References: crypto/x509.Certificate

type crypto/x509.Certificate

88 uses

	crypto/x509 (current package)
		cert_pool.go#L55: 	getCert func() (*Certificate, error)
		cert_pool.go#L76: func (s *CertPool) cert(n int) (*Certificate, error) {
		cert_pool.go#L121: func (s *CertPool) findPotentialParents(cert *Certificate) []*Certificate {
		cert_pool.go#L132: 	var matchingKeyID, oneKeyID, mismatchKeyID []*Certificate
		cert_pool.go#L154: 	candidates := make([]*Certificate, 0, found)
		cert_pool.go#L161: func (s *CertPool) contains(cert *Certificate) bool {
		cert_pool.go#L169: func (s *CertPool) AddCert(cert *Certificate) {
		cert_pool.go#L173: 	s.addCertFunc(sha256.Sum224(cert.Raw), string(cert.RawSubject), func() (*Certificate, error) {
		cert_pool.go#L183: func (s *CertPool) addCertFunc(rawSum224 sum224, rawSubject string, getCert func() (*Certificate, error)) {
		cert_pool.go#L225: 			v *Certificate
		cert_pool.go#L227: 		s.addCertFunc(sha256.Sum224(cert.Raw), string(cert.RawSubject), func() (*Certificate, error) {
		notboring.go#L9: func boringAllowCert(c *Certificate) bool { return true }
		parser.go#L483: func parseNameConstraintsExtension(out *Certificate, e pkix.Extension) (unhandled bool, err error) {
		parser.go#L643: func processExtensions(out *Certificate) error {
		parser.go#L800: func parseCertificate(der []byte) (*Certificate, error) {
		parser.go#L801: 	cert := &Certificate{}
		parser.go#L984: func ParseCertificate(der []byte) (*Certificate, error) {
		parser.go#L997: func ParseCertificates(der []byte) ([]*Certificate, error) {
		parser.go#L998: 	var certs []*Certificate
		root_unix.go#L28: func (c *Certificate) systemVerify(opts *VerifyOptions) (chains [][]*Certificate, err error) {
		verify.go#L64: 	Cert   *Certificate
		verify.go#L96: 	Certificate *Certificate
		verify.go#L131: 	Cert *Certificate
		verify.go#L137: 	hintCert *Certificate
		verify.go#L501: func (c *Certificate) checkNameConstraints(count *int,
		verify.go#L558: func (c *Certificate) isValid(certType int, currentChain []*Certificate, opts *VerifyOptions) error {
		verify.go#L602: 		toCheck := []*Certificate{}
		verify.go#L748: func (c *Certificate) Verify(opts VerifyOptions) (chains [][]*Certificate, err error) {
		verify.go#L802: 	var candidateChains [][]*Certificate
		verify.go#L804: 		candidateChains = [][]*Certificate{{c}}
		verify.go#L806: 		candidateChains, err = c.buildChains([]*Certificate{c}, nil, &opts)
		verify.go#L824: 	chains = make([][]*Certificate, 0, len(candidateChains))
		verify.go#L838: func appendToFreshChain(chain []*Certificate, cert *Certificate) []*Certificate {
		verify.go#L839: 	n := make([]*Certificate, len(chain)+1)
		verify.go#L850: func alreadyInChain(candidate *Certificate, chain []*Certificate) bool {
		verify.go#L895: func (c *Certificate) buildChains(currentChain []*Certificate, sigChecks *int, opts *VerifyOptions) (chains [][]*Certificate, err error) {
		verify.go#L898: 		hintCert *Certificate
		verify.go#L901: 	considerCandidate := func(certType int, candidate *Certificate) {
		verify.go#L936: 			var childChains [][]*Certificate
		verify.go#L1084: func (c *Certificate) VerifyHostname(h string) error {
		verify.go#L1124: func checkChainForKeyUsage(chain []*Certificate, keyUsages []ExtKeyUsage) bool {
		x509.go#L677: type Certificate struct {
		x509.go#L807: func (c *Certificate) Equal(other *Certificate) bool {
		x509.go#L814: func (c *Certificate) hasSANExtension() bool {
		x509.go#L822: func (c *Certificate) CheckSignatureFrom(parent *Certificate) error {
		x509.go#L851: func (c *Certificate) CheckSignature(algo SignatureAlgorithm, signed, signature []byte) error {
		x509.go#L855: func (c *Certificate) hasNameConstraints() bool {
		x509.go#L859: func (c *Certificate) getSANExtension() []byte {
		x509.go#L945: func (c *Certificate) CheckCRLSignature(crl *pkix.CertificateList) error {
		x509.go#L1095: func buildCertExtensions(template *Certificate, subjectIsEmpty bool, authorityKeyId []byte, subjectKeyId []byte) (ret []pkix.Extension, err error) {
		x509.go#L1397: func subjectBytes(cert *Certificate) ([]byte, error) {
		x509.go#L1538: func CreateCertificate(rand io.Reader, template, parent *Certificate, pub, priv any) ([]byte, error) {
		x509.go#L1711: func (c *Certificate) CreateCRL(rand io.Reader, priv any, revokedCerts []pkix.RevokedCertificate, now, expiry time.Time) (crlBytes []byte, err error) {
		x509.go#L2292: func CreateRevocationList(rand io.Reader, template *RevocationList, issuer *Certificate, priv crypto.Signer) ([]byte, error) {
		x509.go#L2456: func (rl *RevocationList) CheckSignatureFrom(parent *Certificate) error {

	crypto/tls
		cache.go#L16: 	cert *x509.Certificate
		cache.go#L48: 	cert *x509.Certificate
		common.go#L273: 	PeerCertificates []*x509.Certificate
		common.go#L284: 	VerifiedChains [][]*x509.Certificate
		common.go#L619: 	VerifyPeerCertificate func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error
		common.go#L1421: 	Leaf *x509.Certificate
		common.go#L1426: func (c *Certificate) leaf() (*x509.Certificate, error) {
		common.go#L1537: 	UnverifiedCertificates []*x509.Certificate
		conn.go#L53: 	peerCertificates []*x509.Certificate
		conn.go#L59: 	verifiedChains [][]*x509.Certificate
		handshake_client.go#L963: 	certs := make([]*x509.Certificate, len(certificates))
		handshake_server.go#L860: 	certs := make([]*x509.Certificate, len(certificates))
		key_agreement.go#L34: 	processServerKeyExchange(*Config, *clientHelloMsg, *serverHelloMsg, *x509.Certificate, *serverKeyExchangeMsg) error
		key_agreement.go#L35: 	generateClientKeyExchange(*Config, *clientHelloMsg, *x509.Certificate) ([]byte, *clientKeyExchangeMsg, error)
		key_agreement.go#L77: func (ka rsaKeyAgreement) processServerKeyExchange(config *Config, clientHello *clientHelloMsg, serverHello *serverHelloMsg, cert *x509.Certificate, skx *serverKeyExchangeMsg) error {
		key_agreement.go#L81: func (ka rsaKeyAgreement) generateClientKeyExchange(config *Config, clientHello *clientHelloMsg, cert *x509.Certificate) ([]byte, *clientKeyExchangeMsg, error) {
		key_agreement.go#L275: func (ka *ecdheKeyAgreement) processServerKeyExchange(config *Config, clientHello *clientHelloMsg, serverHello *serverHelloMsg, cert *x509.Certificate, skx *serverKeyExchangeMsg) error {
		key_agreement.go#L360: func (ka *ecdheKeyAgreement) generateClientKeyExchange(config *Config, clientHello *clientHelloMsg, cert *x509.Certificate) ([]byte, *clientKeyExchangeMsg, error) {
		ticket.go#L89: 	peerCertificates  []*x509.Certificate
		ticket.go#L93: 	verifiedChains    [][]*x509.Certificate
		ticket.go#L172: func certificatesToBytesSlice(certs []*x509.Certificate) [][]byte {
		ticket.go#L242: 		var chain []*x509.Certificate


The pages are generated with Golds v0.6.7. (GOOS=linux GOARCH=amd64)
Golds is a Go 101 project developed by Tapir Liu.
PR and bug reports are welcome and can be submitted to the issue list.
Please follow @Go100and1 (reachable from the left QR code) to get the latest news of Golds.