crypto

package

v2.16.3 Latest Latest Go to latest Published: Apr 11, 2024 License: AGPL-3.0 Imports: 9 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/edgelesssys/constellation

Links

Open Source Insights

Documentation ¶

Overview ¶

Package crypto provides functions to for cryptography and random numbers.

Index ¶

Constants
func DeriveKey(secret, salt, info []byte, length uint) ([]byte, error)
func GenerateCertificateSerialNumber() (*big.Int, error)
func GenerateRandomBytes(length int) ([]byte, error)
func PemToX509Cert(raw []byte) (*x509.Certificate, error)
func X509CertToPem(cert *x509.Certificate) ([]byte, error)

Constants ¶

View Source

const (
	// StateDiskKeyLength is key length in bytes for node state disk.
	StateDiskKeyLength = 32
	// DerivedKeyLengthDefault is the default length in bytes for KMS derived keys.
	DerivedKeyLengthDefault = 32
	// MasterSecretLengthDefault is the default length in bytes for CLI generated master secrets.
	MasterSecretLengthDefault = 32
	// MasterSecretLengthMin is the minimal length in bytes for user provided master secrets.
	MasterSecretLengthMin = 16
	// RNGLengthDefault is the number of bytes used for generating nonces.
	RNGLengthDefault = 32
	// DEKPrefix is the prefix used to prefix DEK IDs. Originally introduced as a requirement for the HKDF info parameter.
	DEKPrefix = "key-"
	// MeasurementSecretKeyID is name used for the measurementSecret DEK.
	MeasurementSecretKeyID = "measurementSecret"
)

Variables ¶

This section is empty.

Functions ¶

func DeriveKey ¶

func DeriveKey(secret, salt, info []byte, length uint) ([]byte, error)

DeriveKey derives a key from a secret.

func GenerateCertificateSerialNumber ¶

func GenerateCertificateSerialNumber() (*big.Int, error)

GenerateCertificateSerialNumber generates a random serial number for an X.509 certificate.

func GenerateRandomBytes ¶

func GenerateRandomBytes(length int) ([]byte, error)

GenerateRandomBytes reads length bytes from getrandom(2) if available, /dev/urandom otherwise.

func PemToX509Cert ¶

func PemToX509Cert(raw []byte) (*x509.Certificate, error)

PemToX509Cert takes a list of PEM-encoded certificates, parses the first one and returns it as an x.509 certificate.

func X509CertToPem ¶ added in v2.12.0

func X509CertToPem(cert *x509.Certificate) ([]byte, error)

X509CertToPem takes an x.509 certificate and returns it as a PEM-encoded certificate.

Types ¶

This section is empty.

Source Files ¶

View all Source files

crypto.go

Directories ¶

Path	Synopsis
testvector Package testvector provides test vectors for key derivation and crypto functions.	Package testvector provides test vectors for key derivation and crypto functions.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL