README
¶
go-platform-signers
🛡️ Go crypto.Signer implementations for platform-native and hardware-backed signing, leveraging cgo.
Purpose
This library provides crypto.Signer implementations that interact with operating system-level security features or dedicated hardware tokens. These implementations typically require cgo to bridge to native platform APIs or C libraries.
The goal is to centralize these specialized signers, allowing core Go applications (like signet) to remain pure Go by default, while still offering robust, hardware-backed, or platform-native signing capabilities when explicitly enabled.
Signer Implementations
This library will house various crypto.Signer implementations, each guarded by specific build tags:
- PKCS#11 Signer: For broad hardware token support (e.g., YubiKeys, HSMs).
- Touch ID Signer: For macOS Secure Enclave signing, gated by Touch ID.
Usage
Applications like signet will import this library and use its factory functions to instantiate a crypto.Signer based on configuration. The specific signer implementation will be compiled in only when the appropriate build tags are provided.
Status
Under active development.
Directories