README
¶
// Possible certificate files; stop after finding one.
var certFiles = []string{
"/etc/ssl/certs/ca-certificates.crt", // Debian/Ubuntu/Gentoo etc.
"/etc/pki/tls/certs/ca-bundle.crt", // Fedora/RHEL 6
"/etc/ssl/ca-bundle.pem", // OpenSUSE
"/etc/pki/tls/cacert.pem", // OpenELEC
"/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem", // CentOS/RHEL 7
}
Source: https://golang.org/src/crypto/x509/root_linux.go
Documentation
¶
Index ¶
- Constants
- func New() probe.Probe
- type Probe
- func (p *Probe) GenerateTStepName() string
- func (Probe) GetDefaultFrequency() time.Duration
- func (Probe) GetDefaultTimeout() time.Duration
- func (Probe) GetName() string
- func (p *Probe) Initialize(step probe.StepProbe) error
- func (p *Probe) Run(timeout time.Duration) (probeReturns []probe.ProbeReturn)
- type ProbeAnswer
- type ProbeCert
Constants ¶
View Source
const Name = "x509"
Name of the probe
Variables ¶
This section is empty.
Functions ¶
Types ¶
type Probe ¶
type Probe struct {
Host string `json:"host"`
Port int `json:"port"`
RootCertRaw string `json:"rootCert"`
// contains filtered or unexported fields
}
Probe struct : Informations necessaires à l'execution de la probe All attributes must be Public
func (*Probe) GenerateTStepName ¶
GenerateTStepName return a tstep name if non existent
func (Probe) GetDefaultFrequency ¶ added in v0.6.0
func (Probe) GetDefaultTimeout ¶ added in v0.6.0
func (*Probe) Initialize ¶
Initialize Probe struct data
type ProbeAnswer ¶
type ProbeAnswer struct {
Valid bool `json:"valid"`
Expired bool `json:"expired"`
// TODO Trusted bool `json:"trusted"`
Daybeforeexpiration int `json:"daybeforeexpiration"`
EndCertificate ProbeCert `json:"endcertificate"`
IntCertificate ProbeCert `json:"intcertificate"`
RootCertificate ProbeCert `json:"rootcertificate"`
ProbeInfo probe.ProbeInfo `json:"probeinfo"`
}
ProbeAnswer is the returned result after query All attributes must be Public ProbeInfo is Mandatory => Détail l'execution de la probe
type ProbeCert ¶
type ProbeCert struct {
Signature []byte `json:"signature"`
SignatureAlgorithm string `json:"signaturealgorithm"`
PublicKeyAlgorithm string `json:"publickeyalgorithm"`
PublicKey string `json:"publickey"` //interface{}
Version int `json:"version"`
SerialNumber *big.Int `json:"serialnumber"`
Issuer pkix.Name `json:"issuer"`
Subject pkix.Name `json:"subject"`
NotBefore time.Time `json:"notbefore"` // Validity bounds.
NotAfter time.Time `json:"notafter"`
KeyUsage string `json:"keyusage"`
Extensions []pkix.Extension `json:"extensions"`
ExtraExtensions []pkix.Extension `json:"extraextensions"`
UnhandledCriticalExtensions []asn1.ObjectIdentifier `json:"unhandledcriticalextensions"`
ExtKeyUsage string `json:"extkeyusage"` // []string // Sequence of extended key usages.
BasicConstraintsValid bool `json:"basicconstraintsvalid"`
IsCA bool `json:"isca"`
MaxPathLen int `json:"maxpathlen"`
SubjectKeyId []byte `json:"subjectkeyid"`
AuthorityKeyId []byte `json:"authoritykeyid"`
OCSPServer []string `json:"ocspserver"`
IssuingCertificateURL []string `json:"issuingcertificateurl"`
DNSNames []string `json:"dnsnames"`
EmailAddresses []string `json:"emailaddresses"`
IPAddresses []net.IP `json:"ipaddresses"`
URIs []*url.URL `json:"uris"`
// Name constraints
PermittedDNSDomainsCritical bool `json:"permitteddnsdomainscritical"` // if true then the name constraints are marked critical.
PermittedDNSDomains []string `json:"permitteddnsdomains"`
ExcludedDNSDomains []string `json:"excludeddnsdomains"`
PermittedIPRanges []*net.IPNet `json:"permittedipranges"`
ExcludedIPRanges []*net.IPNet `json:"excludedipranges"`
PermittedEmailAddresses []string `json:"permittedemailaddresses"`
ExcludedEmailAddresses []string `json:"excludedemailaddresses"`
PermittedURIDomains []string `json:"permitteduridomains"`
ExcludedURIDomains []string `json:"excludeduridomains"`
// CRL Distribution Points
CRLDistributionPoints []string
}
Source Files
Click to show internal directories.
Click to hide internal directories.