kms

package

v0.0.0-...-d338334 Latest Latest Go to latest Published: Oct 11, 2022 License: Apache-2.0 Imports: 5 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cmdpdx/sigstore

Documentation ¶

Overview ¶

Package kms contains utilities related to third-party KMS providers.

Package kms implements the interface to access various ksm services

Index ¶

func AddProvider(keyResourceID string, init ProviderInit)
func SupportedProviders() []string
type ProviderInit
type ProviderNotFoundError
- func (e *ProviderNotFoundError) Error() string
type SignerVerifier
- func Get(ctx context.Context, keyResourceID string, hashFunc crypto.Hash, ...) (SignerVerifier, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func AddProvider ¶

func AddProvider(keyResourceID string, init ProviderInit)

AddProvider adds the provider implementation into the local cache

func SupportedProviders ¶

func SupportedProviders() []string

SupportedProviders returns list of initialized providers

Types ¶

type ProviderInit ¶

type ProviderInit func(context.Context, string, crypto.Hash, ...signature.RPCOption) (SignerVerifier, error)

ProviderInit is a function that initializes provider-specific SignerVerifier.

It takes a provider-specific resource ID and hash function, and returns a SignerVerifier using that resource, or any error that was encountered.

type ProviderNotFoundError ¶

type ProviderNotFoundError struct {
	// contains filtered or unexported fields
}

ProviderNotFoundError indicates that no matching KMS provider was found

func (*ProviderNotFoundError) Error ¶

func (e *ProviderNotFoundError) Error() string

type SignerVerifier ¶

type SignerVerifier interface {
	signature.SignerVerifier
	CreateKey(ctx context.Context, algorithm string) (crypto.PublicKey, error)
	CryptoSigner(ctx context.Context, errFunc func(error)) (crypto.Signer, crypto.SignerOpts, error)
	SupportedAlgorithms() []string
	DefaultAlgorithm() string
}

SignerVerifier creates and verifies digital signatures over a message using a KMS service

func Get ¶

func Get(ctx context.Context, keyResourceID string, hashFunc crypto.Hash, opts ...signature.RPCOption) (SignerVerifier, error)

Get returns a KMS SignerVerifier for the given resource string and hash function. If no matching provider is found, Get returns a ProviderNotFoundError. It also returns an error if initializing the SignerVerifier fails.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
aws Package aws implement the interface with amazon aws kms service	Package aws implement the interface with amazon aws kms service
azure Package azure implement the interface with microsoft azure kms service	Package azure implement the interface with microsoft azure kms service
fake Package fake contains utilities to help test KMS providers.	Package fake contains utilities to help test KMS providers.
gcp Package gcp implement the interface with google cloud kms service	Package gcp implement the interface with google cloud kms service
hashivault Package hashivault implement the interface with hashivault kms service	Package hashivault implement the interface with hashivault kms service

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL