pub trait KeyCertificateSpecifier {
// Required methods
fn cert_denotators(&self) -> Vec<&dyn KeySpecifierComponent>;
fn signing_key_specifier(&self) -> Option<&dyn KeySpecifier>;
fn subject_key_specifier(&self) -> &dyn KeySpecifier;
}
Expand description
The “specifier” of a key certificate, which identifies an instance of a cert, as well as its signing and subject keys.
Certificates can only be fetched from Arti key stores (we will not support loading certs from C Tor’s key directory)
Required Methods§
Sourcefn cert_denotators(&self) -> Vec<&dyn KeySpecifierComponent>
fn cert_denotators(&self) -> Vec<&dyn KeySpecifierComponent>
The denotators of the certificate.
Used by KeyMgr
to derive the ArtiPath
of the certificate.
The ArtiPath
of a certificate is obtained
by concatenating the ArtiPath
of the subject key with the
denotators provided by this function,
with a +
between the ArtiPath
of the subject key and
the denotators (the +
is omitted if there are no denotators).
Sourcefn signing_key_specifier(&self) -> Option<&dyn KeySpecifier>
fn signing_key_specifier(&self) -> Option<&dyn KeySpecifier>
The key specifier of the signing key.
Returns None
if the signing key should not be retrieved from the keystore.
Note: a return value of None
means the signing key will be provided
as an argument to the KeyMgr
accessor this KeyCertificateSpecifier
will be used with.
Sourcefn subject_key_specifier(&self) -> &dyn KeySpecifier
fn subject_key_specifier(&self) -> &dyn KeySpecifier
The key specifier of the subject key.