Lines Matching refs:Certificate
172 // Certificate types (for certificateRequestMsg)
174 CertTypeRSASign = 1 // A certificate containing an RSA key
175 CertTypeDSSSign = 2 // A certificate containing a DSA key
176 CertTypeRSAFixedDH = 3 // A certificate containing a static DH key
177 CertTypeDSSFixedDH = 4 // A certificate containing a static DH key
180 CertTypeECDSASign = 64 // A certificate containing an ECDSA-capable public key, signed with ECDSA.
181 CertTypeRSAFixedECDH = 65 // A certificate containing an ECDH-capable public key, signed with RSA.
182 CertTypeECDSAFixedECDH = 66 // A certificate containing an ECDH-capable public key, signed with ECDSA.
256 PeerCertificates []*x509.Certificate // certificate chain presented by remote peer
257 VerifiedChains [][]*x509.Certificate // verified chains built from PeerCertificates
263 SCTList []byte // signed certificate timestamp list
291 serverCertificates []*x509.Certificate // Certificate chain presented by the server
343 // Certificates contains one or more certificate chains
345 // Server configurations must include at least one certificate.
346 Certificates []Certificate
348 // NameToCertificate maps from a certificate name to an element of
349 // Certificates. Note that a certificate name can be of the form
354 NameToCertificate map[string]*Certificate
356 // RootCAs defines the set of root certificate authorities
373 // ClientCAs defines the set of root certificate authorities
374 // that servers use if required to verify a client certificate
378 // ClientCertificateTypes defines the set of allowed client certificate
383 // server's certificate chain and host name.
384 // If InsecureSkipVerify is true, TLS accepts any certificate
385 // presented by the server and any host name in that certificate.
569 // Certificate message is sent and no signature is added to
594 // SkipClientCertificate causes the client to skip the Certificate
616 // CertificateVerify message after the Certificate message.
1027 // certificate list in the Certificate message.
1165 // supplied bytes in the extensions on the Certificate message.
1169 // supplied OCSP on intermediate certificates in the Certificate message.
1173 // supplied SCT on intermediate certificates in the Certificate message.
1177 // copy of the OCSP/SCT extensions in the Certificate message.
1471 // request signed certificate timestamps.
1501 // RenegotiationCertificate, if not nil, is the certificate to use on
1503 RenegotiationCertificate *Certificate
1703 // getCertificateForName returns the best certificate for the given name,
1706 func (c *Config) getCertificateForName(name string) *Certificate {
1732 // If nothing matches, return the first certificate.
1754 c.NameToCertificate = make(map[string]*Certificate)
1757 x509Cert, err := x509.ParseCertificate(cert.Certificate[0])
1770 // A Certificate is a chain of one or more certificates, leaf first.
1771 type Certificate struct {
1772 Certificate [][]byte
1781 // Leaf is the parsed form of the leaf certificate, which may be
1784 // leaf certificate will be parsed as needed.
1785 Leaf *x509.Certificate
