...

Package certverifier

import "github.com/google/s2a-go/internal/v2/certverifier"

Overview ▹

Overview ▾

Package certverifier offloads verifications to S2Av2.

Index ▹

Index ▾

func VerifyClientCertificateChain(verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, s2AStream stream.S2AStream) func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error

func VerifyServerCertificateChain(hostname string, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, s2AStream stream.S2AStream, serverAuthorizationPolicy []byte) func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error

Package files

certverifier.go

func VerifyClientCertificateChain ¶

func VerifyClientCertificateChain(verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, s2AStream stream.S2AStream) func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error

VerifyClientCertificateChain builds a SessionReq, sends it to S2Av2 and receives a SessionResp.

func VerifyServerCertificateChain ¶

func VerifyServerCertificateChain(hostname string, verificationMode s2av2pb.ValidatePeerCertificateChainReq_VerificationMode, s2AStream stream.S2AStream, serverAuthorizationPolicy []byte) func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error

VerifyServerCertificateChain builds a SessionReq, sends it to S2Av2 and receives a SessionResp.