[−][src]Struct x509_signature::X509Certificate
A parsed (but not validated) X.509 version 3 certificate.
Methods
impl<'a> X509Certificate<'a>
[src]
pub fn das(&self) -> DataAlgorithmSignature<'a>
[src]
The tbsCertificate, signatureAlgorithm, and signature
pub fn serial(&self) -> &'a [u8]
[src]
The serial number. Big-endian and non-empty.
pub fn issuer(&self) -> &'a [u8]
[src]
X.509 issuer
pub fn not_before(&self) -> u64
[src]
The earliest time, in seconds since the Unix epoch, that the certificate is valid
pub fn not_after(&self) -> u64
[src]
The latest time, in seconds since the Unix epoch, that the certificate is valid
pub fn subject(&self) -> &'a [u8]
[src]
X.509 subject
pub fn subject_public_key_info(&self) -> SubjectPublicKeyInfo<'a>
[src]
The subjectPublicKeyInfo, in the format used by OpenSSL
pub fn extensions(&self) -> ExtensionIterator<'a>
[src]
An iterator over the certificate’s extensions
pub fn check_signature(
&self,
algorithm: SignatureScheme,
message: &[u8],
signature: &[u8]
) -> Result<(), Error>
[src]
&self,
algorithm: SignatureScheme,
message: &[u8],
signature: &[u8]
) -> Result<(), Error>
Verify a signature made by the certificate.
pub fn check_tls13_signature(
&self,
algorithm: SignatureScheme,
message: &[u8],
signature: &[u8]
) -> Result<(), Error>
[src]
&self,
algorithm: SignatureScheme,
message: &[u8],
signature: &[u8]
) -> Result<(), Error>
Verify a signature made by the certificate, applying the restrictions of TLSv1.3:
- ECDSA algorithms where the hash has a different size than the curve are not allowed.
- RSA PKCS1.5 signatures are not allowed.
pub fn check_tls12_signature(
&self,
algorithm: SignatureScheme,
message: &[u8],
signature: &[u8]
) -> Result<(), Error>
[src]
&self,
algorithm: SignatureScheme,
message: &[u8],
signature: &[u8]
) -> Result<(), Error>
Verify a signature made by the certificate, applying the restrictions of TLSv1.2:
- RSA-PSS signatures are not allowed.
pub fn valid(&self, now: u64) -> Result<(), Error>
[src]
Check that the certificate is valid at time now
pub fn tbs_certificate(&self) -> &[u8]
[src]
The tbsCertficate
pub fn signature_algorithm_id(&self) -> &[u8]
[src]
The AlgorithmId
of the algorithm used to sign this certificate
pub fn signature(&self) -> &[u8]
[src]
The signature of the certificate
pub fn check_signature_from(&self, cert: &X509Certificate) -> Result<(), Error>
[src]
Verify that cert
is signed by this certificate’s secret key
pub fn check_self_signature(&self) -> Result<(), Error>
[src]
Check that this certificate is self-signed.
Trait Implementations
Auto Trait Implementations
impl<'a> Send for X509Certificate<'a>
impl<'a> Sync for X509Certificate<'a>
impl<'a> Unpin for X509Certificate<'a>
Blanket Implementations
impl<T> Any for T where
T: 'static + ?Sized,
[src]
T: 'static + ?Sized,
impl<T> Borrow<T> for T where
T: ?Sized,
[src]
T: ?Sized,
impl<T> BorrowMut<T> for T where
T: ?Sized,
[src]
T: ?Sized,
fn borrow_mut(&mut self) -> &mut T
[src]
impl<T> From<T> for T
[src]
impl<T, U> Into<U> for T where
U: From<T>,
[src]
U: From<T>,
impl<T, U> TryFrom<U> for T where
U: Into<T>,
[src]
U: Into<T>,
type Error = Infallible
The type returned in the event of a conversion error.
fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>
[src]
impl<T, U> TryInto<U> for T where
U: TryFrom<T>,
[src]
U: TryFrom<T>,