pki

package

v0.0.0-...-55c0a6c Latest Latest Go to latest Published: Nov 27, 2021 License: GPL-3.0 Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/komplementariteten/golang

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
type CA
- func LoadFromStorage(id []byte, con *data.StorageConnection) (*CA, error)
- func (ca *CA) ConnectStorage(con *data.StorageConnection)
type CertContainer
type CertRequest
type PKI
- func LoadPkiFromPEMBlock(pemEncoded []byte, key []byte) (root *PKI, e error)
- func NewPki(organisation string, secure []byte, KeySize int) (root *PKI, e error)
type PKIExport

Constants ¶

View Source

const (
	DEFAULT_CERT_VALIDITY = 200
	DEFAULT_ASYMKEYLEN    = 6168
	DEFAULT_SYMKEYLEN     = 256
	CERT_REVOKED          = "Cert has been Revoked"
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type CA ¶

type CA struct {
	Organisation          string
	DefaultCertValidYears int
	Id                    []byte
	Cert                  *export.Cert
	Key                   *export.Key
	IntermediatePool      *x509.CertPool
	Revoked               *pkix.CertificateList
	// contains filtered or unexported fields
}

func LoadFromStorage ¶

func LoadFromStorage(id []byte, con *data.StorageConnection) (*CA, error)

General Methods

func (*CA) ConnectStorage ¶

func (ca *CA) ConnectStorage(con *data.StorageConnection)

type CertContainer ¶

type CertContainer struct {
	Serial     *big.Int
	Crt        []byte
	Key        *rsa.PrivateKey
	ValidUntil time.Time
}

func (*CertContainer) ExportCert ¶

func (c *CertContainer) ExportCert(passPhrase []byte) []byte

func (*CertContainer) ExportKey ¶

func (c *CertContainer) ExportKey(passPhrase []byte) []byte

func (*CertContainer) GetX509Cert ¶

func (c *CertContainer) GetX509Cert() (*x509.Certificate, error)

func (*CertContainer) LoadCert ¶

func (c *CertContainer) LoadCert(pemBytes []byte, passPhrase []byte) error

func (*CertContainer) LoadKey ¶

func (c *CertContainer) LoadKey(pemBytes []byte, passPhrase []byte) error

func (*CertContainer) PlainKey ¶

func (c *CertContainer) PlainKey() []byte

func (*CertContainer) ToTls ¶

func (c *CertContainer) ToTls() (tls.Certificate, error)

type CertRequest ¶

type CertRequest struct {
	Email              string
	Country            string
	Location           string
	Organisation       string
	OrganizationalUnit string
	Province           string
	Address            string
}

type PKI ¶

type PKI struct {
	Serial                *big.Int
	Organisation          string
	DefaultCertValidYears int

	Intermediate     map[string]*CertContainer
	IntermediatePool *x509.CertPool
	Revoked          []pkix.RevokedCertificate
	Crl              []byte
	CrlTTL           time.Time
	// contains filtered or unexported fields
}

func LoadPkiFromPEMBlock ¶

func LoadPkiFromPEMBlock(pemEncoded []byte, key []byte) (root *PKI, e error)

func NewPki ¶

func NewPki(organisation string, secure []byte, KeySize int) (root *PKI, e error)

* Create base Data

func (*PKI) AddIntermediate ¶

func (p *PKI) AddIntermediate(c *CertContainer) error

func (*PKI) AddIntermediateFromExport ¶

func (p *PKI) AddIntermediateFromExport(export []byte, key *rsa.PrivateKey) error

func (*PKI) CreateCRL ¶

func (p *PKI) CreateCRL(ttl time.Time) (crlBytes []byte, err error)

func (*PKI) CreateIntermediate ¶

func (p *PKI) CreateIntermediate(EmailAddress string, Title string, ValidYears int, KeySize int) (*CertContainer, error)

func (*PKI) Export ¶

func (p *PKI) Export() ([]byte, error)

func (*PKI) GetCert ¶

func (p *PKI) GetCert(parent *big.Int, KeySize int, cn string, req *CertRequest) (*CertContainer, error)

func (*PKI) IsRevoked ¶

func (p *PKI) IsRevoked(cert *x509.Certificate) bool

func (*PKI) Revoke ¶

func (p *PKI) Revoke(cert *x509.Certificate)

func (*PKI) ValidateByCaRaw ¶

func (p *PKI) ValidateByCaRaw(derBytes []byte) (bool, error)

func (*PKI) Verify ¶

func (p *PKI) Verify(cert *x509.Certificate, opts x509.VerifyOptions) error

type PKIExport ¶

type PKIExport struct {
	Crt                   []byte
	Organisation          string
	DefaultCertValidYears int
	Key                   []byte
	Serial                big.Int
}

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
export

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL