tlsutil

package module

v0.0.0-...-2be5f50 Latest Latest Go to latest Published: Apr 23, 2024 License: MPL-2.0 Imports: 16 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/bloominlabs/baseplate-go

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func GenerateCA(opts CAOpts) (string, string, error)
func GenerateCert(opts CertOpts) (string, string, error)
func GeneratePrivateKey() (crypto.Signer, string, error)
func GeneratePrivateKeyWithConfig(keyType string, keyBits int) (crypto.Signer, string, error)
func GenerateSerialNumber() (*big.Int, error)
func ParseSigner(pemValue string) (crypto.Signer, error)
func Verify(caString, certString, dns string) error
type CAOpts
type CertOpts

Constants ¶

View Source

const (
	DefaultPrivateKeyType      = "ec"
	DefaultPrivateKeyBits      = 256
	DefaultIntermediateCertTTL = 24 * 365 * time.Hour
)

Variables ¶

This section is empty.

Functions ¶

func GenerateCA ¶

func GenerateCA(opts CAOpts) (string, string, error)

GenerateCA generates a new CA for agent TLS (not to be confused with Connect TLS)

func GenerateCert ¶

func GenerateCert(opts CertOpts) (string, string, error)

GenerateCert generates a new certificate for TLS

func GeneratePrivateKey ¶

func GeneratePrivateKey() (crypto.Signer, string, error)

func GeneratePrivateKeyWithConfig ¶

func GeneratePrivateKeyWithConfig(keyType string, keyBits int) (crypto.Signer, string, error)

GeneratePrivateKey generates a new Private key

func GenerateSerialNumber ¶

func GenerateSerialNumber() (*big.Int, error)

GenerateSerialNumber returns random bigint generated with crypto/rand

func ParseSigner ¶

func ParseSigner(pemValue string) (crypto.Signer, error)

ParseSigner parses a crypto.Signer from a PEM-encoded key. The private key is expected to be the first block in the PEM value.

func Verify ¶

func Verify(caString, certString, dns string) error

Types ¶

type CAOpts ¶

type CAOpts struct {
	Signer              crypto.Signer
	Serial              *big.Int
	ClusterID           string
	Days                int
	PermittedDNSDomains []string
	Domain              string
	Name                string
}

type CertOpts ¶

type CertOpts struct {
	Signer      crypto.Signer
	CA          string
	Serial      *big.Int
	Name        string
	Days        int
	DNSNames    []string
	IPAddresses []net.IP
	ExtKeyUsage []x509.ExtKeyUsage
	IsCA        bool
}

Source Files ¶

View all Source files

generate.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL