golang/

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/ibm-developer/ibm-cloud-hyperprotectcrypto

Links

Open Source Insights

README ¶

Overview

Install Golang and ensure that your cloned repository is in your GOPATH.

Update the following information in the examples/server_test.go file.

NOTE: This information can obtained by logging in to your IBM Cloud account and viewing your Hyper Protect Crypto Serverices (HPCS) instance and IAM information. See the GREP11 API documentation for more information about GREP11.

// The following IBM Cloud items need to be changed prior to running the sample program
const address = "<grep11_server_address>:<port>"

var callOpts = []grpc.DialOption{
	grpc.WithTransportCredentials(credentials.NewTLS(&tls.Config{})),
	grpc.WithPerRPCCredentials(&util.IAMPerRPCCredentials{
		APIKey:   "<ibm_cloud_apikey>",
		Endpoint: "<https://<iam_ibm_cloud_endpoint>",
		Instance: "<hpcs_instance_id>",
	}),
}

cd $GOPATH/src/github.com/ibm-developer/ibm-cloud-hyperprotectcrypto/golang/examples
Execute the examples by issuing the command: go test -v

The sample program produces output similar to the following:

=== RUN   Example_getMechanismInfo
--- PASS: Example_getMechanismInfo (0.02s)
=== RUN   Example_encryptAndDecrypt
--- PASS: Example_encryptAndDecrypt (0.03s)
=== RUN   Example_digest
--- PASS: Example_digest (0.02s)
=== RUN   Example_signAndVerifyUsingRSAKeyPair
--- PASS: Example_signAndVerifyUsingRSAKeyPair (0.66s)
=== RUN   Example_signAndVerifyUsingECDSAKeyPair
--- PASS: Example_signAndVerifyUsingECDSAKeyPair (0.04s)
=== RUN   Example_signAndVerifyToTestErrorHandling
--- PASS: Example_signAndVerifyToTestErrorHandling (0.04s)
=== RUN   Example_wrapAndUnwrapKey
--- PASS: Example_wrapAndUnwrapKey (0.65s)
=== RUN   Example_deriveKey
--- PASS: Example_deriveKey (0.11s)
=== RUN   Example_tls
--- PASS: Example_tls (0.05s)
PASS
ok  	github.com/ibm-developer/ibm-cloud-hyperprotectcrypto/golang/examples	1.667s

General Function Call Workflow

GREP11 can perform encrypt, decrypt, digest, sign and verify operations. For each operation, there are a series of sub-operations or functions.

For example, the Encrypt operation consists of EncryptInit(), Encrypt(), EncryptUpdate(), EncryptFinal() and EncryptSingle() sub-operations.

GREP11 sub-operations for Encrypt:

EncryptInit() is used to initialize an operation
Encrypt() is used to encrypt data without the need to perform EncryptUpdate() or EncryptFinal() sub-operations. EncryptInit() must be run prior to the Encrypt() call
EncryptUpdate() is used to perform update operations as part of a multi-part operation
EncryptFinal() is used to perform final operations as part of a multi-part operation
EncryptSingle() is an IBM EP11 extension to the standard PKCS#11 specification and used to perform a single call without the need to use the Init, Update, and Final sub-operations

The following diagram shows the three calling sequence flows that can be used for Encrypt, Decrypt, Digest, Sign and Verify operations:

function work flow

Directories ¶

Path	Synopsis
ep11
examples Package examples provide GREP11 function call examples.	Package examples provide GREP11 function call examples.
grpc
mock Package mock_grpc is a generated GoMock package.	Package mock_grpc is a generated GoMock package.
util

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL