cert

package

v0.0.15 Latest Latest Go to latest Published: Mar 27, 2024 License: MIT Imports: 20 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/resource-aware-jds/resource-aware-jds

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
Variables
func GeneratePublicAndPrivateKeyPair() (publicKeyData KeyData, privateKeyData KeyData, err error)
func GetDefaultDomainName() string
func GetNodeIDFromCertificate(cert *x509.Certificate) string
func IsSupportedPEMBlock(blockType string) bool
func LoadCertificate(pemCertificateData []byte) ([]*x509.Certificate, error)
func LoadCertificatesFromFile(certificateFilePath string) ([]*x509.Certificate, error)
type CACertificate
- func ProvideCACertificate(caCertificateConfig CACertificateConfig) (CACertificate, error)
type CACertificateConfig
type CreateCertificateOptions
type KeyData
- func LoadKeyFromFile(privateKeyFilePath string) (KeyData, error)
- func ParsePrivateKeyToKeyData(unparsedPrivateKey []byte) (KeyData, error)
- func ParsePublicKeyToKeyData(unparsedPublicKey any) (KeyData, error)
type KeyType
type RSAPrivateKeyData
- func (r *RSAPrivateKeyData) GetKeyType() KeyType
- func (r *RSAPrivateKeyData) GetKeyX509Format() ([]byte, error)
- func (r *RSAPrivateKeyData) GetRawKeyData() any
- func (r *RSAPrivateKeyData) GetSHA1Hash() (string, error)
type RSAPublicKeyData
- func (r *RSAPublicKeyData) GetKeyType() KeyType
- func (r *RSAPublicKeyData) GetKeyX509Format() ([]byte, error)
- func (r *RSAPublicKeyData) GetRawKeyData() any
- func (r *RSAPublicKeyData) GetSHA1Hash() (string, error)
type TLSCertificate
- func CreateCertificate(c CreateCertificateOptions) (TLSCertificate, error)
- func ProvideTLSCertificate(certificateChain []*x509.Certificate, privateKey KeyData, isCA bool) (TLSCertificate, error)
type TransportCertificate
- func ProvideTransportCertificate(transportCertificateConfig TransportCertificateConfig, ...) (TransportCertificate, error)
- func ProvideWorkerNodeTransportCertificate(workerCertificateConfig WorkerNodeTransportCertificateConfig, ...) (TransportCertificate, error)
type TransportCertificateConfig
type WorkerNodeCACertificate
- func ProvideWorkerNodeCACertificate(config WorkerNodeCACertificateConfig) (WorkerNodeCACertificate, error)
type WorkerNodeCACertificateConfig
type WorkerNodeTransportCertificateConfig

Constants ¶

View Source

const (
	PEMPrivateKeyBlockType = "PRIVATE KEY"
	PEMCertBlockType       = "CERTIFICATE"
)

View Source

const (
	DefaultScheme = "rajds"
)

Variables ¶

View Source

var (
	ErrInvalidPEMBlockType = errors.New("invalid PEM block type")
	ErrNoPrivateKey        = errors.New("no private key to sign the certificate")
)

Functions ¶

func GeneratePublicAndPrivateKeyPair ¶

func GeneratePublicAndPrivateKeyPair() (publicKeyData KeyData, privateKeyData KeyData, err error)

func GetDefaultDomainName ¶

func GetDefaultDomainName() string

func GetNodeIDFromCertificate ¶

func GetNodeIDFromCertificate(cert *x509.Certificate) string

func IsSupportedPEMBlock ¶

func IsSupportedPEMBlock(blockType string) bool

func LoadCertificate ¶

func LoadCertificate(pemCertificateData []byte) ([]*x509.Certificate, error)

func LoadCertificatesFromFile ¶

func LoadCertificatesFromFile(certificateFilePath string) ([]*x509.Certificate, error)

Types ¶

type CACertificate ¶

type CACertificate TLSCertificate

func ProvideCACertificate ¶

func ProvideCACertificate(caCertificateConfig CACertificateConfig) (CACertificate, error)

type CACertificateConfig ¶

type CACertificateConfig struct {
	CertificateFileLocation string
	PrivateKeyFileLocation  string
}

type CreateCertificateOptions ¶

type CreateCertificateOptions struct {
	PublicKey            KeyData
	PrivateKey           KeyData
	ValidDuration        time.Duration
	CertificateSubject   pkix.Name
	ParentTLSCertificate TLSCertificate
	IsCA                 bool
	DNSName              []string
}

type KeyData ¶

type KeyData interface {
	GetKeyX509Format() ([]byte, error)
	GetSHA1Hash() (string, error)
	GetKeyType() KeyType
	GetRawKeyData() any
}

func LoadKeyFromFile ¶

func LoadKeyFromFile(privateKeyFilePath string) (KeyData, error)

func ParsePrivateKeyToKeyData ¶

func ParsePrivateKeyToKeyData(unparsedPrivateKey []byte) (KeyData, error)

func ParsePublicKeyToKeyData ¶

func ParsePublicKeyToKeyData(unparsedPublicKey any) (KeyData, error)

type KeyType ¶

type KeyType string

const (
	PKIPublicKeyType  KeyType = "pki-public-key"
	PKIPrivateKeyType KeyType = "pki-private-key"
)

type RSAPrivateKeyData ¶

type RSAPrivateKeyData struct {
	// contains filtered or unexported fields
}

func (*RSAPrivateKeyData) GetKeyType ¶

func (r *RSAPrivateKeyData) GetKeyType() KeyType

func (*RSAPrivateKeyData) GetKeyX509Format ¶

func (r *RSAPrivateKeyData) GetKeyX509Format() ([]byte, error)

func (*RSAPrivateKeyData) GetRawKeyData ¶

func (r *RSAPrivateKeyData) GetRawKeyData() any

func (*RSAPrivateKeyData) GetSHA1Hash ¶

func (r *RSAPrivateKeyData) GetSHA1Hash() (string, error)

type RSAPublicKeyData ¶

type RSAPublicKeyData struct {
	// contains filtered or unexported fields
}

func (*RSAPublicKeyData) GetKeyType ¶

func (r *RSAPublicKeyData) GetKeyType() KeyType

func (*RSAPublicKeyData) GetKeyX509Format ¶

func (r *RSAPublicKeyData) GetKeyX509Format() ([]byte, error)

func (*RSAPublicKeyData) GetRawKeyData ¶

func (r *RSAPublicKeyData) GetRawKeyData() any

func (*RSAPublicKeyData) GetSHA1Hash ¶

func (r *RSAPublicKeyData) GetSHA1Hash() (string, error)

type TLSCertificate ¶

type TLSCertificate interface {
	IsCA() bool

	GetPublicKey() KeyData
	GetPrivateKey() KeyData
	GetCertificate() *x509.Certificate

	GetCACertificate() (*x509.Certificate, error)
	GetCertificateInPEM() ([]byte, error)
	GetCertificateChains(pemEncoded bool) [][]byte
	GetParentTLSCertificate() TLSCertificate

	CreateCertificateAndSign(certificateSubject pkix.Name, subjectPublicKey KeyData, validDuration time.Duration) (TLSCertificate, error)

	SaveCertificateToFile(certificateFilePath, privateKeyFilePath string) error
	GetCertificateSubjectSerialNumber() string

	ValidateSignature(underValidateCertificate *x509.Certificate) error

	GetNodeID() string
}

func CreateCertificate ¶

func CreateCertificate(c CreateCertificateOptions) (TLSCertificate, error)

func ProvideTLSCertificate ¶

func ProvideTLSCertificate(certificateChain []*x509.Certificate, privateKey KeyData, isCA bool) (TLSCertificate, error)

type TransportCertificate ¶

type TransportCertificate TLSCertificate

func ProvideTransportCertificate ¶

func ProvideTransportCertificate(transportCertificateConfig TransportCertificateConfig, caCertificate CACertificate) (TransportCertificate, error)

func ProvideWorkerNodeTransportCertificate ¶

func ProvideWorkerNodeTransportCertificate(workerCertificateConfig WorkerNodeTransportCertificateConfig, controlPLaneClient proto.ControlPlaneClient) (TransportCertificate, error)

type TransportCertificateConfig ¶

type TransportCertificateConfig struct {
	CertificateFileLocation string
	PrivateKeyFileLocation  string
	ValidDuration           time.Duration
	CommonName              string
	NodeID                  string
}

type WorkerNodeCACertificate ¶

type WorkerNodeCACertificate TLSCertificate

func ProvideWorkerNodeCACertificate ¶

func ProvideWorkerNodeCACertificate(config WorkerNodeCACertificateConfig) (WorkerNodeCACertificate, error)

type WorkerNodeCACertificateConfig ¶

type WorkerNodeCACertificateConfig struct {
	CACertificateFilePath string
}

type WorkerNodeTransportCertificateConfig ¶

type WorkerNodeTransportCertificateConfig struct {
	CertificateFileLocation string
	PrivateKeyFileLocation  string
}

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
di

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL