cryptoutils

package

v0.0.0-...-624bbc4 Latest Latest Go to latest Published: Sep 10, 2021 License: Apache-2.0 Imports: 16 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/zosocanuck/sigstore

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func CheckExpiration(cert *x509.Certificate, epoch time.Time) error
func GeneratePEMEncodedECDSAKeyPair(curve elliptic.Curve, pf PassFunc) (privPEM, pubPEM []byte, err error)
func GeneratePEMEncodedRSAKeyPair(keyLengthBits int, pf PassFunc) (privPEM, pubPEM []byte, err error)
func GetPasswordFromStdIn(confirm bool) ([]byte, error)
func LoadCertificatesFromPEM(pem io.Reader) ([]*x509.Certificate, error)
func MarshalCertificateToPEM(cert *x509.Certificate) ([]byte, error)
func MarshalCertificatesToPEM(certs []*x509.Certificate) ([]byte, error)
func MarshalPrivateKeyToDER(priv crypto.PrivateKey) ([]byte, error)
func MarshalPrivateKeyToEncryptedDER(priv crypto.PrivateKey, pf PassFunc) ([]byte, error)
func MarshalPrivateKeyToPEM(priv crypto.PrivateKey) ([]byte, error)
func MarshalPublicKeyToDER(pub crypto.PublicKey) ([]byte, error)
func MarshalPublicKeyToPEM(pub crypto.PublicKey) ([]byte, error)
func PEMEncode(typeStr PEMType, bytes []byte) []byte
func SkipPassword(_ bool) ([]byte, error)
func UnmarshalCertificatesFromPEM(pemBytes []byte) ([]*x509.Certificate, error)
func UnmarshalPEMToPrivateKey(pemBytes []byte, pf PassFunc) (crypto.PrivateKey, error)
func UnmarshalPEMToPublicKey(pemBytes []byte) (crypto.PublicKey, error)
type PEMType
type PassFunc
- func StaticPasswordFunc(pw []byte) PassFunc

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	// Read is for fuzzing
	Read = readPasswordFn
)

Functions ¶

func CheckExpiration ¶

func CheckExpiration(cert *x509.Certificate, epoch time.Time) error

CheckExpiration verifies that epoch is during the validity period of the certificate provided.

It returns nil if issueTime < epoch < expirationTime, and error otherwise.

func GeneratePEMEncodedECDSAKeyPair ¶

func GeneratePEMEncodedECDSAKeyPair(curve elliptic.Curve, pf PassFunc) (privPEM, pubPEM []byte, err error)

GeneratePEMEncodedECDSAKeyPair generates an ECDSA keypair, optionally password encrypted using a provided PassFunc, and PEM encoded.

func GeneratePEMEncodedRSAKeyPair ¶

func GeneratePEMEncodedRSAKeyPair(keyLengthBits int, pf PassFunc) (privPEM, pubPEM []byte, err error)

GeneratePEMEncodedRSAKeyPair generates an RSA keypair, optionally password encrypted using a provided PassFunc, and PEM encoded.

func GetPasswordFromStdIn ¶

func GetPasswordFromStdIn(confirm bool) ([]byte, error)

GetPasswordFromStdIn gathers the password from stdin with an optional confirmation step.

func LoadCertificatesFromPEM ¶

func LoadCertificatesFromPEM(pem io.Reader) ([]*x509.Certificate, error)

LoadCertificatesFromPEMFile extracts one or more X509 certificates from the provided io.Reader.

func MarshalCertificateToPEM ¶

func MarshalCertificateToPEM(cert *x509.Certificate) ([]byte, error)

MarshalCertificateToPEM converts the provided X509 certificate into PEM format

func MarshalCertificatesToPEM ¶

func MarshalCertificatesToPEM(certs []*x509.Certificate) ([]byte, error)

MarshalCertificatesToPEM converts the provided X509 certificates into PEM format

func MarshalPrivateKeyToDER ¶

func MarshalPrivateKeyToDER(priv crypto.PrivateKey) ([]byte, error)

MarshalPrivateKeyToDER converts a crypto.PrivateKey into a PKCS8 ASN.1 DER byte slice

func MarshalPrivateKeyToEncryptedDER ¶

func MarshalPrivateKeyToEncryptedDER(priv crypto.PrivateKey, pf PassFunc) ([]byte, error)

func MarshalPrivateKeyToPEM ¶

func MarshalPrivateKeyToPEM(priv crypto.PrivateKey) ([]byte, error)

MarshalPrivateKeyToPEM converts a crypto.PrivateKey into a PEM-encoded byte slice

func MarshalPublicKeyToDER ¶

func MarshalPublicKeyToDER(pub crypto.PublicKey) ([]byte, error)

MarshalPublicKeyToDER converts a crypto.PublicKey into a PKIX, ASN.1 DER byte slice

func MarshalPublicKeyToPEM ¶

func MarshalPublicKeyToPEM(pub crypto.PublicKey) ([]byte, error)

MarshalPublicKeyToPEM converts a crypto.PublicKey into a PEM-encoded byte slice

func PEMEncode ¶

func PEMEncode(typeStr PEMType, bytes []byte) []byte

func SkipPassword ¶

func SkipPassword(_ bool) ([]byte, error)

SkipPassword is a PassFunc that does not interact with a user, but simply returns nil for both the password result and error struct.

func UnmarshalCertificatesFromPEM ¶

func UnmarshalCertificatesFromPEM(pemBytes []byte) ([]*x509.Certificate, error)

UnmarshalCertificatesFromPEM extracts one or more X509 certificates from the provided byte slice, which is assumed to be in PEM-encoded format.

func UnmarshalPEMToPrivateKey ¶

func UnmarshalPEMToPrivateKey(pemBytes []byte, pf PassFunc) (crypto.PrivateKey, error)

UnmarshalPEMToPrivateKey converts a PEM-encoded byte slice into a crypto.PrivateKey

func UnmarshalPEMToPublicKey ¶

func UnmarshalPEMToPublicKey(pemBytes []byte) (crypto.PublicKey, error)

UnmarshalPEMToPublicKey converts a PEM-encoded byte slice into a crypto.PublicKey

Types ¶

type PEMType ¶

type PEMType string

const (
	PrivateKeyPEMType PEMType = "PRIVATE KEY"

	EncryptedSigstorePrivateKeyPEMType PEMType = "ENCRYPTED SIGSTORE PRIVATE KEY"
)

const (
	CertificatePEMType PEMType = "CERTIFICATE"
)

const (
	PublicKeyPEMType PEMType = "PUBLIC KEY"
)

type PassFunc ¶

type PassFunc func(bool) ([]byte, error)

func StaticPasswordFunc ¶

func StaticPasswordFunc(pw []byte) PassFunc

StaticPasswordFunc returns a PassFunc which returns the provided password.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL