pki

package

v1.15.1 Latest Latest Go to latest Published: Feb 17, 2020 License: Apache-2.0 Imports: 20 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/LinuxGit/kops

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func BuildPKISerial(timestamp int64) *big.Int
func ComputeAWSKeyFingerprint(publicKey string) (string, error)
func ComputeOpenSSHKeyFingerprint(publicKey string) (string, error)
type Certificate
- func ParsePEMCertificate(pemData []byte) (*Certificate, error)
- func SignNewCertificate(privateKey *PrivateKey, template *x509.Certificate, signer *x509.Certificate, ...) (*Certificate, error)
type PrivateKey
- func GeneratePrivateKey() (*PrivateKey, error)
- func ParsePEMPrivateKey(data []byte) (*PrivateKey, error)

Constants ¶

This section is empty.

Variables ¶

View Source

var DefaultPrivateKeySize = 2048

DefaultPrivateKeySize is the key size to use when generating private keys It can be overridden by the KOPS_RSA_PRIVATE_KEY_SIZE env var, or by tests (as generating RSA keys can be a bottleneck for testing)

Functions ¶

func BuildPKISerial ¶

func BuildPKISerial(timestamp int64) *big.Int

BuildPKISerial produces a serial number for certs that is vanishingly unlikely to collide The timestamp should be provided as an input (time.Now().UnixNano()), and then we combine that with a 32 bit random crypto-rand integer. We also know that a bigger value was created later (modulo clock skew)

func ComputeAWSKeyFingerprint ¶

func ComputeAWSKeyFingerprint(publicKey string) (string, error)

ComputeAWSKeyFingerprint computes the AWS-specific fingerprint of the SSH public key

func ComputeOpenSSHKeyFingerprint ¶

func ComputeOpenSSHKeyFingerprint(publicKey string) (string, error)

ComputeOpenSSHKeyFingerprint computes the OpenSSH fingerprint of the SSH public key

Types ¶

type Certificate ¶

type Certificate struct {
	Subject pkix.Name
	IsCA    bool

	Certificate *x509.Certificate
	PublicKey   crypto.PublicKey
}

func ParsePEMCertificate ¶

func ParsePEMCertificate(pemData []byte) (*Certificate, error)

func SignNewCertificate ¶

func SignNewCertificate(privateKey *PrivateKey, template *x509.Certificate, signer *x509.Certificate, signerPrivateKey *PrivateKey) (*Certificate, error)

func (*Certificate) AsBytes ¶

func (c *Certificate) AsBytes() ([]byte, error)

func (*Certificate) AsString ¶

func (c *Certificate) AsString() (string, error)

func (*Certificate) MarshalJSON ¶

func (c *Certificate) MarshalJSON() ([]byte, error)

func (*Certificate) UnmarshalJSON ¶

func (c *Certificate) UnmarshalJSON(b []byte) error

func (*Certificate) WriteTo ¶

func (c *Certificate) WriteTo(w io.Writer) (int64, error)

type PrivateKey ¶

type PrivateKey struct {
	Key crypto.PrivateKey
}

func GeneratePrivateKey ¶

func GeneratePrivateKey() (*PrivateKey, error)

func ParsePEMPrivateKey ¶

func ParsePEMPrivateKey(data []byte) (*PrivateKey, error)

func (*PrivateKey) AsBytes ¶

func (k *PrivateKey) AsBytes() ([]byte, error)

func (*PrivateKey) AsString ¶

func (k *PrivateKey) AsString() (string, error)

func (*PrivateKey) MarshalJSON ¶

func (k *PrivateKey) MarshalJSON() ([]byte, error)

func (*PrivateKey) UnmarshalJSON ¶

func (k *PrivateKey) UnmarshalJSON(b []byte) (err error)

func (*PrivateKey) WriteTo ¶

func (k *PrivateKey) WriteTo(w io.Writer) (int64, error)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL