Struct openssl::x509::X509

pub struct X509(/* private fields */);

An X509 public key certificate.

Implementations

impl X509

pub fn builder() -> Result<X509Builder, ErrorStack>

Returns a new builder.

pub fn from_pem(pem: &[u8]) -> Result<X509, ErrorStack>

Deserializes a PEM-encoded X509 structure.

The input should have a header of -----BEGIN CERTIFICATE-----.

This corresponds to PEM_read_bio_X509.

pub fn from_der(der: &[u8]) -> Result<X509, ErrorStack>

Deserializes a DER-encoded X509 structure.

This corresponds to d2i_X509.

pub fn stack_from_pem(pem: &[u8]) -> Result<Vec<X509>, ErrorStack>

Deserializes a list of PEM-formatted certificates.

This corresponds to PEM_read_bio_X509.

Methods from Deref<Target = X509Ref>

pub fn subject_name(&self) -> &X509NameRef

Returns this certificate’s subject name.

This corresponds to X509_get_subject_name.

pub fn subject_name_hash(&self) -> u32

Returns the hash of the certificates subject

This corresponds to X509_subject_name_hash.

pub fn issuer_name(&self) -> &X509NameRef

Returns this certificate’s issuer name.

This corresponds to X509_get_issuer_name.

pub fn issuer_name_hash(&self) -> u32

Returns the hash of the certificates issuer

This corresponds to X509_issuer_name_hash.

pub fn subject_alt_names(&self) -> Option<Stack<GeneralName>>

Returns this certificate’s subject alternative name entries, if they exist.

This corresponds to X509_get_ext_d2i.

pub fn crl_distribution_points(&self) -> Option<Stack<DistPoint>>

Returns this certificate’s CRL distribution points, if they exist.

This corresponds to X509_get_ext_d2i.

pub fn issuer_alt_names(&self) -> Option<Stack<GeneralName>>

Returns this certificate’s issuer alternative name entries, if they exist.

This corresponds to X509_get_ext_d2i.

pub fn authority_info(&self) -> Option<Stack<AccessDescription>>

Returns this certificate’s authority information access entries, if they exist.

This corresponds to X509_get_ext_d2i.

pub fn pathlen(&self) -> Option<u32>

Retrieves the path length extension from a certificate, if it exists.

This corresponds to X509_get_pathlen.

pub fn subject_key_id(&self) -> Option<&Asn1OctetStringRef>

Returns this certificate’s subject key id, if it exists.

This corresponds to X509_get0_subject_key_id.

pub fn authority_key_id(&self) -> Option<&Asn1OctetStringRef>

Returns this certificate’s authority key id, if it exists.

This corresponds to X509_get0_authority_key_id.

pub fn public_key(&self) -> Result<PKey<Public>, ErrorStack>

This corresponds to X509_get_pubkey.

pub fn digest( &self, hash_type: MessageDigest ) -> Result<DigestBytes, ErrorStack>

Returns a digest of the DER representation of the certificate.

This corresponds to X509_digest.

pub fn fingerprint( &self, hash_type: MessageDigest ) -> Result<Vec<u8>, ErrorStack>

👎Deprecated since 0.10.9: renamed to digest

pub fn not_after(&self) -> &Asn1TimeRef

Returns the certificate’s Not After validity period.

This corresponds to X509_getm_notAfter.

pub fn not_before(&self) -> &Asn1TimeRef

Returns the certificate’s Not Before validity period.

This corresponds to X509_getm_notBefore.

pub fn signature(&self) -> &Asn1BitStringRef

Returns the certificate’s signature

This corresponds to X509_get0_signature.

pub fn signature_algorithm(&self) -> &X509AlgorithmRef

Returns the certificate’s signature algorithm.

This corresponds to X509_get0_signature.

pub fn ocsp_responders(&self) -> Result<Stack<OpensslString>, ErrorStack>

Returns the list of OCSP responder URLs specified in the certificate’s Authority Information Access field.

This corresponds to X509_get1_ocsp.

pub fn issued(&self, subject: &X509Ref) -> X509VerifyResult

Checks that this certificate issued subject.

This corresponds to X509_check_issued.

pub fn version(&self) -> i32

Returns certificate version. If this certificate has no explicit version set, it defaults to version 1.

Note that 0 return value stands for version 1, 1 for version 2 and so on.

This corresponds to X509_get_version.

pub fn verify<T>(&self, key: &PKeyRef<T>) -> Result<bool, ErrorStack>

where T: HasPublic,

Check if the certificate is signed using the given public key.

Only the signature is checked: no other checks (such as certificate chain validity) are performed.

Returns true if verification succeeds.

This corresponds to X509_verify.

pub fn serial_number(&self) -> &Asn1IntegerRef

Returns this certificate’s serial number.

This corresponds to X509_get_serialNumber.

pub fn to_pem(&self) -> Result<Vec<u8>, ErrorStack>

Serializes the certificate into a PEM-encoded X509 structure.

The output will have a header of -----BEGIN CERTIFICATE-----.

This corresponds to PEM_write_bio_X509.

pub fn to_der(&self) -> Result<Vec<u8>, ErrorStack>

Serializes the certificate into a DER-encoded X509 structure.

This corresponds to i2d_X509.

pub fn to_text(&self) -> Result<Vec<u8>, ErrorStack>

Converts the certificate to human readable text.

This corresponds to X509_print.

Trait Implementations

impl AsRef<X509Ref> for X509

fn as_ref(&self) -> &X509Ref

Converts this type into a shared reference of the (usually inferred) input type.

impl Borrow<X509Ref> for X509

fn borrow(&self) -> &X509Ref

Immutably borrows from an owned value.

impl Clone for X509

fn clone(&self) -> X509

Returns a copy of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for X509

fn fmt(&self, formatter: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Deref for X509

type Target = X509Ref

The resulting type after dereferencing.

fn deref(&self) -> &X509Ref

Dereferences the value.

impl DerefMut for X509

fn deref_mut(&mut self) -> &mut X509Ref

Mutably dereferences the value.

impl Drop for X509

fn drop(&mut self)

Executes the destructor for this type.

impl ForeignType for X509

type CType = X509

The raw C type.

type Ref = X509Ref

The type representing a reference to this type.

unsafe fn from_ptr(ptr: *mut X509) -> X509

Constructs an instance of this type from its raw type.

fn as_ptr(&self) -> *mut X509

Returns a raw pointer to the wrapped value.

impl Ord for X509

fn cmp(&self, other: &Self) -> Ordering

This method returns an Ordering between self and other.

fn max(self, other: Self) -> Self

where Self: Sized,

Compares and returns the maximum of two values.

fn min(self, other: Self) -> Self

where Self: Sized,

Compares and returns the minimum of two values.

fn clamp(self, min: Self, max: Self) -> Self

where Self: Sized + PartialOrd,

Restrict a value to a certain interval.

impl PartialEq<X509> for X509Ref

fn eq(&self, other: &X509) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl PartialEq<X509Ref> for X509

fn eq(&self, other: &X509Ref) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl PartialEq for X509

fn eq(&self, other: &Self) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl PartialOrd<X509> for X509Ref

fn partial_cmp(&self, other: &X509) -> Option<Ordering>

This method returns an ordering between self and other values if one exists.

fn lt(&self, other: &Rhs) -> bool

This method tests less than (for self and other) and is used by the < operator.

fn le(&self, other: &Rhs) -> bool

This method tests less than or equal to (for self and other) and is used by the <= operator.

fn gt(&self, other: &Rhs) -> bool

This method tests greater than (for self and other) and is used by the > operator.

fn ge(&self, other: &Rhs) -> bool

This method tests greater than or equal to (for self and other) and is used by the >= operator.

impl PartialOrd<X509Ref> for X509

fn partial_cmp(&self, other: &X509Ref) -> Option<Ordering>

This method returns an ordering between self and other values if one exists.

fn lt(&self, other: &Rhs) -> bool

This method tests less than (for self and other) and is used by the < operator.

fn le(&self, other: &Rhs) -> bool

This method tests less than or equal to (for self and other) and is used by the <= operator.

fn gt(&self, other: &Rhs) -> bool

This method tests greater than (for self and other) and is used by the > operator.

fn ge(&self, other: &Rhs) -> bool

This method tests greater than or equal to (for self and other) and is used by the >= operator.

impl PartialOrd for X509

fn partial_cmp(&self, other: &Self) -> Option<Ordering>

This method returns an ordering between self and other values if one exists.

fn lt(&self, other: &Rhs) -> bool

This method tests less than (for self and other) and is used by the < operator.

fn le(&self, other: &Rhs) -> bool

This method tests less than or equal to (for self and other) and is used by the <= operator.

fn gt(&self, other: &Rhs) -> bool

This method tests greater than (for self and other) and is used by the > operator.

fn ge(&self, other: &Rhs) -> bool

This method tests greater than or equal to (for self and other) and is used by the >= operator.

impl Stackable for X509

type StackType = stack_st_X509

The C stack type for this element.

impl Eq for X509

impl Send for X509

impl Sync for X509