const CertAlgoRSAv01 …
const CertAlgoDSAv01 …
const CertAlgoECDSA256v01 …
const CertAlgoECDSA384v01 …
const CertAlgoECDSA521v01 …
const CertAlgoSKECDSA256v01 …
const CertAlgoED25519v01 …
const CertAlgoSKED25519v01 …
const CertAlgoRSASHA256v01 …
const CertAlgoRSASHA512v01 …
const CertSigAlgoRSAv01 …
const CertSigAlgoRSASHA2256v01 …
const CertSigAlgoRSASHA2512v01 …
const UserCert …
const HostCert …
type Signature …
const CertTimeInfinity …
type Certificate …
type genericCertData …
func marshalStringList(namelist []string) []byte { … }
type optionsTuple …
type optionsTupleValue …
func marshalTuples(tups map[string]string) []byte { … }
func parseTuples(in []byte) (map[string]string, error) { … }
func parseCert(in []byte, privAlgo string) (*Certificate, error) { … }
type openSSHCertSigner …
type algorithmOpenSSHCertSigner …
func NewCertSigner(cert *Certificate, signer Signer) (Signer, error) { … }
func (s *openSSHCertSigner) Sign(rand io.Reader, data []byte) (*Signature, error) { … }
func (s *openSSHCertSigner) PublicKey() PublicKey { … }
func (s *algorithmOpenSSHCertSigner) SignWithAlgorithm(rand io.Reader, data []byte, algorithm string) (*Signature, error) { … }
const sourceAddressCriticalOption …
type CertChecker …
func (c *CertChecker) CheckHostKey(addr string, remote net.Addr, key PublicKey) error { … }
func (c *CertChecker) Authenticate(conn ConnMetadata, pubKey PublicKey) (*Permissions, error) { … }
func (c *CertChecker) CheckCert(principal string, cert *Certificate) error { … }
func (c *Certificate) SignCert(rand io.Reader, authority Signer) error { … }
var certKeyAlgoNames …
func underlyingAlgo(algo string) string { … }
func certificateAlgo(algo string) (certAlgo string, ok bool) { … }
func (cert *Certificate) bytesForSigning() []byte { … }
func (c *Certificate) Marshal() []byte { … }
func (c *Certificate) Type() string { … }
func (c *Certificate) Verify(data []byte, sig *Signature) error { … }
func parseSignatureBody(in []byte) (out *Signature, rest []byte, ok bool) { … }
func parseSignature(in []byte) (out *Signature, rest []byte, ok bool) { … }