SignatureAlgorithm - Code Search

src/crypto/x509/x509.go

	var override string
	if SignatureAlgorithm(e) == SHA1WithRSA || SignatureAlgorithm(e) == ECDSAWithSHA1 {
		override = " (temporarily override with GODEBUG=x509sha1=1)"
	}
	return fmt.Sprintf("x509: cannot verify signature: insecure algorithm %v", SignatureAlgorithm(e)) + override
}

// ConstraintViolationError results when a requested usage is not permitted by
// a certificate. For example: checking a signature when the public key isn't a

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed May 22 09:20:15 UTC 2024

- 82K bytes

- Viewed (0)

github.com/golang/go

src/crypto/tls/auth.go

}

// typeAndHashFromSignatureScheme returns the corresponding signature type and
// crypto.Hash for a given TLS SignatureScheme.
func typeAndHashFromSignatureScheme(signatureAlgorithm SignatureScheme) (sigType uint8, hash crypto.Hash, err error) {
	switch signatureAlgorithm {
	case PKCS1WithSHA1, PKCS1WithSHA256, PKCS1WithSHA384, PKCS1WithSHA512:
		sigType = signaturePKCS1v15
	case PSSWithSHA256, PSSWithSHA384, PSSWithSHA512:

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed May 22 21:45:37 UTC 2024

- 10K bytes

- Viewed (0)

github.com/golang/go

src/crypto/tls/key_agreement.go

	}

	var signatureAlgorithm SignatureScheme
	var sigType uint8
	var sigHash crypto.Hash
	if ka.version >= VersionTLS12 {
		signatureAlgorithm, err = selectSignatureScheme(ka.version, cert, clientHello.supportedSignatureAlgorithms)
		if err != nil {
			return nil, err
		}
		sigType, sigHash, err = typeAndHashFromSignatureScheme(signatureAlgorithm)
		if err != nil {
			return nil, err
		}

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed May 22 14:56:25 UTC 2024

- 11.8K bytes

- Viewed (0)

github.com/golang/go

src/crypto/x509/x509_test.go

				t.Fatalf("Failed to parse generated CRL: %s", err)
			}

			if tc.template.SignatureAlgorithm != UnknownSignatureAlgorithm &&
				parsedCRL.SignatureAlgorithm != tc.template.SignatureAlgorithm {
				t.Fatalf("SignatureAlgorithm mismatch: got %v; want %v.", parsedCRL.SignatureAlgorithm,
					tc.template.SignatureAlgorithm)
			}

			if len(tc.template.RevokedCertificates) > 0 {

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed May 22 21:00:16 UTC 2024

- 163.4K bytes

- Viewed (0)

github.com/golang/go

src/crypto/tls/handshake_client_tls13.go

	}

	// See RFC 8446, Section 4.4.3.
	if !isSupportedSignatureAlgorithm(certVerify.signatureAlgorithm, supportedSignatureAlgorithms()) {
		c.sendAlert(alertIllegalParameter)
		return errors.New("tls: certificate used with invalid signature algorithm")
	}
	sigType, sigHash, err := typeAndHashFromSignatureScheme(certVerify.signatureAlgorithm)
	if err != nil {
		return c.sendAlert(alertInternalError)
	}

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Thu May 23 03:10:12 UTC 2024

- 27.9K bytes

- Viewed (0)

github.com/istio/istio

security/pkg/server/ca/authenticate/oidc_test.go

			}
		})
	}
}

func generateJWT(key *jose.JSONWebKey, claims []byte) (string, error) {
	signer, err := jose.NewSigner(jose.SigningKey{
		Algorithm: jose.SignatureAlgorithm(key.Algorithm),
		Key:       key,
	}, nil)
	if err != nil {
		return "", fmt.Errorf("failed to create a signer: %v", err)
	}
	signature, err := signer.Sign(claims)
	if err != nil {

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Thu May 23 21:07:03 UTC 2024

- 7.3K bytes

- Viewed (0)

github.com/golang/go

src/crypto/tls/handshake_client.go

		var sigType uint8
		var sigHash crypto.Hash
		if c.vers >= VersionTLS12 {
			signatureAlgorithm, err := selectSignatureScheme(c.vers, chainToSend, certReq.supportedSignatureAlgorithms)
			if err != nil {
				c.sendAlert(alertIllegalParameter)
				return err
			}
			sigType, sigHash, err = typeAndHashFromSignatureScheme(signatureAlgorithm)
			if err != nil {
				return c.sendAlert(alertInternalError)
			}

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Thu May 23 03:10:12 UTC 2024

- 38.6K bytes

- Viewed (0)

github.com/golang/go

src/crypto/tls/handshake_server_tls13.go

		}

		// See RFC 8446, Section 4.4.3.
		if !isSupportedSignatureAlgorithm(certVerify.signatureAlgorithm, supportedSignatureAlgorithms()) {
			c.sendAlert(alertIllegalParameter)
			return errors.New("tls: client certificate used with invalid signature algorithm")
		}
		sigType, sigHash, err := typeAndHashFromSignatureScheme(certVerify.signatureAlgorithm)
		if err != nil {
			return c.sendAlert(alertInternalError)
		}

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed May 22 17:23:54 UTC 2024

- 30.5K bytes

- Viewed (0)

github.com/kubernetes/kubernetes

staging/src/k8s.io/apiserver/plugin/pkg/authenticator/token/oidc/oidc_test.go

func loadRSAKey(t *testing.T, filepath string, alg jose.SignatureAlgorithm) *jose.JSONWebKey {
	return loadKey(t, filepath, alg, func(b []byte) (interface{}, error) {
		key, err := x509.ParsePKCS1PrivateKey(b)
		if err != nil {
			return nil, err
		}
		return key.Public(), nil
	})
}

func loadRSAPrivKey(t *testing.T, filepath string, alg jose.SignatureAlgorithm) *jose.JSONWebKey {

Registered: Sat Jun 15 01:39:40 UTC 2024

- Last Modified: Wed Apr 24 18:25:29 UTC 2024

- 97.7K bytes

- Viewed (0)

github.com/golang/go

src/crypto/tls/handshake_server.go

		if c.vers >= VersionTLS12 {
			if !isSupportedSignatureAlgorithm(certVerify.signatureAlgorithm, certReq.supportedSignatureAlgorithms) {
				c.sendAlert(alertIllegalParameter)
				return errors.New("tls: client certificate used with invalid signature algorithm")
			}
			sigType, sigHash, err = typeAndHashFromSignatureScheme(certVerify.signatureAlgorithm)
			if err != nil {
				return c.sendAlert(alertInternalError)
			}
		} else {

Registered: Wed Jun 12 16:32:35 UTC 2024

- Last Modified: Wed May 22 21:30:50 UTC 2024

- 27.6K bytes

- Viewed (0)

Search Options