Module verify

Structs

ParsedCertificate

Wrapper around internal representation of a parsed certificate.

WebPkiSupportedAlgorithms

Describes which webpki signature verification algorithms are supported and how they map to TLS SignatureSchemes.

Functions

verify_server_cert_signed_by_trust_anchor

Verify that the end-entity certificate end_entity is a valid server cert and chains to at least one of the trust anchors in the roots RootCertStore.

verify_server_cert_signed_by_trust_anchor_impl 🔒

Verify that the end-entity certificate end_entity is a valid server cert and chains to at least one of the trust anchors in the roots RootCertStore.

verify_server_name

Verify that the end_entity has an alternative name matching the server_name.

verify_tls12_signature

Verify a message signature using the cert public key and any supported scheme.

verify_tls13_signature

Verify a message signature using the cert public key and the first TLS 1.3 compatible supported scheme.

verify_tls13_signature_with_raw_key

Verify a message signature using a raw public key and the first TLS 1.3 compatible supported scheme.