| Portability | unknown |
|---|---|
| Stability | experimental |
| Maintainer | Vincent Hanquez <vincent@snarc.org> |
Data.Certificate.X509
Contents
Description
Read/Write X509 certificate
- data X509 = X509 Certificate (Maybe ByteString) (Maybe ByteString) SignatureALG [Word8]
- data SignatureALG
- data PubKeyALG
- = PubKeyALG_RSA
- | PubKeyALG_DSA
- | PubKeyALG_ECDSA
- | PubKeyALG_DH
- | PubKeyALG_Unknown OID
- data PubKey
- data ASN1StringType
- type ASN1String = (ASN1StringType, String)
- data Certificate = Certificate {
- certVersion :: Int
- certSerial :: Integer
- certSignatureAlg :: SignatureALG
- certIssuerDN :: [(OID, ASN1String)]
- certSubjectDN :: [(OID, ASN1String)]
- certValidity :: (Time, Time)
- certPubKey :: PubKey
- certExtensions :: Maybe CertificateExts
- data CertificateExts = CertificateExts {
- certExtKeyUsage :: Maybe (Bool, [CertKeyUsage])
- certExtBasicConstraints :: Maybe (Bool, Bool)
- certExtSubjectKeyIdentifier :: Maybe (Bool, [Word8])
- certExtPolicies :: Maybe Bool
- certExtOthers :: [(OID, Bool, [ASN1])]
- getSigningData :: X509 -> ByteString
- decodeCertificate :: ByteString -> Either String X509
- encodeCertificate :: X509 -> ByteString
Data Structure
Constructors
| X509 Certificate (Maybe ByteString) (Maybe ByteString) SignatureALG [Word8] |
Data Structure (reexported from X509Cert)
data SignatureALG Source
Constructors
| SignatureALG_md5WithRSAEncryption | |
| SignatureALG_md2WithRSAEncryption | |
| SignatureALG_sha1WithRSAEncryption | |
| SignatureALG_dsaWithSHA1 | |
| SignatureALG_ecdsaWithSHA384 | |
| SignatureALG_Unknown OID |
Instances
Constructors
| PubKeyALG_RSA | |
| PubKeyALG_DSA | |
| PubKeyALG_ECDSA | |
| PubKeyALG_DH | |
| PubKeyALG_Unknown OID |
Constructors
| PubKeyRSA (Int, Integer, Integer) | RSA format with (len modulus, modulus, e) |
| PubKeyDSA (Integer, Integer, Integer, Integer) | DSA format with (pub, p, q, g) |
| PubKeyDH (Integer, Integer, Integer, Maybe Integer, ([Word8], Integer)) | DH format with (p,g,q,j,(seed,pgenCounter)) |
| PubKeyECDSA [ASN1] | ECDSA format not done yet FIXME |
| PubKeyUnknown OID [Word8] | unrecognized format |
data ASN1StringType Source
Instances
type ASN1String = (ASN1StringType, String)Source
data Certificate Source
Constructors
| Certificate | |
Fields
| |
Instances
data CertificateExts Source
Constructors
| CertificateExts | |
Fields
| |
Instances
helper for signing/veryfing certificate
getSigningData :: X509 -> ByteStringSource
get signing data related to a X509 message, - which is either the cached data or the encoded certificate
serialization from ASN1 bytestring
decodeCertificate :: ByteString -> Either String X509Source
decode an X509 from a bytestring - the structure is the following: - Certificate - Certificate Signature Algorithm - Certificate Signature
encodeCertificate :: X509 -> ByteStringSource
encode a X509 certificate to a bytestring