owner to attest to third party certifications. See Section 5.2.3.30 of RFC 4880bis for details. This can be used to address certificate flooding concerns.
A policy is needed, because the expiration is updated by updating the current binding signatures.
Examples
let (alice, _) = CertBuilder::new() .add_userid("alice@example.org") .generate()?; let mut alice_signer = alice.primary_key().key().clone().parts_into_secret()? .into_keypair()?; let (bob, _) = CertBuilder::new() .add_userid("bob@example.org") .generate()?; let mut bob_signer = bob.primary_key().key().clone().parts_into_secret()? .into_keypair()?; let bob_pristine = bob.clone(); // Have Alice certify the binding between "bob@example.org" and // Bob's key. let alice_certifies_bob = bob.userids().next().unwrap().userid().bind( &mut alice_signer, &bob, SignatureBuilder::new(SignatureType::GenericCertification))?; let bob = bob.insert_packets(vec![alice_certifies_bob.clone()])?; // Have Bob attest that certification. let bobs_uid = bob.userids().next().unwrap(); let attestations = bobs_uid.attest_certifications( policy, &mut bob_signer, bobs_uid.certifications())?; let bob = bob.insert_packets(attestations)?; assert_eq!(bob.bad_signatures().count(), 0); assert_eq!(bob.userids().next().unwrap().certifications().next(), Some(&alice_certifies_bob));
Returns a reference to the User Attribute.
Note: although ComponentAmalgamation<UserAttribute>
derefs
to a &UserAttribute
(via &ComponentBundle
), this method
provides a more accurate lifetime, which is helpful when
returning the reference from a function. See the module’s
documentation for more details.
pub fn attest_certifications<C, S>(
&self,
policy: &dyn Policy,
primary_signer: &mut dyn Signer,
certifications: C
) -> Result<Vec<Signature>> where
C: IntoIterator<Item = S>,
S: Borrow<Signature>,
[src]
pub fn attest_certifications<C, S>(
&self,
policy: &dyn Policy,
primary_signer: &mut dyn Signer,
certifications: C
) -> Result<Vec<Signature>> where
C: IntoIterator<Item = S>,
S: Borrow<Signature>,
[src]Attests to third-party certifications.
This feature is experimental.
Allows the certificate owner to attest to third party certifications. See Section 5.2.3.30 of RFC 4880bis for details. This can be used to address certificate flooding concerns.
A policy is needed, because the expiration is updated by updating the current binding signatures.
Examples
Methods from Deref<Target = ComponentBundle<C>>
Changes the key’s parts tag to PublicParts
.
Changes the key’s parts tag to SecretParts
.
Changes the key’s parts tag to UnspecifiedParts
.
Changes the key’s role tag to PrimaryRole
.
Changes the key’s role tag to SubordinateRole
.
Changes the key’s role tag to UnspecifiedRole
.
Returns a reference to the bundle’s component.
Examples
// Display some information about any unknown components. for u in cert.unknowns() { eprintln!(" - {:?}", u.component()); }
pub fn binding_signature<T>(
&self,
policy: &dyn Policy,
t: T
) -> Result<&Signature> where
T: Into<Option<SystemTime>>,
[src]
pub fn binding_signature<T>(
&self,
policy: &dyn Policy,
t: T
) -> Result<&Signature> where
T: Into<Option<SystemTime>>,
[src]Returns the active binding signature at time t
.
The active binding signature is the most recent, non-revoked
self-signature that is valid according to the policy
and
alive at time t
(creation time <= t
, t < expiry
). If
there are multiple such signatures then the signatures are
ordered by their MPIs interpreted as byte strings.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); // Display information about each User ID's current active // binding signature (the `time` parameter is `None`), if any. for ua in cert.userids() { eprintln!("{:?}", ua.binding_signature(p, None)); }
Returns the component’s self-signatures.
The signatures are validated, and they are sorted by their creation time, most recent first.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for (i, ka) in cert.keys().enumerate() { eprintln!("Key #{} ({}) has {:?} self signatures", i, ka.fingerprint(), ka.bundle().self_signatures().len()); }
Returns the component’s third-party certifications.
The signatures are not validated. They are sorted by their creation time, most recent first.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for ua in cert.userids() { eprintln!("User ID {} has {:?} unverified, third-party certifications", String::from_utf8_lossy(ua.userid().value()), ua.bundle().certifications().len()); }
Returns the component’s revocations that were issued by the certificate holder.
The revocations are validated, and they are sorted by their creation time, most recent first.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for u in cert.userids() { eprintln!("User ID {} has {:?} revocation certificates.", String::from_utf8_lossy(u.userid().value()), u.bundle().self_revocations().len()); }
Returns the component’s revocations that were issued by other certificates.
The revocations are not validated. They are sorted by their creation time, most recent first.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for u in cert.userids() { eprintln!("User ID {} has {:?} unverified, third-party revocation certificates.", String::from_utf8_lossy(u.userid().value()), u.bundle().other_revocations().len()); }
Returns all of the component’s Attestation Key Signatures.
This feature is experimental.
The signatures are validated, and they are sorted by their creation time, most recent first.
A certificate owner can use Attestation Key Signatures to attest to third party certifications. Currently, only userid and user attribute certifications can be attested. See Section 5.2.3.30 of RFC 4880bis for details.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for (i, uid) in cert.userids().enumerate() { eprintln!("UserID #{} ({:?}) has {:?} attestation key signatures", i, uid.email(), uid.attestations().count()); }
Returns all of the component’s signatures.
Only the self-signatures are validated. The signatures are sorted first by type, then by creation time. The self revocations come first, then the self signatures, then any key attestation signatures, certifications, and third-party revocations coming last. This function may return additional types of signatures that could be associated to this component.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); for (i, ka) in cert.keys().enumerate() { eprintln!("Key #{} ({}) has {:?} signatures", i, ka.fingerprint(), ka.signatures().count()); }
Returns a reference to the key.
This is just a type-specific alias for
ComponentBundle::component
.
Examples
// Display some information about the keys. for ka in cert.keys() { eprintln!(" - {:?}", ka.key()); }
pub fn revocation_status<T>(
&self,
policy: &dyn Policy,
t: T
) -> RevocationStatus<'_> where
T: Into<Option<SystemTime>>,
[src]
pub fn revocation_status<T>(
&self,
policy: &dyn Policy,
t: T
) -> RevocationStatus<'_> where
T: Into<Option<SystemTime>>,
[src]Returns the subkey’s revocation status at time t
.
A subkey is revoked at time t
if:
-
There is a live revocation at time
t
that is newer than all live self signatures at timet
, or -
There is a hard revocation (even if it is not live at time
t
, and even if there is a newer self-signature).
Note: Certs and subkeys have different criteria from User IDs and User Attributes.
Note: this only returns whether this subkey is revoked; it does not imply anything about the Cert or other components.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); // Display the subkeys' revocation status. for ka in cert.keys().subkeys() { eprintln!(" Revocation status of {}: {:?}", ka.fingerprint(), ka.revocation_status(p, None)); }
Returns a reference to the User ID.
This is just a type-specific alias for
ComponentBundle::component
.
Examples
// Display some information about the User IDs. for ua in cert.userids() { eprintln!(" - {:?}", ua.userid()); }
pub fn revocation_status<T>(
&self,
policy: &dyn Policy,
t: T
) -> RevocationStatus<'_> where
T: Into<Option<SystemTime>>,
[src]
pub fn revocation_status<T>(
&self,
policy: &dyn Policy,
t: T
) -> RevocationStatus<'_> where
T: Into<Option<SystemTime>>,
[src]Returns the User ID’s revocation status at time t
.
A User ID is revoked at time t
if:
- There is a live revocation at time
t
that is newer than all live self signatures at timet
.
Note: Certs and subkeys have different criteria from User IDs and User Attributes.
Note: this only returns whether this User ID is revoked; it does not imply anything about the Cert or other components.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); // Display the User IDs' revocation status. for ua in cert.userids() { eprintln!(" Revocation status of {}: {:?}", String::from_utf8_lossy(ua.userid().value()), ua.revocation_status(p, None)); }
Returns a reference to the User Attribute.
This is just a type-specific alias for
ComponentBundle::component
.
Examples
// Display some information about the User Attributes for ua in cert.user_attributes() { eprintln!(" - {:?}", ua.user_attribute()); }
pub fn revocation_status<T>(
&self,
policy: &dyn Policy,
t: T
) -> RevocationStatus<'_> where
T: Into<Option<SystemTime>>,
[src]
pub fn revocation_status<T>(
&self,
policy: &dyn Policy,
t: T
) -> RevocationStatus<'_> where
T: Into<Option<SystemTime>>,
[src]Returns the User Attribute’s revocation status at time t
.
A User Attribute is revoked at time t
if:
- There is a live revocation at time
t
that is newer than all live self signatures at timet
.
Note: Certs and subkeys have different criteria from User IDs and User Attributes.
Note: this only returns whether this User Attribute is revoked; it does not imply anything about the Cert or other components.
Examples
use openpgp::policy::StandardPolicy; let p = &StandardPolicy::new(); // Display the User Attributes' revocation status. for (i, ua) in cert.user_attributes().enumerate() { eprintln!(" Revocation status of User Attribute #{}: {:?}", i, ua.revocation_status(p, None)); }
Returns a reference to the unknown component.
This is just a type-specific alias for
ComponentBundle::component
.
Examples
// Display some information about the User Attributes for u in cert.unknowns() { eprintln!(" - {:?}", u.unknown()); }
Trait Implementations
type Target = KeyAmalgamation<'a, P, R, R2>
type Target = KeyAmalgamation<'a, P, R, R2>
The resulting type after dereferencing.
impl<'a, P: 'a + KeyParts> From<&'_ ValidKeyAmalgamation<'a, P, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]
impl<'a, P: 'a + KeyParts> From<&'_ ValidKeyAmalgamation<'a, P, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]Performs the conversion.
impl<'a, P: 'a + KeyParts> From<&'_ ValidKeyAmalgamation<'a, P, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]
impl<'a, P: 'a + KeyParts> From<&'_ ValidKeyAmalgamation<'a, P, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'_ ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'_ ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a, P: 'a + KeyParts> From<ValidKeyAmalgamation<'a, P, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]
impl<'a, P: 'a + KeyParts> From<ValidKeyAmalgamation<'a, P, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]Performs the conversion.
impl<'a, P, R, R2> From<ValidKeyAmalgamation<'a, P, R, R2>> for KeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
[src]
impl<'a, P, R, R2> From<ValidKeyAmalgamation<'a, P, R, R2>> for KeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
[src]Performs the conversion.
Performs the conversion.
impl<'a, P: 'a + KeyParts> From<ValidKeyAmalgamation<'a, P, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]
impl<'a, P: 'a + KeyParts> From<ValidKeyAmalgamation<'a, P, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, P>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, SecretParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, UnspecifiedParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]
impl<'a> From<ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, PublicParts>
[src]Performs the conversion.
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for &'a ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for &'a ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<&'a ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for &'a ValidErasedKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a, P, P2> TryFrom<ValidKeyAmalgamation<'a, P, UnspecifiedRole, bool>> for ValidPrimaryKeyAmalgamation<'a, P2> where
P: 'a + KeyParts,
P2: 'a + KeyParts,
[src]
impl<'a, P, P2> TryFrom<ValidKeyAmalgamation<'a, P, UnspecifiedRole, bool>> for ValidPrimaryKeyAmalgamation<'a, P2> where
P: 'a + KeyParts,
P2: 'a + KeyParts,
[src]impl<'a, P, P2> TryFrom<ValidKeyAmalgamation<'a, P, UnspecifiedRole, bool>> for ValidSubordinateKeyAmalgamation<'a, P2> where
P: 'a + KeyParts,
P2: 'a + KeyParts,
[src]
impl<'a, P, P2> TryFrom<ValidKeyAmalgamation<'a, P, UnspecifiedRole, bool>> for ValidSubordinateKeyAmalgamation<'a, P2> where
P: 'a + KeyParts,
P2: 'a + KeyParts,
[src]impl<'a> TryFrom<ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<ValidKeyAmalgamation<'a, PublicParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<ValidKeyAmalgamation<'a, PublicParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<ValidKeyAmalgamation<'a, PublicParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<ValidKeyAmalgamation<'a, UnspecifiedParts, PrimaryRole, ()>> for ValidPrimaryKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<ValidKeyAmalgamation<'a, UnspecifiedParts, SubordinateRole, ()>> for ValidSubordinateKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a> TryFrom<ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, SecretParts>
[src]
impl<'a> TryFrom<ValidKeyAmalgamation<'a, UnspecifiedParts, UnspecifiedRole, bool>> for ValidErasedKeyAmalgamation<'a, SecretParts>
[src]Performs the conversion.
impl<'a, P, R, R2> ValidAmalgamation<'a, Key<P, R>> for ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
Self: PrimaryKey<'a, P, R>,
[src]
impl<'a, P, R, R2> ValidAmalgamation<'a, Key<P, R>> for ValidKeyAmalgamation<'a, P, R, R2> where
P: 'a + KeyParts,
R: 'a + KeyRole,
R2: Copy,
Self: PrimaryKey<'a, P, R>,
[src]Returns the valid amalgamation’s associated certificate. Read more
Returns the amalgamation’s reference time. Read more
Returns the component’s binding signature as of the reference time. Read more
Returns the component’s revocation status as of the amalgamation’s reference time. Read more
Maps the given function over binding and direct key signature. Read more
Returns the certificate’s direct key signature as of the reference time, if any. Read more
Auto Trait Implementations
impl<'a, P, R, R2> !RefUnwindSafe for ValidKeyAmalgamation<'a, P, R, R2>
impl<'a, P, R, R2> Send for ValidKeyAmalgamation<'a, P, R, R2> where
P: Sync,
R: Sync,
R2: Send,
impl<'a, P, R, R2> Sync for ValidKeyAmalgamation<'a, P, R, R2> where
P: Sync,
R: Sync,
R2: Sync,
impl<'a, P, R, R2> Unpin for ValidKeyAmalgamation<'a, P, R, R2> where
R2: Unpin,
impl<'a, P, R, R2> !UnwindSafe for ValidKeyAmalgamation<'a, P, R, R2>
Blanket Implementations
Mutably borrows from an owned value. Read more
type Output = T
type Output = T
Should always be Self