Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

security

package

v0.25.0 Latest Latest Go to latest Published: May 9, 2026 License: MIT Imports: 17 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/manuel-huez/rmtx

Links

Open Source Insights

Documentation ¶

Index ¶

func ClientTLSConfig(certPEM, keyPEM []byte, expectedFingerprint string) (*tls.Config, error)
func FingerprintCert(cert *x509.Certificate) string
func FingerprintDER(der []byte) string
func FingerprintPEM(certPEM []byte) (string, error)
func GenerateCSRFromKey(keyPEM []byte, label string) ([]byte, error)
func GenerateClientIdentity(label string) (certPEM, keyPEM, csrPEM []byte, err error)
func HostIdentityFingerprint(caCertPEM []byte) (string, error)
func ServerTLSConfig(pki HostPKI) (*tls.Config, string, error)
func ShortFingerprint(fp string) string
func SignClientCSR(caCertPEM, caKeyPEM, csrPEM []byte, label string) ([]byte, string, error)
type HostPKI
- func EnsureHostPKI(stateDir, serverName string) (HostPKI, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func ClientTLSConfig ¶

func ClientTLSConfig(certPEM, keyPEM []byte, expectedFingerprint string) (*tls.Config, error)

func FingerprintCert ¶

func FingerprintCert(cert *x509.Certificate) string

func FingerprintDER ¶

func FingerprintDER(der []byte) string

func FingerprintPEM ¶

func FingerprintPEM(certPEM []byte) (string, error)

func GenerateCSRFromKey ¶

func GenerateCSRFromKey(keyPEM []byte, label string) ([]byte, error)

func GenerateClientIdentity ¶

func GenerateClientIdentity(label string) (certPEM, keyPEM, csrPEM []byte, err error)

func HostIdentityFingerprint ¶

func HostIdentityFingerprint(caCertPEM []byte) (string, error)

func ServerTLSConfig ¶

func ServerTLSConfig(pki HostPKI) (*tls.Config, string, error)

func ShortFingerprint ¶

func ShortFingerprint(fp string) string

func SignClientCSR ¶

func SignClientCSR(caCertPEM, caKeyPEM, csrPEM []byte, label string) ([]byte, string, error)

Types ¶

type HostPKI ¶

type HostPKI struct {
	CACertPEM     []byte
	CAKeyPEM      []byte
	ServerCertPEM []byte
	ServerKeyPEM  []byte
}

func EnsureHostPKI ¶

func EnsureHostPKI(stateDir, serverName string) (HostPKI, error)

Source Files ¶

View all Source files

pki.go