stackoom
  简体   繁体   中英

Golang: verify cert was signed using private key

 原文  2017-06-27 20:11:30       ssl/ go/ x509

Question

I'm porting an app from php to go and can't figure out how to verify a SSL cert was signed by our private key for a given server.

In php its simply: openssl_x509_check_private_key($cert, $pkey)

I can verify start/end dates and validity for a host, but can't see a way to do this.

1 answers

solution1
 1  2017-07-28 14:37:05

The docs for openssl_x509_check_private_key don't actually say what the arguments are. I'm going to assume that they're either filenames for PEM encoded data, or PEM encoded data (strings) directly.

In that case you can simply call tls.LoadX509KeyPair or tls.X509KeyPair, which will check that the certificate and key match.

Check the source for tls.X509KeyPair if you are interested in the low-level API that performs the actual check (search for x509.ParseCertificate).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Issue with Self Signed Cert in WCF - Must have Private Key Python Requests: verify using self-signed cert Can a Cert be issued without a CSR and using old Private Key How to ignore security warnings thrown when using pip install to private pypi server using self signed cert azure kubernetes service - self signed cert on private registry Jboss using Self Signed Cert instead of imported trusted Cert Using MPMoviePlayerController with a self-signed cert MariaDB SSL using self signed client cert with letsencrypt signed server cert How can I verify with mbedtls, that a cert validates a key? Self signed certificate: Private key questions
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM